2 jobs found

Hedge Fund PERM GCP Cloud Security Engineer - GCP, AWS, Azure, Python, Bash, IAM, Terraform, Automation Cloud Security Engineer The successful candidate will be a subject matter expert with hands-on experience in a wide range of cloud technologies, tools and methodologies. The role is suited for an experienced Cloud Engineer with focus in Google Cloud Platform, the candidate must have proven understanding in enterprise security and will focus on building toolsets and processes. Principal Responsibilities Contribute to the vision, strategy, and drive execution for integrated security controls across Software-as-a-Service (SaaS), Platform-as-a-Service (PaaS), Infrastructure-as-a-Service (IaaS) and for Google Cloud Platform (GCP) efforts. Able to demonstrate clear understanding of current risks and threats to Cloud infrastructure and/or IT infrastructures at technical and managerial levels. Ability to conduct Red Team security testing tasks in GCP to continuously assess security posture in GCP platform Drive Identity and Access Management (IAM), configuration management, and monitoring strategy for GCP platform. Provide security consultancy and engineering support for cloud security solutions including analysis and development of Google, and other security solutions. Provide architecture assurance on Cloud security initiatives and compliance of existing security standards interfacing with infrastructure and development teams. Maintain the security infrastructure tools that are built on the Cloud platform, providing stability and policies and procedures. Support the development and delivery of a comprehensive ISP for the entire organization. Perform periodic and on-demand system audits and vulnerability assessments of systems, internal applications and Cloud services to identify security vulnerabilities. Monitor compliance with the organization's information security policies and procedures among employees, contractors and third parties. Manage remediation efforts for any gaps reported in audits or recommended process improvements. Provide support to Security and other technical operations staff to ensure smooth turnover from Engineering to Production Qualifications/Skills Required Bachelor's degree in Computer Science or Engineering preferred. 5+ years experience working in a technical role with a minimum of 3+ years experience focusing on Information Security in the financial industry (preferred). Solid understanding of GCP security controls and best practices to secure cloud resources in a hybrid environment. Knowledge of VPC Service Controls is a plus. Deep expertise with Identity and Access Management (IAM) in GCP, including but not limited, Workload Identity Federation, IAM role usage analysis, Organizational Constraints, Cloud Identity, etc. Proficiency in software development and Scripting in Python is required. Hands-on experience in building security guardrails in GCP to allow for innovation without compromising security posture Demonstrated expertise in Infrastructure as Code tooling using Terraform Strong knowledge and experience in a variety of technologies including UNIX, Networking, Databases, and Storage. Strong knowledge of Information security controls. Knowledge of software development security and cryptography, AI security. CISSP/CCSK or GCP security related certifications is a plus. Permanent Role - Central London based - candidate must be eligible to work in the UK (no sponsorship) By applying to this job you are sending us your CV, which may contain personal information. Please refer to our Privacy Notice to understand how we process this information. In short, in order to supply you with work finding services, we will hold and process your personal data, and only with your express permission we will share this personal data with a client (or a third party working on behalf of the client) by email or by upload to the Client/third parties vendor management system. By giving us permission to send your CV to a client, this constitutes permission to share the personal data that would be necessary to consider your application, interview you (Phone/video/face to face) and if successful hire you. Scope AT acts as an employment agency for Permanent Recruitment and an employment business for the supply of temporary workers. By applying for this job you accept the Terms and Conditions, Data Protection Policy, Privacy Notice and Disclaimers which can be found at our website.

Cloud Architect - MOD DV - Perm Location: Corsham, 4 days on-site Clearance: Active MOD DV - Must have DV in place, no scope for sponsorship Salary : £80,000 - £95,000 + Benefits An exciting opportunity has opened up to join one of Google Cloud's primary technical partners, as they push on with a new programme of work in the UK Defence sector, utilising cutting edge Cloud technologies. The role suits a Cloud Architect with a defence background that has an interest in utilising their AWS/Azure experience and up-skilling with GCP certifications and a training programme. As well as applying any existing GCP experience. About the role As a Cloud Architect you will be responsible for designing and advising on secure cloud architectures within Google Cloud Platform (GCP), ensuring compliance with UK and international standards. You will work with clients across sectors to assess risks, implement robust security controls, and guide secure cloud adoption strategies. This role requires a strong understanding of cloud-native security, regulatory frameworks, and the ability to translate technical risks into business impact. Part of this role, you will be required to obtain GCP certification. What You'll Do: Design and implement secure architectures, incorporating identity, access management, encryption, and network security. Conduct cloud security assessments and gap analyses for UK-based organisations. Advise on compliance with UK regulations (e.g. GDPR, NCSC Cloud Security Principles, ISO 27001). Develop and enforce cloud security policies, procedures, and governance models. Lead threat modelling, risk assessments, and vulnerability management initiatives. Configure and manage security tools such as Google SecOps tooling, Security Command Center, Cloud Armour, and VPC Service Controls. Collaborate with engineering and DevOps teams to embed security into CI/CD pipelines. Support incident response planning and cloud-specific disaster recovery strategies. Stay up to date with GCP security features, UK regulatory changes, and emerging threats. Requirements What You'll Bring Essential Skills & Experience: Experience in cloud security. Strong knowledge of: Security services (IAM, Cloud KMS, VPC Service Controls, etc.) UK data protection and compliance frameworks (GDPR, ICO guidance) Identity federation, SSO, and role-based access control Network segmentation and firewall configuration in cloud environments. Logging, monitoring, and SIEM integration (e.g. Splunk, Chronicle) Experience with Infrastructure as Code (Terraform, Deployment Manager). Desirable: Google Cloud Professional Cloud Security Engineer certification. Experience with UK public sector or regulated industries (e.g. finance, healthcare). Familiarity with container security (GKE, Kubernetes RBAC, image scanning). Proficiency in scripting (Python, Bash) for automation and tooling. Experience with incident response in cloud-native environments. Previous consultancy experience within UK public sector organisations. If you're interested in the above, reach out to or apply Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of all backgrounds and perspectives. Our success is driven by our people, united by the spirit of partnership to deliver the best resourcing solutions for our clients. If you need any help or adjustments during the recruitment process for any reason , please let us know when you apply or talk to the recruiters directly so we can support you.