18 of 18 AWS CloudTrail Jobs in England

public sector. Inside IR35 Till 13th March 2026 Onsite aspect in Newcastle £466 per day Tech stack Minimum 2 years of professional experience in cloud security, specifically within AWS environments, demonstrating a track record of implementing and managing comprehensive security strategies. Experience leading projects with a focus on cloud security, showing capability in managing resources, timelines, and stakeholder … expectations. A commitment to continuous professional development, staying abreast of new AWS services, security trends, and techniques in cloud security. Experience and technical skills: AWS Security Services Proficiency: Deep understanding and hands-on experience with AWS security services such as AWS GuardDuty, AWS Inspector, AWS CloudTrail, AWS Config, and Service Control Policies (SCPs). Knowledge of cloud security frameworks, best practices, and industry standards. Familiarity with the AWS Well-Architected Framework, especially the Security Pillar, to build secure and resilient cloud applications Infrastructure as Code (IaC): Experience with IaC tools like AWS CloudFormation or Terraform to automate the More ❯

capabilities. Keep up with current threat intelligence, emerging trends, TTPs, and vulnerabilities to adapt our detection strategies and effectively respond to evolving threats. About You Strong understanding of AWS cloud platforms with proficiency in a wide range of AWS services (e.g., EC2, S3, RDS, Lambda, IAM, VPC, CloudFormation). Experience in developing and maintaining detection rules … streamline our processes. Skilled in programming languages such as PowerShell, Python, or Go, with a focus on security use cases. Hands-on experience in Cyber Security within an AWS cloud environment, including triaging Amazon GuardDuty findings and analyzing AWS CloudTrail logs. Ideally a bachelor's degree in information technology, computer science, information systems, or … a related field is preferred but not essential. Relevant work experience with a high school diploma will also be considered. Preferred, but not required, certifications may include AWS Certifications such as AWS Solutions Architect Associate, Security Specialty, or DevOps Engineer. What's in it for you? Enjoy a generous market salary, along with fantastic growth opportunities More ❯

Our client currently seek a SC Cleared AWS DevOps Engineer to join their dynamic team on an initial 6 month contract. This role is 95% remote with travel required once a month to the office. Key Skills and Responsibilities: Design, deliver, and support secure and scalable AWS infrastructure using services like EC2, S3, ECS, and FARGATE … or CDK Use tools like Chef and Ansible for automated server configuration, patching, and environment standardization Build and manage CI/CD pipelines with Jenkins, GitHub Actions, or AWS Code Pipeline Perform administrative and troubleshooting tasks on Linux-based systems, including log analysis and performance tuning. Lead technical triage and root cause analysis for infrastructure-related issues Develop … and deploy applications using Docker and AWS FARGATE Use CloudWatch, CloudTrail, and third-party tools like Datadog for performance and cost efficiency Configure AWS networking (VPCs, TGWs), enforce governance via AWS Config and tagging policies Maintain architecture diagrams, SOPs, and collaborate across engineering and product teams Should this role speak to you More ❯

Our client currently seek a SC Cleared AWS DevOps Engineer to join their dynamic team on an initial 6 month contract. This role is 95% remote with travel required once a month to the office. Key Skills and Responsibilities: Design, deliver, and support secure and scalable AWS infrastructure using services like EC2, S3, ECS, and FARGATE … or CDK Use tools like Chef and Ansible for automated server configuration, patching, and environment standardization Build and manage CI/CD pipelines with Jenkins, GitHub Actions, or AWS Code Pipeline Perform administrative and troubleshooting tasks on Linux-based systems, including log analysis and performance tuning. Lead technical triage and root cause analysis for infrastructure-related issues Develop … and deploy applications using Docker and AWS FARGATE Use CloudWatch, CloudTrail, and third-party tools like Datadog for performance and cost efficiency Configure AWS networking (VPCs, TGWs), enforce governance via AWS Config and tagging policies Maintain architecture diagrams, SOPs, and collaborate across engineering and product teams Should this role speak to you More ❯

The Role: We are looking for a Cloud Security Engineer with experience on AWS, to join our growing team. The successful candidate will have an essential role in ensuring the information security of our business. You will be working in a team that is designing and building resilient and secure Cloud environments that proactively prevent security threats. You … will typically have industry accreditations like AWS Certified Security - Specialty The main responsibilities of the position include: Design and build resilient Cloud infrastructures that are protected against security threats Develop and assess Cloud security solutions to secure systems, databases and networks Conduct assessment and make recommendations to ensure that appropriate controls are in place Gain insight into security … Information Security or any other related field Minimum 1 year working experience in Information Security, with proven focus in Cloud Security Deep technical knowledge of Amazon Web Services (AWS). Expertise in Microsoft Azure and Oracle Cloud will be considered an advantage Hands-on experience on AWS services such as IAM, Organizations, SSO, VPC, Transit Gateway More ❯

Strong understanding of detection-as-code, MITRE ATT&CK, log pipelines, and cloud signal sources Able to navigate outsourced SOC relationships while owning internal threat understanding Familiarity with AWS CloudTrail, GuardDuty, KMS, S3 access logs, EKS/ECS audit, custom log ingestion; exposure to SageMaker/Bedrock or equivalent a plus Curious, methodical, and proactive mindset More ❯

experineced Security Engineer . This role is all about protecting and improving cloud and infrastructure environments, driving security automation, and helping shape DevSecOps practices. You’ll work across AWS and modern platforms, supporting both day-to-day security operations and longer-term strategic projects. Key Responsibilities: Maintain strong security posture across cloud infrastructure Manage vulnerabilities and support regular … system maintenance Design, implement, and manage security tooling in cloud environments ( AWS focus ) Support threat detection, incident response, and risk mitigation activities Contribute to compliance initiatives (ISO 27001, CIS benchmarks ) Collaborate with infrastructure and platform teams to embed security controls Apply secure DevOps practices (code scanning, container security, IaC) Support governance, reporting, and vulnerability management processes Participate in … security reviews, threat assessments, and architecture decisions Key Requirements: 3+ years’ hands-on experience with AWS security services (CloudTrail, GuardDuty, WAF, IAM, Security Hub) Strong knowledge of cloud governance and security best practices Familiarity with CI/CD pipelines and DevSecOps approaches Experience with infrastructure as code (Terraform) Exposure to container technologies (Docker/Kubernetes) Good More ❯

experineced Security Engineer . This role is all about protecting and improving cloud and infrastructure environments, driving security automation, and helping shape DevSecOps practices. You’ll work across AWS and modern platforms, supporting both day-to-day security operations and longer-term strategic projects. Key Responsibilities: Maintain strong security posture across cloud infrastructure Manage vulnerabilities and support regular … system maintenance Design, implement, and manage security tooling in cloud environments ( AWS focus ) Support threat detection, incident response, and risk mitigation activities Contribute to compliance initiatives (ISO 27001, CIS benchmarks ) Collaborate with infrastructure and platform teams to embed security controls Apply secure DevOps practices (code scanning, container security, IaC) Support governance, reporting, and vulnerability management processes Participate in … security reviews, threat assessments, and architecture decisions Key Requirements: 3+ years’ hands-on experience with AWS security services (CloudTrail, GuardDuty, WAF, IAM, Security Hub) Strong knowledge of cloud governance and security best practices Familiarity with CI/CD pipelines and DevSecOps approaches Experience with infrastructure as code (Terraform) Exposure to container technologies (Docker/Kubernetes) Good More ❯

frameworks such as MITRE ATT&CK. Hands-on skills in log analysis, anomaly detection, and incident remediation. Experience working in traditional IT and cloud (Azure and/or AWS) environments. Strong communication skills with the ability to translate technical threats into business terms. Tools & Technologies - You will work with a modern SOC technology stack, including: SIEM: Microsoft Sentinel … Cortex XSOAR, ServiceNow SecOps Vulnerability Management: Tenable Nessus/Tenable.io Other nice to have tools: Shodan, Censys, BloodHound, Metasploit, Cobalt Strike, MITRE ATT&CK Navigator Cloud Security (advantageous): AWS GuardDuty, Security Hub, CloudTrail, Detective, Macie, Config, Inspector, VPC Flow Logs Security clearance - Due to the nature of this role, Security Check (SC) clearance is required. Candidates More ❯

frameworks such as MITRE ATT&CK. Hands-on skills in log analysis, anomaly detection, and incident remediation. Experience working in traditional IT and cloud (Azure and/or AWS) environments. Strong communication skills with the ability to translate technical threats into business terms. Tools & Technologies - You will work with a modern SOC technology stack, including: SIEM: Microsoft Sentinel … Cortex XSOAR, ServiceNow SecOps Vulnerability Management: Tenable Nessus/Tenable.io Other nice to have tools: Shodan, Censys, BloodHound, Metasploit, Cobalt Strike, MITRE ATT&CK Navigator Cloud Security (advantageous): AWS GuardDuty, Security Hub, CloudTrail, Detective, Macie, Config, Inspector, VPC Flow Logs Security clearance - Due to the nature of this role, Security Check (SC) clearance is required. Candidates More ❯

Job Title: AWS Engineer (OpenSearch) Work Location: London, UK (Hybrid) Job Description: We are looking for an experienced AWS Observability Engineer specializing in the Elasticsearch (ELS) Stack to design, implement, and optimize observability solutions across our cloud infrastructure. The ideal candidate will have hands-on experience in building OpenSearch infrastructure . Expertise in AWS … Configuring Platform and applications to send logs to Open Search. Expertise in the ELS Stack (Elasticsearch, Logstash, Kibana). Designing centralized logging, building Kibana dashboards, optimizing observability with AWS services (CloudWatch, CloudTrail, S3), and automating workflows using Python or Terraform. Configure platforms/applications to forward logs to OpenSearch. Optimize log ingestion pipelines and troubleshoot issues. More ❯

and MITRE ATT&CK. Experience handling cybersecurity incidents at each stage of the incident life cycle, including initial analysis, triage, containment, eradication, recovery, and postmortem. Strong knowledge of AWS Security, specifically in areas such as IAM, KMS, and Network Infrastructure. Expertise in analysing security events from Microsoft Windows endpoints with a deep understanding of operating system security. Experience … handling incidents originating from Microsoft cloud-based services like Azure and Microsoft 365. Preferred Qualifications Familiarity with AWS threat detection and logging services such as GuardDuty and CloudTrail, as well as industry standard Cloud SIEMs like DataDog. Proficiency in analysing security events within endpoint protection platforms like CrowdStrike Falcon. Ability to liaise effectively with SOC Analysts … on problem-solving. Strong teaching and mentoring skills. Exceptional presentation and communication skills. Willingness to occasionally travel outside of the primary work location. 2+ years of experience with AWS or other hyperscale cloud provider implementation. Extensive experience working effectively in a heavily distributed environment. Consulting experience is a plus. Demonstrated experience maintaining strong documentation. Ability to transfer knowledge More ❯

Chain and MITRE ATT&CK. Experience handling cybersecurity incidents at each stage of the incident lifecycle, including initial analysis, triage, containment, eradication, recovery, and postmortem. Strong knowledge of AWS Security, specifically in areas such as IAM, KMS, and Network Infrastructure. Expertise in analyzing security events from Microsoft Windows endpoints with a deep understanding of operating system security. Experience … handling incidents originating from Microsoft cloud-based services like Azure and Microsoft 365. Preferred Qualifications Familiarity with AWS threat detection and logging services such as GuardDuty and CloudTrail, as well as industry standard Cloud SIEMs like DataDog. Proficiency in analyzing security events within endpoint protection platforms like CrowdStrike Falcon. Ability to liaise effectively with SOC Analysts … our Managed Detection and Response vendor. Understanding of current cybersecurity threats, typical signs of attacks, and approaches to prevent and mitigate such incidents. 2+ years of experience with AWS or other hyperscale cloud provider implementation. More ❯

Chain and MITRE ATT&CK. Experience handling cybersecurity incidents at each stage of the incident lifecycle, including initial analysis, triage, containment, eradication, recovery, and postmortem. Strong knowledge of AWS Security, specifically in areas such as IAM, KMS, and Network Infrastructure. Expertise in analyzing security events from Microsoft Windows endpoints with a deep understanding of operating system security. Experience … handling incidents originating from Microsoft cloud-based services like Azure and Microsoft 365. Preferred Qualifications Familiarity with AWS threat detection and logging services such as GuardDuty and CloudTrail, as well as industry standard Cloud SIEMs like DataDog. Proficiency in analyzing security events within endpoint protection platforms like CrowdStrike Falcon. Ability to liaise effectively with SOC Analysts … our Managed Detection and Response vendor. Understanding of current cybersecurity threats, typical signs of attacks, and approaches to prevent and mitigate such incidents. 2+ years of experience with AWS or other hyperscale cloud provider implementation. More ❯

Chain and MITRE ATT&CK. Experience handling cybersecurity incidents at each stage of the incident lifecycle, including initial analysis, triage, containment, eradication, recovery, and postmortem. Strong knowledge of AWS Security, specifically in areas such as IAM, KMS, and Network Infrastructure. Expertise in analyzing security events from Microsoft Windows endpoints with a deep understanding of operating system security. Experience … handling incidents originating from Microsoft cloud-based services like Azure and Microsoft 365. Preferred Qualifications Familiarity with AWS threat detection and logging services such as GuardDuty and CloudTrail, as well as industry standard Cloud SIEMs like DataDog. Proficiency in analyzing security events within endpoint protection platforms like CrowdStrike Falcon. Ability to liaise effectively with SOC Analysts … our Managed Detection and Response vendor. Understanding of current cybersecurity threats, typical signs of attacks, and approaches to prevent and mitigate such incidents. 2+ years of experience with AWS or other hyperscale cloud provider implementation. More ❯

Chain and MITRE ATT&CK. Experience handling cybersecurity incidents at each stage of the incident lifecycle, including initial analysis, triage, containment, eradication, recovery, and postmortem. Strong knowledge of AWS Security, specifically in areas such as IAM, KMS, and Network Infrastructure. Expertise in analyzing security events from Microsoft Windows endpoints with a deep understanding of operating system security. Experience … handling incidents originating from Microsoft cloud-based services like Azure and Microsoft 365. Preferred Qualifications Familiarity with AWS threat detection and logging services such as GuardDuty and CloudTrail, as well as industry standard Cloud SIEMs like DataDog. Proficiency in analyzing security events within endpoint protection platforms like CrowdStrike Falcon. Ability to liaise effectively with SOC Analysts … our Managed Detection and Response vendor. Understanding of current cybersecurity threats, typical signs of attacks, and approaches to prevent and mitigate such incidents. 2+ years of experience with AWS or other hyperscale cloud provider implementation. More ❯

Chain and MITRE ATT&CK. Experience handling cybersecurity incidents at each stage of the incident lifecycle, including initial analysis, triage, containment, eradication, recovery, and postmortem. Strong knowledge of AWS Security, specifically in areas such as IAM, KMS, and Network Infrastructure. Expertise in analyzing security events from Microsoft Windows endpoints with a deep understanding of operating system security. Experience … handling incidents originating from Microsoft cloud-based services like Azure and Microsoft 365. Preferred Qualifications Familiarity with AWS threat detection and logging services such as GuardDuty and CloudTrail, as well as industry standard Cloud SIEMs like DataDog. Proficiency in analyzing security events within endpoint protection platforms like CrowdStrike Falcon. Ability to liaise effectively with SOC Analysts … our Managed Detection and Response vendor. Understanding of current cybersecurity threats, typical signs of attacks, and approaches to prevent and mitigate such incidents. 2+ years of experience with AWS or other hyperscale cloud provider implementation. More ❯

delivered security change projects/programmes Experience with GDPR/UK Data Protection, Cyber Essentials and ISO 27001 frameworks Azure security tooling including Security Centre, Defender, Sentinel, Intune, AWS Security Hub, GuardDuty, Inspector, WAF, Security Lake, CloudTrail Able to understand and effectively communicate technical concepts in discussions with both technical and non-technical colleagues Broad knowledge More ❯