Cloud Security Engineer

UK Biobank
Stockport
1 year ago
Applications closed

Related Jobs

View all jobs

Cloud Security Engineer

Cloud Security Lead

Senior Security Engineer

Senior Information Security Engineer

Senior Network Engineer

DevSecOps Engineer

Description

Where can a Cloud Security Engineer directly improve the health of everyone, everywhere?

At UK Biobank, that’s where.

UK Biobank is helping to pioneer new pathways in health, believing that people have the right to live longer and more fulfilling lives.

We’re a team aiming to make a difference to millions of people on this planet - and an employer who cares passionately about the diverse range of professionals who have come together to drive our incredible journey.

This role is pivotal to that journey.

We have an exciting opportunity for a Cloud Security Specialist to join our Data & Technology Team. This role will focus on safeguarding UK Biobank's data, services, and Cloud assets, particularly those hosted on AWS. The specialist will identify vulnerabilities, implement security measures, and support the Data & Technology transformation programme to enhance proactive threat prevention while ensuring seamless access for authorised users.


Can you do it?

The answer is “yes”, if you have a keen interest in developing your career within Cloud Security.

Key responsibilities are;
  • Develop and implement a comprehensive cloud security strategy, including risk assessments, vulnerability management, and incident response planning
  • Ensure compliance with security standards, policies, and regulations, working closely with governance bodies and quality teams
  • Design and maintain a robust cloud security architecture, implementing necessary controls and managing cloud-based security services for platforms like AWS and Microsoft
  • Monitor and respond to security incidents, manage access controls, and oversee logging and event data management
  • Collaborate with internal teams and external partners to evaluate risks, examine contracts, and address data privacy issue
  • Stay updated on cloud security threats, evaluate new technologies, and contribute to the continuous improvement of security tools and processes

Working hours are 35 hours per week, Monday to Friday, hybrid working is available. Located in Greater Manchester (initially based in Stockport with a move to Manchester Science Park mid to late 2026).


Is this 'you'?

Reporting to the Head of Information Security, you will have;
  • Minimum 5 years of operational experience in security engineering or analysis within a complex, multi-site organisation
  • Proven ability to design and implement security policies, standards, and best practices tailored to organisational needs
  • Strong knowledge of cloud-based services, particularly AWS and Microsoft, including specific security tools like AWS Security Hub, CloudWatch, and GuardDuty
  • Familiarity with security standards and practices advocated by ISO27001, NIST, CIS, OWASP, and NCSC
  • Experience with technical and information security compliance reviews and audits (ISO27001/2, ISO27018, PCI-DSS)
  • Comprehensive understanding of the cyber threat landscape and experience with vulnerability scanning and threat detection tools
  • Proficiency in securing various operating systems, databases, networks, cloud platforms, and applications
  • Experience with SIEM solutions (preferably Microsoft Sentinel) and Cloud Security Posture Management platforms (ideally Wiz.io)
  • Knowledge of identity management, data classification, access control systems, and incident response
  • Understanding of data privacy challenges and regulatory compliance (DPA, GDPR, HIPAA), with experience in risk management and third-party assurance

Our passion for diversity and equality means creating a work environment for all employees that is welcoming, respectful, engaging, and enriched with opportunities for personal and professional development.


What's on offer

We have a range of benefits here at UK Biobank, some of the highlights of those are:
  • 26 days' annual leave (which increases with length of service) plus Bank Holidays
  • Holiday buy scheme (buy up to 1 week of additional leave per year)
  • A paid day off for your birthday (in addition to annual leave)
  • Flexible (hybrid) working, including modern offices in Stockport (relocating to new office in Manchester Science Park in 2026)
  • USS Pension Scheme which is a ‘hybrid’ defined benefit/defined contribution scheme 
  • Enhanced family leave (available from day 1 of employment)
  • Cycle to work scheme
  • Professional subscriptions reimbursement (where applicable)
  • Free gym on site 
  • On site canteen 
  • Subsidised lunches (£5.50 contribution per day when working on site) and refreshments 
  • Free car parking 
  • Employee discounts portal
  • 20% Discount at EE
  • Employee Assistance Programme 
  • Eye-care scheme
  • Annual flu vaccination
  • Life Assurance cover
#LI-Hybrid

The job advert closing date may change, so we recommend that if you are planning to apply that you do so without delay.
UK Biobank is a large-scale biomedical database and research resource containing in-depth genetic and health information from half a million UK participants.
 
The database, the largest and most comprehensive of its kind in the world, is anonymised and made widely accessible by UK Biobank to global researchers who use it to find new scientific discoveries about common and life-threatening diseases – such as cancer, heart disease and stroke which strike in mid-later life.
 
UK Biobank is an innovative organisation with over 250 staff across four sites in the UK that fosters an engaging environment and supports the development of our staff. Our dedicated teams work alongside the world's leading biomedical scientists in our joint mission to improve public health.

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Careers

How Many Cyber Security Tools Do You Need to Know to Get a Cyber Security Job?

If you are trying to build or move forward in a cyber security career, it can feel like the list of tools you are expected to know never ends. One job advert asks for SIEM platforms, another mentions penetration testing tools, another lists cloud security, threat intelligence platforms, endpoint detection, scripting languages and compliance frameworks. Scroll LinkedIn and it gets worse. Everyone seems to “know” dozens of tools, certifications and platforms. Here is the reality most cyber security hiring managers agree on: they are not hiring you because you know every tool. They are hiring you because you understand risk, can think like an attacker and a defender, follow process, communicate clearly and make good decisions under pressure. Tools matter — but only when they support those outcomes. So how many cyber security tools do you actually need to know to get a job? For most job seekers, the answer is far fewer than you think. This article explains what employers really expect, which tools are essential, which are role-specific and how to focus your learning so you look credible, not overwhelmed.

Jobs

What Hiring Managers Look for First in Cyber Security Job Applications (UK Guide)

If you want to stand out in the highly competitive world of cyber security job applications, you need to understand what hiring managers look for before they even finish reading a CV. Cyber security hiring managers scan applications quickly and with specific priorities in mind. They assess not just your technical ability, but your judgement, professionalism, clarity, risk awareness and evidence of impact. This guide explains what hiring managers look for first in cyber security applications across roles like Security Analyst, Security Engineer, Penetration Tester, Incident Responder, Security Architect, Governance Risk and Compliance specialists and Cloud Security positions. Use this as a practical, step-by-step checklist to sharpen your CV, LinkedIn profile, cover letter and portfolio before you apply on www.cybersecurityjobs.tech .

Education

The Skills Gap in Cyber Security Jobs: What Universities Aren’t Teaching

Cyber security has become one of the most critical disciplines in the modern economy. From protecting financial systems and healthcare data to securing national infrastructure, cloud platforms and supply chains, cyber security professionals now sit at the frontline of digital trust. Demand for cyber security talent in the UK has surged. Job vacancies remain high, salaries continue to rise, and organisations across every sector report difficulty hiring skilled professionals. Yet despite this demand, many graduates struggle to break into cyber security roles and employers consistently report that candidates are not job-ready. The problem is not intelligence, ambition or academic effort. It is a persistent and widening skills gap between university education and real-world cyber security work. This article explores that gap in depth: what universities teach well, what they routinely miss, why the gap exists, what employers actually want, and how jobseekers can bridge the divide to build sustainable careers in cyber security.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.