Senior Cloud & Security Engineer

As a member of the IT team, the Senior Cloud & Security Engineer acts as a technical authority and mentor, responsible for designing and governing cloud and security solutions across AWS, Azure, and hybrid systems. They ensure adherence to architectural standards, automation practices, and compliance frameworks while providing technical guidance to engineers and cross-functional teams. Working directly with the Cloud and Security Lead, the engineer will help ensure the secure deployment of cloud services, implementing best practices across security, systems design, identity and access management, observability, data protection, and cost optimisation. Responsibilities include deploying and optimising cloud infrastructure, applying robust security controls across our cloud and on-premises environments, automating operational processes and deployments, and participating in threat modelling, incident response, and root cause analysis to support proactive vulnerability remediation and continuous improvement.

This position offers an excellent opportunity for a proactive engineer to develop their expertise in cloud engineering and security while contributing to the organisation's cloud-first strategy., * Support the design, implementation, and ongoing improvement of secure cloud platform architecture and services across AWS and Azure.

• Implement and uphold security policies, procedures, and best practices defined by the Cloud and Security Lead, ensuring business continuity, data privacy, and regulatory compliance across cloud and on-premises infrastructure.
• Work closely with development and infrastructure teams to design, build, and optimise CI/CD pipelines, integrating security controls to enable secure, scalable deployment of cloud-native services and infrastructure.
• Act as the technical escalation point for investigation and remediation activities during security incidents, providing detailed analysis and recommendations to prevent recurrence.
• Support the Cloud and Security Lead in defining and evolving the organisation's security architecture and roadmap by providing technical input, assessing feasibility, and implementing agreed architectural designs and improvements.
• Mentor engineers by providing technical guidance, reviewing work, and supporting the development of secure engineering practices.
• Manage data access controls and provide identity, authentication, and access management design and oversight (IAM).
• Develop and maintain automation and Infrastructure as Code solutions (e.g., Terraform, CloudFormation) to enhance security, streamline operations, and address technical debt in a structured, cost-efficient manner.
• Engage in continuous learning and contribute to the evolution of our cloud-first strategy.
• Maintain clear and accurate documentation for security controls, procedures, and cloud configurations, and contribute to internal knowledge sharing.
• Provide occasional support for on-premises systems and infrastructure to ensure continuity during the organisation's transition to a cloud-first deployment model.

Do you have experience in Windows?, * Experience as a Cloud/Security Engineer or similar role, with knowledge of AWS and Azure cloud services, architecture, and security controls.

• Experience in supporting medium-scale cloud and on-premise environments, networking and cross-functional security initiatives.
• Experience of implementing Infrastructure as code (IaC) (e.g. Terraform, AWS CloudFormation)
• Experience using scripting languages (e.g. Bash, Powershell etc.)
• Experience with Linux or Windows operating systems
• Experience with Git and version control (GitLab/GitHub)
• Knowledge of networking concepts, such as subnets, firewalls, load balancers and VPNs
• Excellent problem-solving skills and attention to detail
• Excellent organisational and time management skills.
• Strong communication skills, with the ability to explain complex security concepts to non-technical stakeholders

The salary for this position is £68,000 per annum and we operate a hybrid working policy of a minimum of 2 days per week in the office.

In line with our EDI strategy and Total Reward policy, we calculate our salaries based on benchmarking data across the charity sector. To ensure fairness for existing staff and new joiners, we do not offer salaries above the advertised rate., * 30 days annual leave (plus bank holidays)

• A flexible approach to working arrangements.
• Access to our enhanced pension scheme
• Life assurance
• Access to various health and wellbeing schemes, including the employee assistance programme.

About Great Ormond Street Hospital Charity Every day, around 750 children and young people from across the UK are seen at Great Ormond Street Hospital (GOSH). At Great Ormond Street Hospital Charity, we help the hospital go above and beyond for seriously ill children, enabling kinder and better treatments, bringing hope for children with the rarest and most complex illnesses, and making hospital a little bit easier and a lot more fun for the thousands of children who are treated at GOSH every year. Our staff raise vital funds to support ground-breaking research, cutting-edge medical equipment, and the creation of child-centred facilities to help save more young lives, and essential support services that help save childhoods too. Together, we can help give seriously ill children the best chance, and the best childhood, possible. We were delighted to be named Charity Times - Charity of the Year 2024, recognising the impact of our shared mission. Our commitment to Equity, Diversity and Inclusion We believe that GOSH Charity and the charity sector more widely should reflect the diversity of patients, communities, and society at large. We also know that having a more diverse and inclusive workforce will make us more innovative, challenge the status quo, and enable us to deliver more impact. We encourage applications from people of all backgrounds. In particular, we encourage applications from those who are currently under represented within the charity sector as they may be marginalised by race and/or ethnicity, sexual orientation, disability, long-term health conditions, or socioeconomic status.