Cloud Security Engineer

Smart Recruiters
Liverpool
8 months ago
Applications closed

Related Jobs

View all jobs

AI Security Engineer- security engineering/ cloud security

AWS Security Engineer

AWS Security Engineer

Senior Security Engineer

Senior Network Engineer

Security Operations Centre / SOC Team Lead

Job Description

What will you be doing?

We are seeking a talented and experienced  individual to join our Information Security team in Liverpool as an Azure focused Operational Cloud Security Engineer. The Group Information Security function is a dynamic and highly motivated team committed to ensuring that S&W is organisationally and technically secure in a fast-evolving environment with substantial critical assets, systems, and sensitive data to protect in multiple locations.

As Cloud Security Engineer, your responsibilities will include among others

  • Managing, implementing, and maintaining technical security controls for IAAS, PAAS and SAAS based services which support Financial Planning, Investment Management, Tax Advice and a range of Professional Services.
  • Building out and improving capabilities around M365 utilising E5 licensing. Ensuring E5 security capabilities are being fully utilised and are correctly configured.
  • Continuously reviewing technical controls across cloud platforms including Microsoft Azure including Azure AD.
  • Understanding, reviewing, recommending, and implementing technical security controls in the Azure IAAS environment.
  • Providing assurance that controls are effective and kept up to date as services continue to mature and develop.
  • Provide risk analysis and end to end control design, implementation for new services using cloud-based solutions.
  • Supporting Agile based project management and iteration - squad-based delivery.
  • Ensure that the vision for cloud-based service is built out on security best practice
  • Familiarity in interpreting highly technical detail, being able to spot the security gaps and then working with the change function to come up with a detailed secure solution.
  • Ensuring secure configuration and operation of cloud networks, load balancers, edge protection and firewalls (WAF, etc.).
  • Assisting in the design of enhancements to the cloud security strategy by identifying and alerting on appropriate event types.
  • Identify and define system security requirements at a detailed technical level including controls for encryption, key management, IAAS design and segregation.
  • Deep technical experience of implementing security features within Azure including DDOS protection, encryption, and appropriate monitoring controls.
  • Implement technical controls and make recommendations.
  • Facilitate threat modelling exercises to validate security design decisions
  • Keep up to date with the latest cloud-based risks, methods, and techniques to ensure they are always based on latest guidance
  • Finding new ways to solve existing production security issues and develop guidance material
  • Recommending security enhancements to management and senior stakeholders
  • Assisting with installation or processing of new security products and procedures
  • Ensuring controls for monitoring products and systems for security breaches or intrusions
  • Identifying production stability concerns via break point, vulnerability scanning, and impact analysis, and designing and developing implement remediation plans to address these concerns.
  • Work on the trifecta of visibility, compliance and remediation for public cloud security.
  • Experience in applying both a risk and compliance lens to security.
  • Maintaining contact with vendors, industry peers, and professional associations to keep informed of existing and evolving industry standards, technologies, and cyber threats.


Qualifications

To be successful in this role, you should have

  • Have experience of working in an Operational environment
  • In depth knowledge of Azure cloud platform is required
  • Demonstrable experience provisioning, managing and developing an exemplary technical infrastructure within a medium or large organisation, covering as a minimum, data centres, communications and collaboration, networking, end user computing and tooling is required
  • Demonstrable experience on Azure security configuration and certifications 
  • Experience working Switches, Routers & Domain Controllers etc. 
  • Knowledge of a broad range of current and emerging Technology technologies, architectures and delivery models
  • Knowledge of compliance standards like CIS, NIST in conjunction with PCI-DSS and GDPR
  • Excellent interpersonal skills with the ability to lead others and persuasively communicate complex technical information effectively to a diverse range of stakeholders, resulting in productive working relationships - a "trusted adviser" to business & technology teams 
  • Strong communication and collaboration skills, dealing with fast-moving, complex scenarios supporting multiple initiatives and goals 
  • A team player who can balance need, risk and pragmatism when developing solutions. Good organisational, planning and risk management skills, with the ability to bring discussions to a decision-making end; a proven capacity for creative problem-solving and troubleshooting 

Professional Qualifications and Education

  • Degree or equivalent, preferable in Computer Systems / Solutions Infrastructure / or technology related innovation or comparable cloud certifications 



Additional Information

As a colleague here at S&W you will have access to benefits that include

  • Competitive salary
  • Private medical insurance
  • Life assurance
  • Pension contribution
  • Hybrid working model (role dependent)
  • Generous holiday package
  • Option to purchase additional holiday
  • Shared parental leave
  • Fully funded training towards professional qualifications
  • Cycle to work scheme
  • Season ticket loan
  • Eye care support

We are proud to value the differences that a diverse workforce brings, representative of society and our clients. At S&W we have a wide range of highly active employee resource groups and we’re delivering multiple diversity, equity and inclusion initiatives across the organisation. It is our commitment to provide a workplace where all colleagues, regardless of identity, background, or circumstance, feel respected as individuals and feel that they can achieve their full potential and work in a safe, supportive, and inclusive environment.

We are happy to make any reasonable adjustments to accommodate for your needs throughout the application process. Please let your Recruiter know.

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Jobs Careers

Cyber Security Jobs for Career Switchers in Their 30s, 40s & 50s (UK Reality Check)

If you’re thinking about switching into cyber security in your 30s, 40s or 50s, you’re in good company. Across the UK, organisations of all sizes are hiring people from diverse backgrounds to protect systems, data & customers. But with hype around “hackers” & quick-win courses, it’s hard to separate reality from fiction. This guide gives you a UK reality check: which roles genuinely exist, what employers actually want, how training really works, what to expect on salary & progression & whether age matters. Whether you come from finance, project management, operations, law, HR or customer service, there is a credible route into cyber security if you approach it strategically.

Jobs

How to Write a Cyber Security Job Ad That Attracts the Right People

Cyber security is now a board-level priority for organisations across the UK. From financial services and healthcare to critical infrastructure, SaaS platforms and the public sector, demand for skilled cyber security professionals continues to grow. Yet despite this demand, many employers struggle to attract the right candidates. Cyber security job adverts often generate large volumes of applications, but few are a genuine match. Meanwhile, experienced security engineers, analysts and architects quietly ignore adverts that feel vague, unrealistic or disconnected from real security work. In most cases, the problem is not a lack of talent — it is the quality of the job advert. Cyber security professionals are trained to assess risk, spot weaknesses and question assumptions. A poorly written job ad signals organisational immaturity and weak security culture. A well-written one signals seriousness, competence and trust. This guide explains how to write a cyber security job ad that attracts the right people, improves applicant quality and positions your organisation as a credible security employer.

Education Jobs

Maths for Cyber Security Jobs: The Only Topics You Actually Need (& How to Learn Them)

If you are applying for cyber security jobs in the UK it can feel like “real security people” must be brilliant at maths. The reality is simpler: most roles do not need degree-level pure maths. What they do need is confidence with a small set of practical topics that show up repeatedly in day-to-day work across SOC, incident response, cloud security, AppSec, threat detection, IAM & security engineering. This guide strips the maths down to what actually helps you get hired. It includes a 6-week learning plan plus portfolio projects you can publish to prove the skills. You will focus on: Number systems & bitwise thinking (binary, hex, bytes, XOR) Modular arithmetic basics (enough to understand how modern crypto “works”) Probability & statistics for detection, triage & risk Discrete maths for logic, sets, graphs & complexity Security maths habits: estimation, false positive control & evidence-led reporting You will not waste time on heavy theory that rarely appears in junior or mid-level cyber security roles.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.