Posted in: Engineering in United Kingdom | Posted: |
Lead Cloud Security Engineer
Location: UK Remote
Salary: £90k - £100k + Excellent Benefits
The Client:
Our client, a prominent organisation, collaborates with the NHS to empower researchers in discovering disease causes and developing innovative treatments, with a focus on prioritising patients and participants.
The Role:
This opportunity would suit someone who is looking to do something that is impactful, where you can clearly see the results of the work that you’re doing and help shape a Security Engineering function. You will lead on new and interesting projects that are the first of their kind and have a hugely positive social impact.
Duties:
Working with the cloud engineering team and providing expert advice on securing their use of Azure cloud services, Kubernetes and containers.
In particular, providing guidance and a level of oversight for Azure network security and Key Vault.
Encouraging and leading on a ‘shift-left’ approach to security.
Overseeing and supporting the operation of Microsoft Defender for Cloud.
Developing and getting wider buy-in for security policy as code (using OPA or similar).
Assisting with maturing their use of and supporting the operation of Entra ID (previously AAD) for IAM, Identity Governance and Privileged Identity Management.
Driving the work to secure their Data Platform, including their use of Databricks, Dagster and Snowflake along with in-house developed applications and CI/CD pipeline.
Collaborate with wider tech and security teams on the implementation and operation of a robust Customer Identity and Access Management (CIAM) service.
Supporting, coaching and mentoring members of the wider security team.
Requirements:
Proficient in writing Terraform, KQL and ideally Python and PowerShell.
Significant experience of securing Azure and Azure security services (e.g. Key Vault, NSGs, WAF, etc.)
Significant experience of securing Kubernetes (ideally AKS) and container security.
Significant experience of automating security capabilities and operations and security/policy as code (e.g. with OPA, Azure Policy, etc.)
Experience with Microsoft’s Defender suite, in particular Defender for Cloud.
Experience with Microsoft Entra ID (previously AAD), including the Identity Governance capabilities Hands-on experience with Microsoft Sentinel.
Ideally experience of securing Github and Github actions (or similar).
Ideally experience in securing data platforms (e.g. Databricks, Dagster, Snowflake).
Experience in Threat Modelling.
Exposure to Agile working and DevSecOps.
Knowledge of ISO 27001.
Relevant certifications, such as: Microsoft certifications (MS-500, AZ-500, AZ-700, SC-200, SC-300), CompTIA Security+ and Cloud+, Cloud Security Alliance CCSK, ISC2 CCSP
Apply now for this exceptional opportunity to work with a dynamic team and further enhance your career.
Important Information: We endeavour to process your personal data in a fair and transparent manner. In applying for this role, Additional Resources will be acting in your best interest and may contact you in relation to the role, either by email, phone or text message. For more information see our Privacy Policy on our website. It is important you are aware of your individual rights and the provisions the company has put in place to protect your data. If you would like further information on the policy or GDPR please contact us.
Additional Resources Ltd is an Employment Business and an Employment Agency as defined within The Conduct of Employment Agencies & Employment Businesses Regulations 2003.
Key Words – KQL, Terraform, Python, Azure, Key Vault, Security, Microsoft, Sentinel, Microsoft Defender, Powershell, Dagster
