Cloud Security Engineer

Oscar Associates (UK) Ltd
Cheltenham, United Kingdom
3 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Compensation
£ 64K

Job location

Cheltenham, United Kingdom

Tech stack

Microsoft Windows
Amazon Web Services (AWS)
Azure
Cloud Computing
Cloud Computing Security
Cloud Engineering
Computer Security
Intrusion Detection and Prevention
Role-Based Access Control
Microsoft InTune
SC Clearance
Microsoft Sentinel

Job description

Cloud Security Engineer (Azure/M365) | SC Clearance needed | Remote + Client Visits

We're working with a growing, security-focused organisation that is investing heavily into its cloud security capability and looking to bring in a Cloud Security Engineer to support both internal platforms and client environments.

This role will sit within a cloud SecOps function, focused on strengthening security posture, responding to threats, and implementing best-practice controls across modern Microsoft environments., You'll play a key role in designing, improving and maintaining cloud security across Azure and Microsoft 365, working closely with technical teams and stakeholders to ensure environments are secure, compliant and continuously improving.

This is a hands-on position with a strong mix of security operations, engineering, and continuous improvement., * Operate within a cloud SecOps environment, triaging and prioritising security findings

  • Investigate and remediate Microsoft Sentinel incidents, including root cause analysis and corrective actions
  • Remediate Microsoft Defender for Cloud and Defender findings in live environments, ensuring no impact to services
  • Translate security alerts into clear remediation actions across Azure and M365 environments
  • Manage and improve cloud security posture and compliance
  • Design, implement and maintain Azure Policy and policy initiatives, including exemptions and tuning
  • Configure and refine Conditional Access policies to strengthen identity security
  • Manage Azure RBAC and Entra ID roles, enforcing least-privilege access
  • Support Entra ID governance, including access reviews and entitlement management
  • Configure and maintain Intune compliance policies and endpoint security controls aligned to Zero Trust principles
  • Produce documentation, runbooks and security standards to support consistent operations
  • Stay up to date with security best practices and apply them within the environment

Requirements

  • Proven experience in cloud security operations or SecOps environments
  • Hands-on experience with Azure, Microsoft 365, Entra ID, Sentinel and Intune
  • Experience remediating Defender for Cloud and Microsoft Defender findings in live environments
  • Strong understanding of cloud security posture management and threat detection
  • Experience securing Azure environments in regulated or multi-tenant settings
  • Ability to communicate security risks to both technical and non-technical stakeholders

Desirable:

  • Microsoft certifications such as SC-200, SC-300 or AZ-500
  • Experience across multi-cloud environments (AWS or GCP)
  • Formal background in cyber security, cloud engineering or similar

Benefits & conditions

Salary: £

Package: Competitive with up to 31 days annual leave + expenses paid (overnight allowance also)

Apply for this position