17 of 17 AWS KMS Jobs in the UK

public sector. Inside IR35 Till 13th March 2026 Onsite aspect in Newcastle £466 per day Tech stack Minimum 2 years of professional experience in cloud security, specifically within AWS environments, demonstrating a track record of implementing and managing comprehensive security strategies. Experience leading projects with a focus on cloud security, showing capability in managing resources, timelines, and stakeholder … expectations. A commitment to continuous professional development, staying abreast of new AWS services, security trends, and techniques in cloud security. Experience and technical skills: AWS Security Services Proficiency: Deep understanding and hands-on experience with AWS security services such as AWS GuardDuty, AWS Inspector, AWS CloudTrail, AWS … and authorization. Understanding of encryption methods and AWS services related to data encryption both at rest and in transit. Experience with AWS Key Management Service (KMS) and AWS Certificate Manager (ACM). Knowledge of compliance requirements that impact cloud security (e.g., GDPR, HIPAA, SOC 2) and experience in implementing controls to meet these More ❯

tasks, monitor performance, and provide mentorship and training. Foster a culture of security, accountability, and continuous improvement. Operational Oversight Oversee the deployment, monitoring, and maintenance of key management systems (KMS), certificate authorities (CA), and secrets management platforms. Manage Certificate Authorities (CAs), Registration Authorities (RAs), OCSP responders, CRLs, and HSMs. Ensure timely rotation and renewal of certificates and secrets to … management tools. Proficiency in cryptographic protocols (OCSP, CRL, TSA). Hands-on experience with HSMs (e.g., Thales, SafeNet) and PKI platforms (e.g., Entrust, eMudhra). Experience with cloud-native KMS solutions (e.g., AWS KMS, Azure Key Vault, GCP Cloud KMS). Familiarity with scripting and automation (e.g., Python, PowerShell, Terraform). Excellent leadership, communication, and More ❯

At IdentityE2E (a CACI company), we're redefining what's possible in AWS platform engineering. As the first UK company to achieve AWS Vetted Partner Program (VPP) status for National Security and Defence, we design cutting-edge solutions for complex, highly regulated environments at large scale. Our Jezero Secure Landing Zone Accelerator and Cydonia biometric cloud … solutions set industry benchmarks for scalability, security, and innovation. We're looking for an experienced AWS Platform Engineer who's ready to lead architecture decisions, experiment boldly, and push boundaries in delivering secure, scalable, and dynamic cloud platforms. You'll collaborate with expert level engineers, have opportunities to work in collaboration with AWS, and to influence … AWS Security Hub, GuardDuty, and Inspector. Design CI/CD pipelines to enable seamless deployments and self-service models for customers. Innovate with AWS Networking, KMS, IAM, and container orchestration (Kubernetes, ECS). Mentor and lead junior engineers Skills, Knowledge and Expertise Required: Extensive hands-on experience designing and managing AWS cloud infrastructure. More ❯

Job Title: Lead Cloud Engineer Location: London (Hybrid) Job Description: Role Summary: Lead the design, deployment, and management of AWS-based infrastructure, ensuring high availability, scalability, and security. Architect, deploy, and maintain secure cloud-based applications and solutions on AWS services such as EC2, S3, RDS, Lambda, CloudFormation, and VPC. Collaborate with development, operations, and security … Implement and manage cloud security best practices, including IAM, encryption, firewalls, and compliance with regulatory requirements such as PCI DSS. Ensure smooth integration of legacy mainframe applications with AWS cloud infrastructure and manage hybrid cloud solutions. Oversee the integration of payment systems and ensure secure and compliant handling of payment transactions. Design and implement disaster recovery plans, backup … CDK. Deep understanding of AWS networking concepts, including VPC, Direct Connect, VPN, Load Balancers, and Route 53. Proficient in AWS security practices, including IAM, KMS, security groups, NACLs, and multi-factor authentication. Solid experience in containerization and orchestration using AWS services like ECS, EKS, and Docker. Strong understanding of microservices architecture, serverless More ❯

Job Summary At IdentityE2E (a CACI business), we're redefining what's possible in AWS platform engineering. As the first UK company to achieve AWS Vetted Partner Program (VPP) status for National Security and Defence, we design cutting-edge solutions for complex, highly regulated environments at large scale. Our Jezero Secure Landing Zone Accelerator and Cydonia … biometric cloud solutions set industry benchmarks for scalability, security, and innovation. We're looking for an experienced AWS Platform Engineer who's ready to lead architecture decisions, experiment boldly, and push boundaries in delivering secure, scalable, and dynamic cloud platforms. You'll collaborate with expert level engineers, have opportunities to work in collaboration with AWS, and … AWS Security Hub, GuardDuty, and Inspector. Design CI/CD pipelines to enable seamless deployments and self-service models for customers. Innovate with AWS Networking, KMS, IAM, and container orchestration (Kubernetes, ECS). Mentor and collaborate with a team of talented engineers, fostering a culture of technical excellence. Skills, Knowledge and Expertise Hands-on experience More ❯

to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments. Job Title: AWS Platform Engineer Requisition ID: 121695 Location: London/Manchester/Leeds - We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options … technology and self-motivated to find innovative solutions to complex challenges as part of a team who help keep the UK safe? Join BAE Systems as an experienced AWS Developer. As a key member of a Cloud Platform Team, you'll be working with our National Security Customers to build infrastructure platforms on AWS that Product … business issues; Regarded as an AWS subject matter expert Demonstrable expertise designing and building with AWS services such as EC2, ECS, EKS, S3, Lambda, RDS, KMS, ELB, SNS, SQS, IAM Scripting abilities with languages such as Shell, Bash, or Python A working knowledge of Linux, networking, routing & firewalls etc Strong understand of operational concepts on More ❯

JSP490 MOD/GDS Secure by Design principles ISO 27001, NIST CSF, CIS Controls v8 HMG, NPSA, NCSC policies and guidance Cloud security (Azure, AWS), containerisation, KMS, WAFs Event-driven microservices, network infrastructure, IDS/IPS AI security (ISO42001 desirable), ITHC scoping and remediation Threat modelling (Kill Chain, attack trees), HLD/LLD reviews Certifications: SABSA, TOGAF … AWS/Azure Architect, CISSP, CISM. Working towards or holding CIISEC Full Membership or UK Cyber Security Council registration (Chartered/Principal). What's in it for You Flexible Working: Remote-first with expected travel to site 2-3 days per week. Career Development: Continuous learning and professional growth. Benefits Package: Includes Private Health Care, Cash Back More ❯

JSP490 MOD/GDS Secure by Design principles ISO 27001, NIST CSF, CIS Controls v8 HMG, NPSA, NCSC policies and guidance Cloud security (Azure, AWS), containerisation, KMS, WAFs Event-driven microservices, network infrastructure, IDS/IPS AI security (ISO42001 desirable), ITHC scoping and remediation Threat modelling (Kill Chain, attack trees), HLD/LLD reviews Certifications: SABSA, TOGAF … AWS/Azure Architect, CISSP, CISM. Working towards or holding CIISEC Full Membership or UK Cyber Security Council registration (Chartered/Principal). What's in it for You Flexible Working: Remote-first with expected travel to site 2-3 days per week. Career Development: Continuous learning and professional growth. Benefits Package: Includes Private Health Care, Cash Back More ❯

scalable queries and operations Experience with TypeScript and modern development tools and practices. Knowledge of Cloud-Native development on the AWS Platform (IAM, SQS, S3, Secrets Management, KMS). Familiarity with CI/CD pipelines and DevOps practices. Experience with version control systems (Git). Understanding of web standards, accessibility, performance and development best practice. A track More ❯

skills for complex query development, performance tuning, indexing strategies, and data transformation to enable accurate and efficient migration from on-premises databases (SQL Server, Oracle, MySQL, NoSQL) to AWS cloud. Strong knowledge of data extraction, transformation, and loading (ETL) processes, leveraging tools such as Talend, Informatica, Matillion, Pentaho, MuleSoft, Boomi, or scripting languages (Python, PySpark, SQL). Understanding … data warehousing and data modelling techniques (Star Schema, Snowflake Schema). Familiarity with security frameworks (GDPR, HIPAA, ISO 27001, NIST, SOX, PII) and AWS security features (IAM, KMS, RBAC). Strong analytical skills to assess data quality, identify inconsistencies, and resolve migration issues. Ability to manage end-to-end migration projects, ensuring accuracy, meeting timelines, and collaborating More ❯

data/feature pipelines, training/finetuning, evaluations/release gates, registries, GPUs, and inference services Develop detections for AI-specific risks: model weight custody/exfil (e.g., anomalous KMS decrypts, S3 access), registry tampering, dataset poisoning, training pipeline/image compromise, GPU abuse/cryptomining, and inference abuse (prompt injection/data exfil patterns, anomalous RAG connector access … as-code, MITRE ATT&CK, log pipelines, and cloud signal sources Able to navigate outsourced SOC relationships while owning internal threat understanding Familiarity with AWS CloudTrail, GuardDuty, KMS, S3 access logs, EKS/ECS audit, custom log ingestion; exposure to SageMaker/Bedrock or equivalent a plus Curious, methodical, and proactive mindset Practical grasp of AI/ More ❯

skills Languages: Node.js, TypeScript Front-end: Next.js and Vercel, Tailwind CSS Back-end: OpenAPI Infrastructure: AWS (ECR, ECS, Fargate, Elasticache/Redis, SQS, SES, Cognito, RDS, Bedrock, KMS, S3) Databases: MongoDB and PostgreSQL This is a hybrid role - 4 days per week in office (London N1) and 1 day remote A starting salary in the region of More ❯

at each stage of the incident lifecycle, including initial analysis, triage, containment, eradication, recovery, and postmortem. Strong knowledge of AWS Security, specifically in areas such as IAM, KMS, and Network Infrastructure. Expertise in analyzing security events from Microsoft Windows endpoints with a deep understanding of operating system security. Experience handling incidents originating from Microsoft cloud-based services … like Azure and Microsoft 365. Preferred Qualifications Familiarity with AWS threat detection and logging services such as GuardDuty and CloudTrail, as well as industry standard Cloud SIEMs like DataDog. Proficiency in analyzing security events within endpoint protection platforms like CrowdStrike Falcon. Ability to liaise effectively with SOC Analysts and Threat Hunters from our Managed Detection and Response vendor. … Understanding of current cybersecurity threats, typical signs of attacks, and approaches to prevent and mitigate such incidents. 2+ years of experience with AWS or other hyperscale cloud provider implementation. More ❯

at each stage of the incident lifecycle, including initial analysis, triage, containment, eradication, recovery, and postmortem. Strong knowledge of AWS Security, specifically in areas such as IAM, KMS, and Network Infrastructure. Expertise in analyzing security events from Microsoft Windows endpoints with a deep understanding of operating system security. Experience handling incidents originating from Microsoft cloud-based services … like Azure and Microsoft 365. Preferred Qualifications Familiarity with AWS threat detection and logging services such as GuardDuty and CloudTrail, as well as industry standard Cloud SIEMs like DataDog. Proficiency in analyzing security events within endpoint protection platforms like CrowdStrike Falcon. Ability to liaise effectively with SOC Analysts and Threat Hunters from our Managed Detection and Response vendor. … Understanding of current cybersecurity threats, typical signs of attacks, and approaches to prevent and mitigate such incidents. 2+ years of experience with AWS or other hyperscale cloud provider implementation. More ❯

at each stage of the incident lifecycle, including initial analysis, triage, containment, eradication, recovery, and postmortem. Strong knowledge of AWS Security, specifically in areas such as IAM, KMS, and Network Infrastructure. Expertise in analyzing security events from Microsoft Windows endpoints with a deep understanding of operating system security. Experience handling incidents originating from Microsoft cloud-based services … like Azure and Microsoft 365. Preferred Qualifications Familiarity with AWS threat detection and logging services such as GuardDuty and CloudTrail, as well as industry standard Cloud SIEMs like DataDog. Proficiency in analyzing security events within endpoint protection platforms like CrowdStrike Falcon. Ability to liaise effectively with SOC Analysts and Threat Hunters from our Managed Detection and Response vendor. … Understanding of current cybersecurity threats, typical signs of attacks, and approaches to prevent and mitigate such incidents. 2+ years of experience with AWS or other hyperscale cloud provider implementation. More ❯

at each stage of the incident lifecycle, including initial analysis, triage, containment, eradication, recovery, and postmortem. Strong knowledge of AWS Security, specifically in areas such as IAM, KMS, and Network Infrastructure. Expertise in analyzing security events from Microsoft Windows endpoints with a deep understanding of operating system security. Experience handling incidents originating from Microsoft cloud-based services … like Azure and Microsoft 365. Preferred Qualifications Familiarity with AWS threat detection and logging services such as GuardDuty and CloudTrail, as well as industry standard Cloud SIEMs like DataDog. Proficiency in analyzing security events within endpoint protection platforms like CrowdStrike Falcon. Ability to liaise effectively with SOC Analysts and Threat Hunters from our Managed Detection and Response vendor. … Understanding of current cybersecurity threats, typical signs of attacks, and approaches to prevent and mitigate such incidents. 2+ years of experience with AWS or other hyperscale cloud provider implementation. More ❯

at each stage of the incident lifecycle, including initial analysis, triage, containment, eradication, recovery, and postmortem. Strong knowledge of AWS Security, specifically in areas such as IAM, KMS, and Network Infrastructure. Expertise in analyzing security events from Microsoft Windows endpoints with a deep understanding of operating system security. Experience handling incidents originating from Microsoft cloud-based services … like Azure and Microsoft 365. Preferred Qualifications Familiarity with AWS threat detection and logging services such as GuardDuty and CloudTrail, as well as industry standard Cloud SIEMs like DataDog. Proficiency in analyzing security events within endpoint protection platforms like CrowdStrike Falcon. Ability to liaise effectively with SOC Analysts and Threat Hunters from our Managed Detection and Response vendor. … Understanding of current cybersecurity threats, typical signs of attacks, and approaches to prevent and mitigate such incidents. 2+ years of experience with AWS or other hyperscale cloud provider implementation. More ❯