Senior Cyber Security Cloud Engineer

Responsibilities

• Support the delivery of ERM's Cyber Strategy and roadmap, contributing to initiatives such as embedding security into delivery lifecycles, developing threat modelling approaches, and defining cloud security controls
• Provide subject matter expertise to technology and business teams on cloud security and secure engineering practices
• Deliver and maintain security tooling and controls across Azure environments
• Contribute to technical documentation, standards, and guidance materials
• Support the implementation of application and cloud security models such as OWASP SAMM, DSOMM, and DevSecOps practices
• Assist in the development and improvement of cloud security patterns and designs
• Identify gaps against security standards, supporting system owners with remediation guidance
• Support cloud security assessments and compliance activities
• Contribute to incident investigations and remediation activities
• Promote secure by design principles across engineering and delivery teams
• Translate business and technical requirements into practical security implementations
• Maintain awareness of evolving threats and emerging security capabilities
• Key Competencies
• Skills and Capabilities Description:
• We are looking for someone who can demonstrate the below:
• Good practical experience with Azure security capabilities such as Defender for Cloud, Microsoft Defender suite, Azure AD, and related services
• An interest in LLM / AI technologies and the challenges of securing them
• Working experience with AWS security services and core cloud security concepts across multiple cloud providers
• Experience using GitHub, including GitHub Advanced Security capabilities such as code scanning, secret scanning, and dependency management
• Working understanding of application security concepts and secure development practices
• Hands on scripting experience using tools such as PowerShell, KQL, or equivalent
• Experience supporting or implementing security testing approaches such as SAST and DAST
• Familiarity with modern software development lifecycles and how security integrates into them
• Practical understanding of Zero Trust principles and how they are applied in cloud environments
• Desirable Experience
• Exposure to automation and compliance driven approa

Additional Information

Reporting into the Cyber Security Operations Director, the Senior Cyber Security Cloud Engineer plays a key role in delivering and supporting a wide range of cloud security initiatives. The role requires a practical, delivery focused individual who is comfortable working across teams and contributing to the implementation of ERM's Cyber Security strategy and roadmap. Working within a global team, the role will support the design and assurance of secure cloud deployments across new and existing environments. This includes validating that cloud services and applications are designed, developed and implemented in line with established security standards. In addition, the role will contribute to the operational management and continual improvement of ERM's cloud security posture. The role will support the development and maintenance of security frameworks and ISMS artefacts, including policies, standards and procedures, ensuring they remain aligned to evolving technologies and risks. The role will contribute to governance and compliance activities by providing technical input, supporting risk and exception management, and assisting with cloud security assessments against recognized frameworks. The successful candidate will also work closely with engineering and delivery teams to embed security practices into day to day activities, support the adoption of new technologies, and help ensure that security controls are applied consistently across the delivery life cycle. About You: You will have solid hands on experience working with cloud platforms such as Microsoft Azure, and ideally AWS, along with associated security tooling. You may have come from a cloud infrastructure background or have worked closely with development teams to improve application security and delivery practices. You are comfortable taking technical requirements and translating them into practical, scalable implementations using native controls, automation, and security tooling. You are confident working across engineering teams, cloud environments, and operational services, with a strong focus on delivery and continuous improvement. You are comfortable working within established frameworks and standards, and able to apply them pragmatically in real world environments rather than purely from a governance perspective. You will have experience working with security and compliance frameworks such as Azure Security Benchmark, NIST CSF, ISO27001, CIS or similar, and understand how these map into technical controls within cloud environments. You are a proactive and reliable team member, able to manage multiple workstreams, contribute to shared objectives, and support wider team initiatives while maintaining a high standard of delivery.

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at erm? Share your experience