Cybersecurity Engineer (Cloud, Detection, Vulnerability & Identity)

CONTRACTOR MUST EITHER HOLD ACTIVE SC CLEARANCE

We are looking for a Cybersecurity Engineer with strong hands-on experience across modern cloud security, detection technologies, vulnerability management, and identity-focused controls. The ideal candidate brings a broad understanding of both Azure and AWS environments and can design, implement, and optimize security solutions that safeguard our cloud workloads, endpoints, and enterprise applications.

Key Responsibilities

• Cloud Security & Monitoring

  • Deploy, configure, and maintain security monitoring tools such as Splunk, Elastic Stack, Microsoft Defender suite, and AWS/Azure native security solutions.

  • Develop and refine detection rules, dashboards, alerts, and playbooks to enhance threat visibility across hybrid cloud environments.

  • Perform continuous monitoring of cloud workloads and respond to suspicious activities or alerts in a timely manner.

• Vulnerability Management

  • Lead and manage vulnerability scanning across Azure and AWS infrastructures, ensuring proper deployment and configuration of scanning tools.

  • Analyse scan results, prioritise vulnerabilities based on risk, and collaborate with infrastructure and application teams to support effective remediation.

  • Implement vulnerability management processes, from discovery and assessment to reporting and mitigation.

• Identity & Access Management (IAM)

  • Support IAM activities across cloud platforms, including role-based access controls (RBAC), least-privilege enforcement, and access reviews.

  • Assist in evaluating and optimizing identity security tools such as Azure AD, AWS IAM, and enterprise onboarding/offboarding workflows.

  • Work closely with internal stakeholders to ensure secure access patterns and reduce identity-related risks.

• Public Key Infrastructure (PKI)

  • Contribute to the operation and enhancement of PKI systems, certificate life cycle management, and secure key handling.

  • Troubleshoot certificate issues and support the implementation of certificate policies and security standards.

• Security Engineering & Best Practices

  • Participate in designing secure architectures for new cloud solutions.

  • Provide guidance on secure configuration baselines, hardening practices, and compliance requirements.

  • Support automation and Scripting efforts to improve repeatability and reduce manual security efforts.

Preferred Skills & Background

• Hands-on experience with Splunk, Elastic, Microsoft Defender, and/or similar SIEM/SOAR technologies.

• Strong understanding of AWS and Azure cloud environments in security contexts.

• Experience deploying and managing vulnerability scanning tools in both cloud platforms.

• Knowledge of IAM concepts, cloud RBAC, MFA, conditional access, and identity governance.

• Familiarity with PKI, certificates, and cryptographic key management.

• Ability to collaborate effectively with DevOps, Cloud, and IT teams.

• Strong analytical mindset and ability to translate technical risk into clear, actionable insights.