Description

Can you do it?

• Develop and implement a comprehensive cloud security strategy, including risk assessments, vulnerability management, and incident response planning
• Ensure compliance with security standards, policies, and regulations, working closely with governance bodies and quality teams
• Design and maintain a robust cloud security architecture, implementing necessary controls and managing cloud-based security services for platforms like AWS and Microsoft
• Monitor and respond to security incidents, manage access controls, and oversee logging and event data management
• Collaborate with internal teams and external partners to evaluate risks, examine contracts, and address data privacy issue.
• Stay updated on cloud security threats, evaluate new technologies, and contribute to the continuous improvement of security tools and processes

Is this 'you'?

1. Minimum 5 years of operational experience in security engineering or analysis within a complex, multi-site organisation.
2. Proven ability to design and implement security policies, standards, and best practices tailored to organisational needs.
3. Strong knowledge of cloud-based services, particularly AWS and Microsoft, including specific security tools like AWS Security Hub, CloudWatch, and GuardDuty.
4. Familiarity with security standards and practices advocated by ISO27001, NIST, CIS, OWASP, and NCSC.
5. Experience with technical and information security compliance reviews and audits (ISO27001/2, ISO27018, PCI-DSS).
6. Comprehensive understanding of the cyber threat landscape and experience with vulnerability scanning and threat detection tools.
7. Proficiency in securing various operating systems, databases, networks, cloud platforms, and applications.
8. Experience with SIEM solutions (preferably Microsoft Sentinel) and Cloud Security Posture Management platforms (ideally Wiz.io).
9. Knowledge of identity management, data classification, access control systems, and incident response.
10. Understanding of data privacy challenges and regulatory compliance (DPA, GDPR, HIPAA), with experience in risk management and third-party assurance.

What's on offer

• 26 days' annual leave (which increases with the length of service) plus Bank Holidays
• Holiday buy scheme (buy up to 1 week of additional leave per year)
• A paid day off for your birthday (in addition to annual leave)
• Flexible (hybrid) working, including modern offices in Greater Manchester (initially based in Stockport with a move to Manchester Science Park mid to late 2026)  
• USS Pension Scheme which is a ‘hybrid’ defined benefit/defined contribution scheme 
• Enhanced family leave (available from day 1 of employment)
• Cycle to work scheme
• Professional subscriptions reimbursement (where applicable)
• Free gym on-site 
• On-site Canteen 
• Subsidised lunches (£5.50 contribution per day when working on site) and refreshments 
• Free car parking 
• Employee discounts portal
• 20% Discount at EE
• Employee Assistance Programme 
• Eye-care scheme
• Annual flu vaccination
• Life Assurance cover