2 of 2 Cloud Security Jobs in Somerset

Information Security Engineer Location: UK (Hybrid - occasional office visits in the Bath area, a few days per month) Salary: £45,000 - £60,000 DOE + equity + benefits The Company We're working with a fast-growing SaaS scale-up that is strengthening its security function. The company already has strong compliance and security foundations in place … but they're now looking for an Information Security Engineer to take ownership of ongoing improvements, support audits, and ensure the business remains secure as it continues to scale. The Role This role is a mix of hands-on technical security engineering and governance, risk, and compliance (GRC) . You'll be responsible for maintaining compliance frameworks, remediating … issues flagged by security tools, and working closely with engineering teams to implement best practices. Key Responsibilities: Maintain and enhance compliance with ISO and SOC 2 frameworks. Monitor security alerts and remediate issues directly where appropriate. Conduct audits of systems, identify risks, and create remediation plans. Collaborate with engineering teams to address vulnerabilities. Support upcoming audits and act More ❯

execute our cybersecurity strategy, working across IT, digital, and regional teams to embed a strong cyber culture and robust defenses. Key responsibilities include: Strategic Leadership: Own and evolve the security roadmap, including tooling optimisation and risk management. Secure Design & Architecture: Provide expert guidance across IT projects and infrastructure. Operational Oversight: Define and deploy control baselines, templates, and standards. Tooling … Effectiveness: Manage and monitor security operations tools such as Defender, Sentinel, Tenable, and CASB. Incident Response: Lead triage, coordinate crisis responses, and oversee post-incident reviews. Documentation & Governance: Maintain hardening guides, architecture diagrams, and lead working groups. Cross-Regional Alignment: Foster collaboration and consistency across global cybersecurity efforts. What You Bring Degree or equivalent experience in Information Security. Certifications … such as Security+, CEH, CySA+, or Cloud Security Engineer. Extensive experience in cybersecurity, especially incident response and technical operations. Strong understanding of AWS and Azure cloud platforms. Familiarity with frameworks like NIST, ISO, COBIT, and OWASP. Proven success in leading and delivering security projects. Experience with PowerShell and automation. Consulting experience across IT and digital teams. More ❯