CONTRACTOR MUST EITHER HOLD ACTIVE SC CLEARANCE
We are looking for a Cybersecurity Engineer with strong hands-on experience across modern cloud security, detection technologies, vulnerability management, and identity-focused controls. The ideal candidate brings a broad understanding of both Azure and AWS environments and can design, implement, and optimize security solutions that safeguard our cloud workloads, endpoints, and enterprise applications.
Key Responsibilities
• Cloud Security & Monitoring
• Deploy, configure, and maintain security monitoring tools such as Splunk, Elastic Stack, Microsoft Defender suite, and AWS/Azure native security solutions.
• Develop and refine detection rules, dashboards, alerts, and playbooks to enhance threat visibility across hybrid cloud environments.
• Perform continuous monitoring of cloud workloads and respond to suspicious activities or alerts in a timely manner.
• Vulnerability Management
• Lead and manage vulnerability scanning across Azure and AWS infrastructures, ensuring proper deployment and configuration of scanning tools.
• Analyse scan results, prioritise vulnerabilities based on risk, and collaborate with infrastructure and application teams to support effective remediation.
• Implement vulnerability management processes, from discovery and assessment to reporting and mitigation.
• Identity & Access Management (IAM)
• Support IAM activities across cloud platforms, including role-based access controls (RBAC), least-privilege enforcement, and access reviews.
• Assist in evaluating and optimizing identity security tools such as Azure AD, AWS IAM, and enterprise onboarding/offboarding workflows.
• Work closely with internal stakeholders to ensure secure access patterns and reduce identity-related risks.
• Public Key Infrastructure (PKI)
• Contribute to the operation and enhancement of PKI systems, certificate life cycle management, and secure key handling.
• Troubleshoot certificate issues and support the implementation of certificate policies and security standards.
• Security Engineering & Best Practices
• Participate in designing secure architectures for new cloud solutions.
• Provide guidance on secure configuration baselines, hardening practices, and compliance requirements.
• Support automation and Scripting efforts to improve repeatability and reduce manual security efforts.
Preferred Skills & Background
• Hands-on experience with Splunk, Elastic, Microsoft Defender, and/or similar SIEM/SOAR technologies.
• Strong understanding of AWS and Azure cloud environments in security contexts.
• Experience deploying and managing vulnerability scanning tools in both cloud platforms.
• Knowledge of IAM concepts, cloud RBAC, MFA, conditional access, and identity governance.
• Familiarity with PKI, certificates, and cryptographic key management.
• Ability to collaborate effectively with DevOps, Cloud, and IT teams.
• Strong analytical mindset and ability to translate technical risk into clear, actionable insights.
