Cloud Security Engineer

🔐 Cloud Security Engineer (Azure / DevSecOps) — SC Clearance Required

Location: Hybrid — Remote with 2 days/week onsite (Gloucestershire area)

Clearance: Must hold active UK SC clearance

Type: Permanent | Full-time

We're partnering with a fast-growing, mission-driven technology company working at the cutting edge of large-scale data and geospatial intelligence. Their work helps governments, enterprises and nonprofits protect themselves against real-world threats. They're looking for a hands-on Cloud Security Engineer to help keep their environment secure by design.

This is an engineering-first role. You'll spend your time building security into cloud platforms, pipelines and infrastructure — not just monitoring it.

What you'll be doing

  • Designing, building and maintaining security automation and tooling across Azure
  • Embedding security into CI/CD pipelines — integrating SAST/DAST/SCA and ensuring supply chain integrity
  • Writing and reviewing Infrastructure-as-Code (Bicep / Terraform) for secure, repeatable cloud configuration
  • Implementing preventative and detective controls in Azure and automating remediation
  • Securing containerised workloads (Kubernetes) — RBAC, network policies and runtime protection
  • Building and managing identity & access controls across cloud platforms
  • Contributing to detection engineering, threat hunting and incident response when needed

What we're looking for

  • Solid hands-on experience in cloud security engineering or DevSecOps (cloud-first environments)
  • Strong working knowledge of the Azure security stack — Microsoft Defender for Cloud, Azure Policy, Secure Score
  • Practical experience securing CI/CD pipelines and embedding security into the development lifecycle
  • Experience securing Kubernetes and containerised environments
  • Confident with Infrastructure-as-Code (Bicep / Terraform) and policy-as-code approaches
  • Proficiency in scripting and automation (PowerShell, Python, KQL)
  • Good grounding in identity & access management, network security and modern attack vectors (OWASP Top 10, MITRE ATT&CK)

Nice to have

  • Certifications such as AZ-500, SC-200, SC-300 or CKS (Certified Kubernetes Security Specialist)
  • Experience with SIEM tooling (Microsoft Sentinel) and detection-as-code
  • Background in regulated, secure or high-trust environments

What's on offer

  • Competitive salary
  • Comprehensive health, dental and vision cover
  • Flexible hybrid working
  • Flexible hours, travel opportunities and parental leave

Please note: Applicants must hold current SC or DV clearance.

Interested, or know someone who'd be a great fit? Drop me a message or apply below. 👇

Apply Now
Apply Now

Job Details

Company
Fortice
Location
Gloucestershire, England, United Kingdom
Hybrid / Remote Options
Posted