Cloud Security Engineer

Contract 6 Months Outside IR35 Hybrid (2 days a week)

Cloud Security Engineer - Financial Services

We're seeking a skilled Cloud Security Engineer to support a financial services client with the secure design, implementation, and monitoring of cloud environments, ensuring alignment with regulatory and industry standards.

Responsibilities:

• Design and implement cloud security controls across AWS, Azure, and/or GCP environments.

• Conduct cloud security assessments, risk reviews, and remediation planning.

• Support compliance with financial regulations (FCA, PRA, DORA) and frameworks (ISO 27001, NIST, CIS).

• Implement infrastructure-as-code (IaC) security, workload protection, and CI/CD pipeline hardening.

• Develop and enforce policies for identity and access management, encryption, logging, and monitoring.

• Collaborate with DevOps, architecture, and security teams to embed secure-by-design practices.

• Support incident response, threat detection, and cloud-specific vulnerability management.

Requirements:

• 5+ years in cybersecurity, with 2+ years focused on cloud security engineering.

• Strong experience with AWS, Azure, and/or GCP security services and best practices.

• Solid understanding of cloud-native security tooling (e.g., GuardDuty, Azure Defender, GCP SCC).

• Experience supporting regulated environments, ideally within financial services.

• Familiar with compliance and cloud governance frameworks (e.g., CSA CCM, NIST 800-53, ISO 27017).

• Proficiency with IaC tools (e.g., Terraform, CloudFormation) and CI/CD security.

• Certifications such as CCSP, AWS Security Specialty, AZ-500, or GCP Professional Cloud Security Engineer are a plus.