Cloud Security Engineer

Cloud Security Engineer (Azure / DevSecOps) — SC Clearance Required Location: Hybrid — Remote with 2 days/week onsite (Gloucestershire area) Clearance: Must hold active UK SC clearance Type: Permanent | Full-time We're partnering with a fast-growing, mission-driven technology company working at the cutting edge of large-scale data and geospatial intelligence. Their work helps governments, enterprises and nonprofits protect themselves against real-world threats. They're looking for a hands-on Cloud Security Engineer to help keep their environment secure by design.

This is an engineering-first role. You'll spend your time building security into cloud platforms, pipelines and infrastructure — not just monitoring it. What you'll be doing Designing, building and maintaining security automation and tooling across Azure Embedding security into CI/CD pipelines — integrating SAST/DAST/SCA and ensuring supply chain integrity Writing and reviewing Infrastructure-as-Code (Bicep / Terraform) for secure, repeatable cloud configuration Implementing preventative and detective controls in Azure and automating remediation Securing containerised workloads (Kubernetes) — RBAC, network policies and runtime protection Building and managing identity & access controls across cloud platforms Contributing to detection engineering, threat hunting and incident response when needed What we're looking for Solid hands-on experience in cloud security engineering or DevSecOps (cloud-first environments) Strong working knowledge of the Azure security stack — Microsoft Defender for Cloud, Azure Policy, Secure Score Practical experience securing CI/CD pipelines and embedding security into the development lifecycle Experience securing Kubernetes and containerised environments Confident with Infrastructure-as-Code (Bicep / Terraform) and policy-as-code approaches Proficiency in scripting and automation (PowerShell, Python, KQL) Good grounding in identity & access management, network security and modern attack vectors (OWASP Top 10, MITRE ATT&CK) Nice to have Certifications such as AZ-500 , SC-200 , SC-300 or CKS (Certified Kubernetes Security Specialist) Experience with SIEM tooling (Microsoft Sentinel) and detection-as-code Background in regulated, secure or high-trust environments What's on offer Competitive salary Comprehensive health, dental and vision cover Flexible hybrid working Flexible hours, travel opportunities and parental leave Please note: Applicants must hold current SC or DV clearance.

Interested, or know someone who'd be a great fit? Drop me a message or apply below.