631 Cloud Security Specialists jobs in the United Kingdom

Cloud Security Consultant required for public sector client. You will be designing, implementing, and enhancing security capabilities across AWS and Azure environments. The ideal candidate will have hands-on expertise with cloud-native security and governance tools, Cloud Adoption and Assurance Frameworks, and Well-Architected Reviews.

This role will focus on assessing current security posture, defining cloud assurance frameworks, and advising on best practices to achieve secure, scalable, and compliant multi-cloud operations.

Key Responsibilities

• Define and implement Cloud Assurance and Adoption Frameworks aligned with AWS and Microsoft best practices.
• Conduct and lead Well-Architected Reviews (AWS & Azure) to assess and enhance cloud workloads.
• Recommend improvements for governance, automation, and security orchestration across both platforms.
• Evaluate IaC templates (Terraform, ARM/Bicep) for compliance, security, and efficiency.
• Design and enhance secure landing zones aligned with Microsoft CAF and AWS best practices.
• Integrate and optimize use of native cloud security tools including CSPM solutions.
• Support compliance and control validation automation using AWS and Azure native services.
• Provide strategic recommendations to improve identity, access, and network security within cloud ecosystems.
• Collaborate with engineering and DevSecOps teams to embed security by design.

Required Skills and Experience

AWS Expertise:

• AWS Audit Manager
• AWS Control Tower & SCPs
• AWS Macie, Firewall Manager, Access Analyzer
• AWS Network Reachability Analyzer
• AWS Cloud Adoption Framework
• AWS SHARR
• AWS Well-Architected Reviews

Azure Expertise:

• Azure Defender for Cloud
• Azure Well-Architected Reviews & Advisor
• Azure Blueprints & Policy Assignments
• Azure Landing Zones (CAF-aligned)
• Azure Policy automation for control validation
• IaC assessment and optimization (Terraform/ARM)
• CSPM and continuous compliance monitoring

Cloud Security Engineer

We are working with a leading global technology organisation that is seeking an experienced Cloud Security Engineer to join their Infrastructure Security Architecture team.

This is a fantastic opportunity to work in a large-scale, enterprise cloud environment, acting as the subject matter expert across Microsoft Azure security. You will partner with engineering and security stakeholders, helping to design, deliver, and oversee security initiatives, ensuring the environment remains compliant, secure, and scalable.

Responsibilities:

• Act as a specialist within Azure and Azure security, supporting both platform engineering and security functions.
• Manage and review Azure Policy direction, including policy definitions, initiatives, assignments, and exemptions.
• Assess and approve policy exemptions at the environment or global scale.
• Provide subject matter expertise on security-related change initiatives and centralised controls.
• Partner with cloud engineering and infrastructure teams to advise on security deliverables and assess upcoming changes.
• Support security incident response where Azure-specific expertise is required.
• Define, measure, and report on Azure security compliance metrics.
• Document centralised constructs, modules, and artefacts, producing materials that can be used across engineering teams.

Qualifications & Experience:

• Experience in a senior Azure architecture or engineering role.
• Strong expertise in Microsoft Azure security best practices and governance.
• Proficiency with Azure CLI, PowerShell, or Azure Graph REST API.
• Hands-on experience with Azure Policy (including exemptions, initiatives, and compliance reporting).
• Familiarity with Entra ID, conditional access, and identity hardening.
• Experience with Microsoft Defender for Cloud, including best practices and automation of controls.
• Strong knowledge of Role-Based Access Control, logging (DCR, Diagnostic Settings), and KQL queries.
• Experience with CSPM and CWP solutions for identifying and remediating risks.
• Exposure to containerisation security (Kubernetes, Docker, ACR, AKS, Key Vault, Azure Storage).
• Familiarity with SIEM tools such as Microsoft Sentinel (reviewing alerts, tuning connectors, threat detection).
• Understanding of compliance frameworks (MCSB, NIST, CIS, ISO 27001, PCI-DSS).

If you're passionate about securing large-scale cloud platforms and enjoy working across engineering and security teams, we'd love to hear from you

Cloud Security Engineer | AWS, Endpoint Security & Automation | Security SaaS

Prism Digital have partnered with a super interesting and niche VC-backed client specialising in attack surface management and automated red teaming. Their platform provides organisations with real-time visibility into their attack surface and potential exploitable vulnerabilities. They have received numerous awards for being an up-and-coming security SaaS product company and don't have any sign of slowing down their growth.

After receiving a total of $29 million over three funding rounds, they're looking to double their platform engineering division throughout the next 12 months with the first being this role. They have recently expanded into Europe & US and are continuing to grow.

This Cloud Security Engineer will have the opportunity to learn from a highly experienced Head of Platform Engineering who has a seriously impressive background in everything across cloud, security & architecture. Current projects include leading all internal security of the company, leading endpoint security and playing a part in building infrastructure into greenfield regions.

The role also has the opportunity to progress into a Head of Security in the future . This engineer will initially wear a lot of hats to begin with and required to have experience with:

(In order of importance)

• Any Endpoint Security / Vulnerability Management tools
• AWS Security review experience
• Terraform, CI/CD (any) & automation (Python/Go/Bash)

Key Requirements:

• Experience with any endpoint security / vulnerability management tools (they're using Crowdstrike, Wiz & Tennable)
• Understanding of AWS Cloud & Security (batch patching servers)
• Automation - Python / Bash / Go
• ~5 years experience

Nice to have:

• Experience with platform engineering tools such as Terraform and CI/CD (any)

Package:

• £70,000 base
• Pension
• Private health insurance
• FULLY remote (quarterly meetups!)
• Learning budget

This role does not accept candidates from outside the UK nor does it offer visa sponsorship

Cloud Security Engineer | AWS, Endpoint Security & Automation | Security SaaS

• Design and architect secure cloud solutions on platforms such as AWS, Azure, or GCP, ensuring adherence to security best practices and compliance requirements.
• Develop and implement security policies, standards, and procedures for cloud environments.
• Conduct security assessments and risk analyses of cloud infrastructure and applications.
• Implement and manage security tools and technologies, including firewalls, WAFs, IDS/IPS, SIEM, and identity and access management (IAM) solutions.
• Develop and maintain security documentation, including architecture diagrams, runbooks, and incident response plans.
• Provide expert guidance to development and operations teams on secure coding practices and cloud security principles.
• Respond to and investigate security incidents, leading remediation efforts.
• Stay current with emerging cloud security threats, technologies, and best practices.
• Automate security controls and processes wherever possible.
• Mentor junior security professionals and contribute to the team's knowledge base.

• Bachelor's degree in Computer Science, Cybersecurity, or a related field, or equivalent practical experience.
• Minimum of 6 years of experience in information security, with at least 3 years focused on cloud security.
• Proven experience designing and implementing security architectures for AWS, Azure, or GCP.
• Strong understanding of network security, identity and access management, data protection, and threat detection.
• Experience with security automation and scripting (e.g., Python, Terraform).
• Excellent analytical, problem-solving, and communication skills.
• Relevant certifications such as CISSP, CCSP, or cloud-specific security certifications are highly desirable.
• Ability to work collaboratively in a team-oriented environment.

Cloud Security Consultant required for public sector client. You will be designing, implementing, and enhancing security capabilities across AWS and Azure environments. The ideal candidate will have hands-on expertise with cloud-native security and governance tools, Cloud Adoption and Assurance Frameworks, and Well-Architected Reviews.

This role will focus on assessing current security posture, defining cloud assurance frameworks, and advising on best practices to achieve secure, scalable, and compliant multi-cloud operations.

Key Responsibilities

• Define and implement Cloud Assurance and Adoption Frameworks aligned with AWS and Microsoft best practices.
• Conduct and lead Well-Architected Reviews (AWS & Azure) to assess and enhance cloud workloads.
• Recommend improvements for governance, automation, and security orchestration across both platforms.
• Evaluate IaC templates (Terraform, ARM/Bicep) for compliance, security, and efficiency.
• Design and enhance secure landing zones aligned with Microsoft CAF and AWS best practices.
• Integrate and optimize use of native cloud security tools including CSPM solutions.
• Support compliance and control validation automation using AWS and Azure native services.
• Provide strategic recommendations to improve identity, access, and network security within cloud ecosystems.
• Collaborate with engineering and DevSecOps teams to embed security by design.

Required Skills and Experience

AWS Expertise:

• AWS Audit Manager
• AWS Control Tower & SCPs
• AWS Macie, Firewall Manager, Access Analyzer
• AWS Network Reachability Analyzer
• AWS Cloud Adoption Framework
• AWS SHARR
• AWS Well-Architected Reviews

Azure Expertise:

• Azure Defender for Cloud
• Azure Well-Architected Reviews & Advisor
• Azure Blueprints & Policy Assignments
• Azure Landing Zones (CAF-aligned)
• Azure Policy automation for control validation
• IaC assessment and optimization (Terraform/ARM)
• CSPM and continuous compliance monitoring

Cloud Security Consultant required for public sector client. You will be designing, implementing, and enhancing security capabilities across AWS and Azure environments. The ideal candidate will have hands-on expertise with cloud-native security and governance tools, Cloud Adoption and Assurance Frameworks, and Well-Architected Reviews.

This role will focus on assessing current security posture, defining cloud assurance frameworks, and advising on best practices to achieve secure, scalable, and compliant multi-cloud operations.

Key Responsibilities

• Define and implement Cloud Assurance and Adoption Frameworks aligned with AWS and Microsoft best practices.
• Conduct and lead Well-Architected Reviews (AWS & Azure) to assess and enhance cloud workloads.
• Recommend improvements for governance, automation, and security orchestration across both platforms.
• Evaluate IaC templates (Terraform, ARM/Bicep) for compliance, security, and efficiency.
• Design and enhance secure landing zones aligned with Microsoft CAF and AWS best practices.
• Integrate and optimize use of native cloud security tools including CSPM solutions.
• Support compliance and control validation automation using AWS and Azure native services.
• Provide strategic recommendations to improve identity, access, and network security within cloud ecosystems.
• Collaborate with engineering and DevSecOps teams to embed security by design.

Required Skills and Experience

AWS Expertise:

• AWS Audit Manager
• AWS Control Tower & SCPs
• AWS Macie, Firewall Manager, Access Analyzer
• AWS Network Reachability Analyzer
• AWS Cloud Adoption Framework
• AWS SHARR
• AWS Well-Architected Reviews

Azure Expertise:

• Azure Defender for Cloud
• Azure Well-Architected Reviews & Advisor
• Azure Blueprints & Policy Assignments
• Azure Landing Zones (CAF-aligned)
• Azure Policy automation for control validation
• IaC assessment and optimization (Terraform/ARM)
• CSPM and continuous compliance monitoring

Make The Connection.

Vix Technology, a global leader in automatic fare collection, transit information, and transit analytics solutions, is seeking a highly skilled and experienced Field Engineer. With a presence in over 200 city and regional transport authorities worldwide, Vix has been at the forefront of transforming fare collection for more than 35 years. At Vix, we are committed to solving problems and delivering innovative solutions that are revolutionising the world of public transit.

As a global organisation, we recognise and value the distinct strengths that individual diversity brings to our overall success. We invite you to share your perspectives, cultural backgrounds, and innovative ideas; we look forward to your contributions.

Join the Vix team as an experienced Cloud Security Engineer! This on-site position in Manchester involves collaborating with our Cloud Operations team and the Security team to maintain robust security protocols. You'll play a crucial role in guiding our technical teams to meet security standards, successfully passing security audits, and safeguarding both company and customer data. As the first point of contact for security incidents, your expertise will be essential in keeping our systems secure.

**We regret that this position is only available for UK citizens/Residents with indefinite leave to remain in the UK, with current full time work rights for the United Kingdom, currently residing in the UK. The position is located in Manchester.**

Requirements

Here’s what you’ll be diving into:

• Evaluate and strengthen our overall security posture by performing continuous audits, risk assessments, threat modelling, and architecture reviews to ensure effective controls and adherence to regulatory standards.
• Consistently monitor and assess cloud environments for vulnerabilities and misconfigurations utilising tools like AWS Inspector, GuardDuty, and Security Hub, complemented by regular vulnerability scanning and penetration testing.
• Design, implement, and automate enterprise-level security systems and controls —including IAM, SIEM, DLP, firewalls, endpoint protection, and cloud-native guardrails—to safeguard assets across both cloud and hybrid environments.
• Actively respond to security events and incidents by leading investigations, coordinating remediation efforts, and driving improvements after incidents.
• Maintain ongoing compliance with relevant security and data privacy standards (e.g., GDPR, ISO 27001, NIST, CCPA) through diligent documentation, effective policies, and audit preparedness.
• Work collaboratively with global IT, Cloud, and Security Operations Centre teams to protect company systems and efficiently tackle any emerging challenges.
• Create and present clear, actionable security reports for internal stakeholders and external clients, aiding in assurance activities and fulfilling contractual obligations.
• Keep abreast of emerging threats, tools, and technologies , and propose innovative strategies to enhance our security frameworks continuously.
• Advocate secure-by-design principles , integrating security best practices into system architecture, development processes, and operational workflows.

What You'll Bring To The Role:

Essential:

• 3–5 years of experience in Information Security and Cloud Security Engineering , with proven expertise in securing AWS environments (IAM, networking, storage, and compute).
• Hands-on experience with networking, infrastructure, and container security (EKS, ECS, Kubernetes) across both cloud and on-premises environments.
• Strong understanding of security principles, technologies, and industry best practices , including vulnerability and incident management.
• Practical experience with security monitoring and protection tools such as Firewalls, IDS/IPS, XDR, SIEM, CNAPP, and log collection platforms (e.g., CrowdStrike, Lacework).
• Experience in designing and implementing Identity and Access Management (IAM) solutions and maintaining secure authentication practices.
• Proficiency with Windows and Linux systems , as well as network scanning and diagnostic tools (e.g., Wireshark, IP scanner).
• A solid understanding of Public Key Infrastructure (PKI) and encryption fundamentals.
• Excellent collaboration, communication, and organisational skills , with the ability to work both independently and as part of a cross-functional team.
• Proven ability to handle sensitive information with discretion, professionalism, and sound judgment.
• Relevant certifications such as AWS Certified Security – Speciality, CISSP, CCSP, or Terraform Associate (or equivalent experience).

Preferred Qualifications:

• Exposure to threat intelligence and security analytics , particularly within cloud environments.
• Bachelor’s degree in Computer Science, Information Technology, or Information Security , or equivalent practical experience.
• Familiarity with key security frameworks and standards such as PCI, ISO 27001, NIST, and CIS, along with experience supporting audits and compliance initiatives.
• Strong understanding of networking protocols, systems architecture , and secure key management (e.g., PCI digital keys, security access modules).
• Hands-on experience with offensive security techniques , including penetration testing and phishing simulations.
• Proficiency in programming or scripting languages (such as Python, Bash, or PowerShell) for automation or tooling.
• Experience with Infrastructure as Code (IaC) and its security implications is highly desirable.

What We’re Looking For:

• A proactive, automation-first engineer who embraces security-by-design and sees tasks through to completion.
• A collaborative team player who also works effectively with minimal supervision.
• Outstanding problem-solving abilities and a keen eye for detail , ensuring precision and reliability in all tasks.
• Excellent communicator , both written and verbal, with a strong customer-service mindset and a passion for supporting others.
• Organised, adaptable, and dependable , maintaining focus and professionalism in dynamic environments.
• Deeply committed to integrity, confidentiality, and ethical conduct in every aspect of their work.

Benefits

What's in it for you?

Besides the opportunity to work for a global company that is customer and people-focused, we offer:

• A focus on Learning and development
• A great team of like-minded professionals
• Private Healthcare
• Income Protection Scheme
• Pension
• Group Life Assurance
• Cycle to Work Scheme
• Electric Car Benefit Scheme
• Employee Assistance Program
• Eyecare and Spectacle Vouchers

Sounds good? Then apply now and get on board today!

Add your resume and anything else to showcase why you would be a great addition to our team. We regret that this position is only available for UK citizens/Residents with indefinite leave to remain in the UK.

No recruitment agencies, please! We won't accept any introductions.

Vix Technology is an Equal Opportunity Employer and prohibits discrimination and harassment of any kind. We are committed to the principle of equal employment opportunity for all people and want to build a workforce as diverse as the community we serve. We aim to have a work environment where everyone feels included and everyone can realise their full potential.

This is an excellent opportunity for Sr. Cloud Security Architect professionals to be part of leading-edge technology projects. Cognizant's Cloud, Infrastructure & Security Services Practice provides end-to-end solutions covering architecture, design, implementation, management, and on-going support across the entire enterprise technology infrastructure. Our services include a spectrum of management, consulting, and systems integration services to help our clients maximize value in their infrastructure resources, while optimizing infrastructure performance and cost.

Key Responsibilities:

• Design, implement, and maintain scalable security solutions using AWS services such as AWS WAF, AWS Shield Advanced, AWS Secrets Manager, AWS Inspector, AWS Macie, AWS GuardDuty, AWS Detective, AWS CloudTrail, and AWS Security Hub.
• Ensure cloud environments meet organizational and compliance security standards, Firewall Management
• Manage, configure, and troubleshoot Checkpoint Firewall to maintain network perimeter security and prevent unauthorized access, Infrastructure as Code (IaC)
• Develop and maintain IaC using AWS CloudFormation or Terraform for automated deployment, configuration management, and consistent infrastructure provisioning.
• Security Configuration and Optimization
• Configure and optimize security measures, including IAM policies, security groups, network access controls, and encryption protocols.
• Monitoring and Incident Response
• Monitor AWS security alerts and incidents using AWS tools.
• Respond to and mitigate threats in real-time, conducting post-incident analysis and documentation. Risk and Compliance Management
• Conduct regular security assessments and audits to ensure compliance with industry standards (ISO 27001, SOC 2, etc.).
• Develop strategies to address vulnerabilities and mitigate risks.
• Collaboration and Integration
• Work closely with IT and development teams to integrate security services into CI/CD pipelines and production environments.
• Partner with clients to understand their requirements and deliver customized cloud security solutions.
• Reporting and Documentation
• Create detailed reports on detected threats, incidents, and response activities.
• Maintain technical documentation, security best practices, and deployment guides.
• Mentorship and Knowledge Sharing
• Provide guidance and mentorship to team members on security best practices and implementation processes.
• Stay current with emerging threats, tools, and AWS updates.

Required Skills

• Strong hands-on experience with AWS security tools (AWS WAF, GuardDuty, Security Hub, etc.)
• Expertise in Checkpoint Firewall management and troubleshooting
• Proficiency in Infrastructure as Code (IaC) tools like AWS CloudFormation and Terraform
• In-depth knowledge of Identity and Access Management (IAM), VPC security, and encryption techniques
• Experience with network defense, vulnerability management, and incident response
• Familiarity with DevSecOps and integrating security within CI/CD pipelines
• Knowledge of threat detection, risk assessment, and security audit processes
• Excellent analytical, problem-solving, and communication skills

Preferred Skills:

• AWS Certified Security – Specialty or AWS Certified Solutions Architect
• Checkpoint Certified Security Expert (CCSE) or similar certification
• Experience with scripting (Python, PowerShell, or Bash)
• Familiarity with compliance frameworks (ISO 27001, GDPR, SOC 2, PCI-DSS)

At Cognizant you will experience an exciting mix of innovation by design, creativity, collaboration, and efficiency within a framework of stimulating objectives and a passion for delivering the best to our customers.

You will be joining a network of some of the most creative, innovative, and dedicated people in the industry with ample opportunities to learn and develop your career.

Our Associates are chosen for their attitude, skills, knowledge, and enthusiasm but above all, their belief that anything is possible.

Cognizant is an equal opportunities employer, and we welcome all applications regardless of race, colour, gender, ethnic origin, nationality, religion or beliefs, disability, age, sexual orientation, political opinions, or trade union membership.