17 of 17 Amazon GuardDuty Jobs in the UK excluding London

documentation. Essential skills/knowledge/experience: AWS Security & Compliance Expertise: Deep understanding of AWS Security, Identity, and Compliance services, including IAM, AWS Organizations, SCPs, Secrets Manager, AWS Config, GuardDuty, Security Hub, CloudTrail, and AWS KMS for encryption, ensuring robust cloud security. Threat Detection & Compliance: Implementation of AWS security tools like Amazon Detective, AWS Shield, WAF, AWS Firewall … Automation: Proficient in Jenkins, Git, GitHub Actions, ensuring secure CI/CD pipelines with artifact encryption, automated security scanning, and DevSecOps best practices. Cloud-Based Database Security: Experience managing Amazon RDS, DynamoDB, ElastiCache, enforcing database encryption (KMS), automated backups, fine-grained access controls, and data integrity monitoring. Cost Optimization & FinOps: Drive cloud cost optimization strategies using AWS Cost Explorer … AWS Certified Solutions Architect, AWS DevOps Professional. Additional Skills: Container orchestration and security knowledge, CI/CD & security automation, cloud cost optimization & FinOps, AWS-native security services (Macie, Inspector, GuardDuty), programming & scripting (Python, Shell), AWS database and networking expertise. #J-18808-Ljbffr More ❯

AWS Config and other AWS-native tools. Continuously monitor system performance and proactively implement optimisation strategies. Apply AWS security best practices including managing IAM roles/policies, KMS encryption, GuardDuty, Security Hub etc. Ensure compliance with organisational policies and industry regulations. Monitor AWS resource usage and costs using Cost Explorer, AWS Budgets, and Trusted Advisor. Recommend and implement cost More ❯

AWS Config and other AWS-native tools. Continuously monitor system performance and proactively implement optimisation strategies. Apply AWS security best practices including managing IAM roles/policies, KMS encryption, GuardDuty, Security Hub etc. Ensure compliance with organisational policies and industry regulations. Monitor AWS resource usage and costs using Cost Explorer, AWS Budgets, and Trusted Advisor. Recommend and implement cost More ❯

recent focus on AWS cloud engineering. Expert in AWS core services (EC2, VPC, IAM, S3, ALB/ELB, CloudFront, ECR/ECS, Elastic Beanstalk, Control Tower) and security tooling (GuardDuty, IAM Identity Center, CloudWatch). Strong Kubernetes (EKS/OpenShift) administration, Helm packaging and service-mesh know-how. Proficient in IaC (Terraform, Terraform Cloud, CloudFormation), containerisation (Docker, Docker Compose More ❯

Social network you want to login/join with: Role: Cloud Security Analyst - AWS/Azure - Security Tooling Job Description An industry leading Security Analyst with experience in supporting and shaping Enterprise scale projects. The role will sit within the More ❯

recent focus on AWS cloud engineering. Expert in AWS core services (EC2, VPC, IAM, S3, ALB/ELB, CloudFront, ECR/ECS, Elastic Beanstalk, Control Tower) and security tooling (GuardDuty, IAM Identity Center, CloudWatch). Strong Kubernetes (EKS/OpenShift) administration, Helm packaging and service-mesh know-how. Proficient in IaC (Terraform, Terraform Cloud, CloudFormation), containerisation (Docker, Docker Compose More ❯

recent focus on AWS cloud engineering. Expert in AWS core services (EC2, VPC, IAM, S3, ALB/ELB, CloudFront, ECR/ECS, Elastic Beanstalk, Control Tower) and security tooling (GuardDuty, IAM Identity Center, CloudWatch). Strong Kubernetes (EKS/OpenShift) administration, Helm packaging and service-mesh know-how. Proficient in IaC (Terraform, Terraform Cloud, CloudFormation), containerisation (Docker, Docker Compose More ❯

such as CloudWatch, ELK, and Grafana. Programming skills in Python or Go are preferred. Scripting skills in Bash, JavaScript, or similar. Knowledge of SecDevOps security best practices, including SIEM, GuardDuty, Shield, Inspector, and Security Hub. Experience developing and managing CI/CD pipelines. Understanding of Identity and Access Management best practices. Security Clearance: The successful candidate must be able More ❯

multi-account best practices. Develop and maintain Infrastructure as Code solutions using Terraform, CloudFormation, and AWS CDK. Champion security, compliance, and observability by integrating services like AWS Security Hub, GuardDuty, and Inspector. Design CI/CD pipelines to enable seamless deployments and self-service models for customers. Innovate with AWS Networking, KMS, IAM, and container orchestration (Kubernetes, ECS). More ❯

cloud security, security architecture, and EUC security. Strong technical foundation in EUC and cloud security, with hands-on experience across Microsoft Defender, Entra ID, Intune, and AWS tooling (e.g., GuardDuty). Broad exposure to security tooling and operations, including experience with Splunk, Rapid7, Proofpoint, and Akamai, as well as supporting penetration testing, monitoring, and response. Collaborative and proactive approach More ❯

SPL (Splunk), KQL (Microsoft), Sigma, or similar. Experience with SIEM platforms (e.g. Splunk, Sentinel, Elastic), EDR tools (e.g. CrowdStrike, SentinelOne), and/or cloud-native security services (e.g. AWS GuardDuty, GCP Chronicle). Ability to create and iterate on detection content (e.g. SIEM rules, correlation searches and detection-as-code signatures) to proactively identify malicious behaviour and improve threat More ❯

security, threat modeling, and risk management. Proven experience leading threat modeling exercises and designing secure systems within AWS. Deep knowledge of AWS security services (e.g., AWS IAM, VPC, KMS, GuardDuty, Security Hub, Inspector). Hands-on experience with cloud-native security tools, frameworks, and standards (e.g., CIS AWS Foundations Benchmark, NIST, OWASP). Experience with secure SDLC practices and More ❯

assessment (such as Tenable and the NCSC’s Active Cyber Defence Toolkit) and Attack Surface Management tools Experience using cloud provider monitoring tools such as AWS CloudWatch, CloudTrail and GuardDuty for threat monitoring, alerting and response In the event of a strong pool of candidates, desirable will be used as a second sift Success profiles (To be assessed at More ❯

threat detection and response. Hands-on experience with at least one major SIEM platform (e.g. Splunk, Elastic SIEM, IBM QRadar). Familiarity with cloud security tools such as AWS GuardDuty, Azure Security Center, or Google Cloud Security. Background in client-facing roles or consulting, with the ability to communicate complex technical concepts clearly and effectively to clients. Strong understanding More ❯

to clients. Technical Expertise Hands-on experience with at least one major SIEM platform (e.g. Splunk, Elastic SIEM, IBM QRadar) and familiarity with cloud security tools such as AWS GuardDuty, Azure Security Center, or Google Cloud Security. Relevant cybersecurity certifications, such as CISSP, GIAC (e.g., GCIA, GCIH), or Splunk certification (e.g., Splunk Core Certified Power User), are highly desirable. More ❯

Possession of or willingness to attain certifications such as GCIH, GCIA, GREM, OSCP, CISSP, or equivalent. Cloud & Advanced Tools: Experience with cloud security monitoring and incident response tools (AWS GuardDuty, Azure Sentinel) and familiarity with sandboxing and reverse engineering tools. SIEM: Experience in SPLUNK Cloud observability platform and Crowdstrike. Global Perspective: Prior experience coordinating cross-organisational responses in a More ❯

and formatters: ESLint, dprint, Biome, semantic versioning, conventional commits Familiarity with DataDog or Site 24x7 is a bonus Familiarity with API Security, Container Security, AWS Cloud Security Familiarity with Amazon AWS Policy, Configuration, WAF, GuardDuty and Security Management tools Certified Information Systems Security Professional (CISSP) or similar certification Why work for Watchfinder? Firstly, what makes Watchfinder a great More ❯