A UK financial services firm undergoing a major cloud security transformation programme is hiring a Cloud Security Engineer to design and operate their Azure security posture. You will work across Microsoft Defender for Cloud, Microsoft Sentinel and Zero Trust architecture to protect cloud workloads handling sensitive financial data. Role & Responsibilities: • Design and implement Zero Trust security architecture across Azure environments: identity, network, workload and data layers • Configure and operate Microsoft Sentinel: analytics rules, workbooks, incident response playbooks and SOAR automation • Manage Microsoft Defender for Cloud: secure score, regulatory compliance assessment and workload protection policies • Implement Azure network security: NSGs, Azure Firewall Premium, DDoS protection and Private Link • Configure Microsoft Entra ID security: Conditional Access, Privileged Identity Management, Identity Protection and MFA • Conduct threat modelling and security architecture reviews for new cloud workloads • Respond to security incidents escalated from the SOC and lead forensic investigation on cloud infrastructure • Produce security metrics, compliance reports and risk assessments for the CISO and regulators Required Skills & Experience: • 5+ years of cloud security or information security experience with an Azure focus • Microsoft Certified: Azure Security Engineer Associate (AZ-500) — required • Hands-on Microsoft Sentinel experience: KQL queries, analytics rules, incident management • Strong knowledge of Zero Trust principles and their implementation in Azure • Experience with Microsoft Defender for Cloud, Microsoft Entra ID and Purview compliance • Understanding of financial services security requirements: FCA, PRA, ISO 27001, Cyber Essentials Plus • SC-200 (Security Operations Analyst) or SC-100 (Cybersecurity Architect) is a strong advantage What We Offer: • Fully remote role based in the UK • Salary £80,000–£100,000 based on experience • High-stakes security work on regulated financial infrastructure • Direct exposure to CISO-level security strategy and regulatory engagement For a cloud security engineer who wants to move beyond configuration and into architecture — owning security design decisions for a regulated financial institution.
Remote · UK | £80,000–£100,000