Principal / Lead Engineer Python / Cloud / Terraform / IAM / DevOps / infrastructure-as-a-code IaC Rate: Circa 600 - 700 PD (Outside IR35), 6 Months Location: London / Hybrid x2 days We are seeking an experienced Principal / Lead Engineer to join a highly ambitious organisation building a large-scale, mission-critical data and technology platform. This is a unique opportunity to join at the earliest stages of a major programme and play a key role in shaping its technical foundations. Working closely with the CTO and a small team of senior engineers, you will lead the design and implementation of core infrastructure, establish engineering standards and practices, and make architectural decisions that will have long-term strategic impact. If you enjoy solving complex technical challenges, influencing technology strategy, and creating robust engineering foundations, this role offers an exceptional opportunity to make a lasting impact. Role & Responsibilities Technical Leadership Lead the design and implementation of foundational platform infrastructure and engineering capabilities Define architectural patterns, engineering standards, and best practices that will guide future development Partner closely with the CTO and senior stakeholders to make and document key technical decisions Promote secure-by-design principles across all aspects of platform development Establish and maintain core engineering tooling, including source control, CI/CD pipelines, infrastructure-as-code, and automated testing frameworks Platform Engineering Design and implement identity and access management solutions with robust authentication and authorisation controls Build and manage cloud infrastructure using modern infrastructure-as-code approaches Develop audit, workflow, and operational capabilities to support governance and compliance requirements Implement networking, monitoring, and security controls for highly secure environments Evaluate and integrate appropriate open-source technologies and third-party components Contribute to the design and delivery of scalable, resilient, and maintainable distributed systems Collaboration & Team Development Act as a senior technical contributor within a high-performing engineering team Mentor engineers and help establish a strong engineering culture as the organisation grows Collaborate with product, design, and delivery teams to ensure technology solutions align with business objectives Engage with external partners, suppliers, and stakeholders where required Essential Skills & Experience Proven experience leading or making significant contributions to complex distributed, cloud-native, or federated systems Strong software engineering expertise in Python, including backend development, automation, and infrastructure tooling Hands-on experience with at least one major cloud platform (AWS, Azure, or Google Cloud) Strong experience implementing Infrastructure as Code using tools such as Terraform or equivalent Experience designing and building authentication and authorisation systems, including modern identity standards and policy-based access controls Solid understanding of data storage architectures and the trade-offs between different storage and query patterns Experience establishing CI/CD pipelines and engineering best practices within modern software environments Ability to work effectively in fast-moving environments with evolving requirements and limited precedent Strong communication skills with the ability to explain complex technical concepts to both technical and non-technical audiences Desirable Skills & Experience Experience building secure, highly regulated, or mission-critical platforms Familiarity with federated architectures and distributed data access models Experience designing solutions with strong governance, auditability, and security requirements Knowledge of privacy-preserving technologies and secure computing environments Experience evaluating, adopting, or contributing to open-source technologies Background working within complex stakeholder environments undergoing significant transformation
Jun 27, 2026
Contractor
Principal / Lead Engineer Python / Cloud / Terraform / IAM / DevOps / infrastructure-as-a-code IaC Rate: Circa 600 - 700 PD (Outside IR35), 6 Months Location: London / Hybrid x2 days We are seeking an experienced Principal / Lead Engineer to join a highly ambitious organisation building a large-scale, mission-critical data and technology platform. This is a unique opportunity to join at the earliest stages of a major programme and play a key role in shaping its technical foundations. Working closely with the CTO and a small team of senior engineers, you will lead the design and implementation of core infrastructure, establish engineering standards and practices, and make architectural decisions that will have long-term strategic impact. If you enjoy solving complex technical challenges, influencing technology strategy, and creating robust engineering foundations, this role offers an exceptional opportunity to make a lasting impact. Role & Responsibilities Technical Leadership Lead the design and implementation of foundational platform infrastructure and engineering capabilities Define architectural patterns, engineering standards, and best practices that will guide future development Partner closely with the CTO and senior stakeholders to make and document key technical decisions Promote secure-by-design principles across all aspects of platform development Establish and maintain core engineering tooling, including source control, CI/CD pipelines, infrastructure-as-code, and automated testing frameworks Platform Engineering Design and implement identity and access management solutions with robust authentication and authorisation controls Build and manage cloud infrastructure using modern infrastructure-as-code approaches Develop audit, workflow, and operational capabilities to support governance and compliance requirements Implement networking, monitoring, and security controls for highly secure environments Evaluate and integrate appropriate open-source technologies and third-party components Contribute to the design and delivery of scalable, resilient, and maintainable distributed systems Collaboration & Team Development Act as a senior technical contributor within a high-performing engineering team Mentor engineers and help establish a strong engineering culture as the organisation grows Collaborate with product, design, and delivery teams to ensure technology solutions align with business objectives Engage with external partners, suppliers, and stakeholders where required Essential Skills & Experience Proven experience leading or making significant contributions to complex distributed, cloud-native, or federated systems Strong software engineering expertise in Python, including backend development, automation, and infrastructure tooling Hands-on experience with at least one major cloud platform (AWS, Azure, or Google Cloud) Strong experience implementing Infrastructure as Code using tools such as Terraform or equivalent Experience designing and building authentication and authorisation systems, including modern identity standards and policy-based access controls Solid understanding of data storage architectures and the trade-offs between different storage and query patterns Experience establishing CI/CD pipelines and engineering best practices within modern software environments Ability to work effectively in fast-moving environments with evolving requirements and limited precedent Strong communication skills with the ability to explain complex technical concepts to both technical and non-technical audiences Desirable Skills & Experience Experience building secure, highly regulated, or mission-critical platforms Familiarity with federated architectures and distributed data access models Experience designing solutions with strong governance, auditability, and security requirements Knowledge of privacy-preserving technologies and secure computing environments Experience evaluating, adopting, or contributing to open-source technologies Background working within complex stakeholder environments undergoing significant transformation
About Us: Solirius Reply, part of the Reply Group, is a technology consultancy and digital transformation partner that helps organisations solve complex challenges through strategy, design, engineering, and delivery. We work closely with our clients to deliver secure, accessible, user-focused services that evolve with their needs. By combining deep technical expertise with people-centred design, we create solutions that deliver meaningful, lasting impact. Our consultants partner directly with client teams, embedding into organisations to understand their goals, challenges, and users. This collaborative approach enables us to deliver tailored solutions that drive measurable outcomes across public and private sectors. Past and present clients include the Ministry of Justice, Department for Education, Ministry of Housing, Communities and Local Government, UEFA, International Olympic Committee, and Mercedes-Benz. Our services span the full digital delivery life cycle, including architecture, engineering, delivery management, user-centred design, business analysis, data, DevOps, and AI. We operate as a collaborative and inclusive organisation that empowers our people to take ownership, innovate, and develop their expertise. As an equal opportunities employer, we are committed to encouraging equality, diversity, and social mobility, while creating opportunities for our teams to work on meaningful projects that deliver lasting impact. About You: You are a motivated and adaptable professional with a strong analytical mindset and a passion for using technology to solve real-world problems. You enjoy working in collaborative, agile teams and take pride in delivering high-quality solutions that make a tangible impact. With strong communication skills and a consultative approach, you're comfortable engaging with clients, understanding their needs, and translating them into effective outcomes. The Role: Our client requires a highly structured, hands-on Senior Data Engineer to execute the setup, configuration, and data processing paths for the SpaceObServer Enterprise software tool and its Web Access add-ons. The department's operational estate data is unstructured and scattered across thousands of disparate SharePoint site collections. Recent data discovery sweeps indicate an active environment of 71.6M to 75.3M files; consequently, you will be architecting and automating an implementation provisioned for a target baseline of 80 million files to mitigate system latency and risk. Operating strictly within pre-approved Technical Design Authority (TDA) guidelines, you will act as the technical engine translating approved architectural designs into production-ready cloud components, automation scripts, and optimised scanning paths. Key Responsibilities 1. Automated IaC Engineering Develop, test, and establish robust, version-controlled Infrastructure-as-Code (IaC) templates (primarily Terraform blueprints and Azure DevOps pipelines ). Automate the deployment and hardening of the target Azure infrastructure environment supporting the SpaceObServer scanning engine and its backing SQL database instance (Azure SQL/SQL Managed Instance). 2. Programmatic Identity Configuration & Rate-Limit Optimisation Script and validate the setup of a tenant-wide Microsoft Entra ID Application Registration pool array (5 to 10 applications) . Configure application-level load balancing and rotation scripts to programmatically distribute scanning traffic, explicitly designed to handle deep Microsoft Graph API and SharePoint REST API rate limits/throttling over 80M+ items. 3. SpaceObServer Configuration & Data Processing Translate pre-approved TDA architectures into active SpaceObServer configuration files. Establish optimal background scanning schedules, indexing priorities, and target processing paths across thousands of unstructured SharePoint site collections. Integrate and configure the SpaceObServer Web Access add-on for downstream departmental reporting. Technical Skills & Experience Required Enterprise Tool Implementation: Proven experience configuring and deploying enterprise-scale data discovery, storage analysis, or indexing tools (direct experience with SpaceObServer Enterprise or equivalent tools like TreeSize/JAM Software suites is highly advantageous). Scale Competency: Proven track record of handling massive data discovery/migration pipelines without blowing out latency or failing system API thresholds. Advanced Azure DevOps & Terraform: Deep expertise building complex Azure infrastructure through automated CI/CD pipelines and modular Terraform configurations. Microsoft Graph/SharePoint REST API: Expert-level understanding of Microsoft Entra ID (Azure AD), app registrations, multi-factor authentication integration via certificates, and methods used to bypass or mitigate Microsoft Graph API throttling under heavy loads. Experience delivering within the public sector under GDS Beta phase guidelines. Prior experience working strictly as an implementation partner interfacing with a rigid Technical Design Authority (TDA).
Jun 26, 2026
Contractor
About Us: Solirius Reply, part of the Reply Group, is a technology consultancy and digital transformation partner that helps organisations solve complex challenges through strategy, design, engineering, and delivery. We work closely with our clients to deliver secure, accessible, user-focused services that evolve with their needs. By combining deep technical expertise with people-centred design, we create solutions that deliver meaningful, lasting impact. Our consultants partner directly with client teams, embedding into organisations to understand their goals, challenges, and users. This collaborative approach enables us to deliver tailored solutions that drive measurable outcomes across public and private sectors. Past and present clients include the Ministry of Justice, Department for Education, Ministry of Housing, Communities and Local Government, UEFA, International Olympic Committee, and Mercedes-Benz. Our services span the full digital delivery life cycle, including architecture, engineering, delivery management, user-centred design, business analysis, data, DevOps, and AI. We operate as a collaborative and inclusive organisation that empowers our people to take ownership, innovate, and develop their expertise. As an equal opportunities employer, we are committed to encouraging equality, diversity, and social mobility, while creating opportunities for our teams to work on meaningful projects that deliver lasting impact. About You: You are a motivated and adaptable professional with a strong analytical mindset and a passion for using technology to solve real-world problems. You enjoy working in collaborative, agile teams and take pride in delivering high-quality solutions that make a tangible impact. With strong communication skills and a consultative approach, you're comfortable engaging with clients, understanding their needs, and translating them into effective outcomes. The Role: Our client requires a highly structured, hands-on Senior Data Engineer to execute the setup, configuration, and data processing paths for the SpaceObServer Enterprise software tool and its Web Access add-ons. The department's operational estate data is unstructured and scattered across thousands of disparate SharePoint site collections. Recent data discovery sweeps indicate an active environment of 71.6M to 75.3M files; consequently, you will be architecting and automating an implementation provisioned for a target baseline of 80 million files to mitigate system latency and risk. Operating strictly within pre-approved Technical Design Authority (TDA) guidelines, you will act as the technical engine translating approved architectural designs into production-ready cloud components, automation scripts, and optimised scanning paths. Key Responsibilities 1. Automated IaC Engineering Develop, test, and establish robust, version-controlled Infrastructure-as-Code (IaC) templates (primarily Terraform blueprints and Azure DevOps pipelines ). Automate the deployment and hardening of the target Azure infrastructure environment supporting the SpaceObServer scanning engine and its backing SQL database instance (Azure SQL/SQL Managed Instance). 2. Programmatic Identity Configuration & Rate-Limit Optimisation Script and validate the setup of a tenant-wide Microsoft Entra ID Application Registration pool array (5 to 10 applications) . Configure application-level load balancing and rotation scripts to programmatically distribute scanning traffic, explicitly designed to handle deep Microsoft Graph API and SharePoint REST API rate limits/throttling over 80M+ items. 3. SpaceObServer Configuration & Data Processing Translate pre-approved TDA architectures into active SpaceObServer configuration files. Establish optimal background scanning schedules, indexing priorities, and target processing paths across thousands of unstructured SharePoint site collections. Integrate and configure the SpaceObServer Web Access add-on for downstream departmental reporting. Technical Skills & Experience Required Enterprise Tool Implementation: Proven experience configuring and deploying enterprise-scale data discovery, storage analysis, or indexing tools (direct experience with SpaceObServer Enterprise or equivalent tools like TreeSize/JAM Software suites is highly advantageous). Scale Competency: Proven track record of handling massive data discovery/migration pipelines without blowing out latency or failing system API thresholds. Advanced Azure DevOps & Terraform: Deep expertise building complex Azure infrastructure through automated CI/CD pipelines and modular Terraform configurations. Microsoft Graph/SharePoint REST API: Expert-level understanding of Microsoft Entra ID (Azure AD), app registrations, multi-factor authentication integration via certificates, and methods used to bypass or mitigate Microsoft Graph API throttling under heavy loads. Experience delivering within the public sector under GDS Beta phase guidelines. Prior experience working strictly as an implementation partner interfacing with a rigid Technical Design Authority (TDA).
Join our team at the Guardian and be a part of a diverse and inclusive global organisation that delivers fearless, investigative journalism, and holds power to account. Our team of award-winning journalists, cutting-edge commercial professionals, and industry-leading digital experts are committed to making a difference and represent a wide range of backgrounds and perspectives. We offer a challenging and exciting environment for career development, with a focus on training, growth and fostering an inclusive culture. We are now looking for a Senior Hybrid Cloud Engineer to join the Hybrid Cloud team, composed of collaborative and technically skilled engineers who implement, innovate and support the range of on-premise and cloud infrastructure services that underpin the Guardian News & Media corporate IT operations. In alignment with our department's cloud-first strategy and particular focus on migrating on-premise infrastructure into AWS, the Senior Hybrid Cloud Engineer will help to steer, support and drive this transition, while continuing to maintain and improve our existing hybrid infrastructure estate, including Windows, Active Directory, EntraID and VMWare. About the role: Support, maintain and develop our hybrid infrastructure environment, with a strong focus on AWS and the migration of on-premise services into the cloud Implement best practice for all systems and help maintain platform standards. Liaise with IT management and wider technology teams, presenting designs and discussing issues, ideas and improvements as required. Translate complex technical issues, designs and requirements for colleagues and stakeholders with varying levels of technical knowledge. Provision, implement and manage AWS infrastructure components such as virtual machines, storage, networking, managed services and related cloud-native tooling. Assist with the ongoing support of physical and virtual infrastructure, including servers, storage and related platform services. Use automation to improve operational efficiency across cloud and on-premise environments. Develop, manage and maintain Infrastructure as Code and automation tooling where appropriate. Participate in the out-of-hours support rota for troubleshooting and resolving issues. About you: Strong experience working with AWS in a hybrid infrastructure environment. Experience supporting, building and maintaining Windows Server environments, VMWare platforms and AD-related identity services. Understanding of Entra ID and its role in a hybrid identity environment. Experience supporting infrastructure migration or transformation activity, ideally involving movement from on-premise services into cloud platforms. Solid understanding of infrastructure security, resilience, monitoring and operational best practice. Understanding of network technologies in a hybrid cloud/on-premise environment. Experience supporting infrastructure security hardening activities, including applying CIS Benchmarks, NIST guidance or comparable security standards. Collaborative approach, with a willingness to share knowledge and support colleagues. Comfortable helping to steer technical direction and support the team's move towards cloud-first ways of working. Able to participate in the out-of-hours support rota for troubleshooting and resolving issues (1 week in 3 on a rotational basis with a paid on-call allowance). We actively encourage applications from groups traditionally underrepresented in the UK media. We operate in a hybrid environment. The team is required to work 2 days a week from our offices in Kings Cross (with one of those on Thursdays) and 3 days a week remotely. We value and respect all differences (seen and unseen) in all people. We aspire to have inclusive working experiences and an environment that reflects the audience we serve, where our people have equal access to career development opportunities, their voices are heard and can contribute to our future. We actively encourage applications from people of all backgrounds. Many of our staff work flexibly and we will consider all requests for flexible working arrangements. How to apply To apply, please upload your latest CV and a cover letter which outlines why you'd love to take on this role, and why you're a great match for what we're looking for. We appreciate the time taken to prepare each application we receive. We do not use AI-assisted technology to review applications; every application is reviewed by a member of our recruitment team. Thank you for bearing with us during the screening process. The closing date for applications is Monday 6th July 2026 . All roles at the Guardian are open for everybody to apply. It is important to us that you feel supported and comfortable throughout your recruitment process, in order to perform your best. Please let us know if there are any changes we could make to help your application, this includes providing documents in accessible formats or personalising the process to better support your needs. Please contact Anna Vipers on to discuss further so we can work with you to support you through your application. Benefits at the Guardian You'll have 30 days of annual leave per year (plus bank holidays) with the option to purchase an additional 5 days. Our pension scheme is generous; if you contribute 5% then we will contribute 8-12% (depending on your age). We believe in giving back, which is why employees are given 2 volunteering days annually and the option of payroll giving. Season ticket loans are also available. You are entitled to private healthcare, life cover, income protection, and eye tests. You can also opt in to dental insurance. We have enhanced maternity, paternity, adoption and shared parental leave policies in place. We also support our employees by offering an IVF, menopause, baby loss, and trans equality policy. Culture and wellbeing We want everyone to feel like they belong at the Guardian and we champion diversity of thought. Our various employee forums provide a platform to use their voice to foster an inclusive workplace. We became the first major media organisation to achieve B Corp status. We offer tools to help you prioritise your wellbeing including access to our employee benefits platform which provides tailored support for health and wellbeing. In addition, we also offer free yoga and pilates classes. These run alongside our corporate gym membership and cycle to work scheme. Our canteen has views overlooking the Regents Canal and caters for breakfast, lunch and dinner. Learning and development We encourage personal and professional growth. Employees have access to a broad range of tools and solutions, and we are happy to support the pursuit of professional qualifications through vocational courses and apprenticeships.
Jun 26, 2026
Full time
Join our team at the Guardian and be a part of a diverse and inclusive global organisation that delivers fearless, investigative journalism, and holds power to account. Our team of award-winning journalists, cutting-edge commercial professionals, and industry-leading digital experts are committed to making a difference and represent a wide range of backgrounds and perspectives. We offer a challenging and exciting environment for career development, with a focus on training, growth and fostering an inclusive culture. We are now looking for a Senior Hybrid Cloud Engineer to join the Hybrid Cloud team, composed of collaborative and technically skilled engineers who implement, innovate and support the range of on-premise and cloud infrastructure services that underpin the Guardian News & Media corporate IT operations. In alignment with our department's cloud-first strategy and particular focus on migrating on-premise infrastructure into AWS, the Senior Hybrid Cloud Engineer will help to steer, support and drive this transition, while continuing to maintain and improve our existing hybrid infrastructure estate, including Windows, Active Directory, EntraID and VMWare. About the role: Support, maintain and develop our hybrid infrastructure environment, with a strong focus on AWS and the migration of on-premise services into the cloud Implement best practice for all systems and help maintain platform standards. Liaise with IT management and wider technology teams, presenting designs and discussing issues, ideas and improvements as required. Translate complex technical issues, designs and requirements for colleagues and stakeholders with varying levels of technical knowledge. Provision, implement and manage AWS infrastructure components such as virtual machines, storage, networking, managed services and related cloud-native tooling. Assist with the ongoing support of physical and virtual infrastructure, including servers, storage and related platform services. Use automation to improve operational efficiency across cloud and on-premise environments. Develop, manage and maintain Infrastructure as Code and automation tooling where appropriate. Participate in the out-of-hours support rota for troubleshooting and resolving issues. About you: Strong experience working with AWS in a hybrid infrastructure environment. Experience supporting, building and maintaining Windows Server environments, VMWare platforms and AD-related identity services. Understanding of Entra ID and its role in a hybrid identity environment. Experience supporting infrastructure migration or transformation activity, ideally involving movement from on-premise services into cloud platforms. Solid understanding of infrastructure security, resilience, monitoring and operational best practice. Understanding of network technologies in a hybrid cloud/on-premise environment. Experience supporting infrastructure security hardening activities, including applying CIS Benchmarks, NIST guidance or comparable security standards. Collaborative approach, with a willingness to share knowledge and support colleagues. Comfortable helping to steer technical direction and support the team's move towards cloud-first ways of working. Able to participate in the out-of-hours support rota for troubleshooting and resolving issues (1 week in 3 on a rotational basis with a paid on-call allowance). We actively encourage applications from groups traditionally underrepresented in the UK media. We operate in a hybrid environment. The team is required to work 2 days a week from our offices in Kings Cross (with one of those on Thursdays) and 3 days a week remotely. We value and respect all differences (seen and unseen) in all people. We aspire to have inclusive working experiences and an environment that reflects the audience we serve, where our people have equal access to career development opportunities, their voices are heard and can contribute to our future. We actively encourage applications from people of all backgrounds. Many of our staff work flexibly and we will consider all requests for flexible working arrangements. How to apply To apply, please upload your latest CV and a cover letter which outlines why you'd love to take on this role, and why you're a great match for what we're looking for. We appreciate the time taken to prepare each application we receive. We do not use AI-assisted technology to review applications; every application is reviewed by a member of our recruitment team. Thank you for bearing with us during the screening process. The closing date for applications is Monday 6th July 2026 . All roles at the Guardian are open for everybody to apply. It is important to us that you feel supported and comfortable throughout your recruitment process, in order to perform your best. Please let us know if there are any changes we could make to help your application, this includes providing documents in accessible formats or personalising the process to better support your needs. Please contact Anna Vipers on to discuss further so we can work with you to support you through your application. Benefits at the Guardian You'll have 30 days of annual leave per year (plus bank holidays) with the option to purchase an additional 5 days. Our pension scheme is generous; if you contribute 5% then we will contribute 8-12% (depending on your age). We believe in giving back, which is why employees are given 2 volunteering days annually and the option of payroll giving. Season ticket loans are also available. You are entitled to private healthcare, life cover, income protection, and eye tests. You can also opt in to dental insurance. We have enhanced maternity, paternity, adoption and shared parental leave policies in place. We also support our employees by offering an IVF, menopause, baby loss, and trans equality policy. Culture and wellbeing We want everyone to feel like they belong at the Guardian and we champion diversity of thought. Our various employee forums provide a platform to use their voice to foster an inclusive workplace. We became the first major media organisation to achieve B Corp status. We offer tools to help you prioritise your wellbeing including access to our employee benefits platform which provides tailored support for health and wellbeing. In addition, we also offer free yoga and pilates classes. These run alongside our corporate gym membership and cycle to work scheme. Our canteen has views overlooking the Regents Canal and caters for breakfast, lunch and dinner. Learning and development We encourage personal and professional growth. Employees have access to a broad range of tools and solutions, and we are happy to support the pursuit of professional qualifications through vocational courses and apprenticeships.
Senior Microsoft Infrastructure Engineer (Microsoft 365 SME) Gloucester (Hybrid) Up to 65,000 + Benefits Are you a Microsoft technology expert looking to take ownership of enterprise-scale Microsoft 365 environments? We're seeking a Senior Microsoft Infrastructure Engineer to join a growing technical team as the go-to Microsoft Subject Matter Expert (SME). This is an opportunity for an experienced engineer who thrives on designing, securing, and optimising modern Microsoft environments while acting as a trusted advisor to customers and internal stakeholders. Working across a diverse customer base, you will lead the design and delivery of Microsoft 365, identity, endpoint management, and security solutions, helping organisations maximise their investment in Microsoft's cloud technologies. What You'll Be Doing Act as the Microsoft 365 SME, providing technical leadership and best practice guidance across customer environments. Design, deploy, and optimise Microsoft 365 solutions including Exchange Online, Teams, SharePoint Online, OneDrive, and Microsoft 365 Groups. Lead Microsoft tenant assessments, migrations, remediation projects, and platform modernisation initiatives. Architect and manage secure identity solutions using Microsoft Entra ID. Implement advanced Microsoft security technologies including Conditional Access, MFA, Passwordless Authentication, Privileged Identity Management (PIM), Microsoft Defender, and Microsoft Purview. Manage endpoint security and device lifecycle management through Microsoft Intune and Windows Autopilot. Apply Microsoft Zero Trust principles and security best practices across customer estates. Support compliance, governance, and security frameworks including GDPR and ISO-aligned standards. Drive automation and operational efficiency through PowerShell scripting and process improvement. Act as the senior escalation point for complex technical issues and project delivery. Mentor engineers and contribute to the development of technical standards and service excellence. What We're Looking For Essential Experience Extensive hands-on experience with Microsoft 365 administration, architecture, and security. Deep technical expertise across: Microsoft Entra ID (Azure AD) Microsoft Intune & Windows Autopilot Microsoft Defender Suite Exchange Online SharePoint Online Microsoft Teams Conditional Access & Identity Security Strong understanding of endpoint management, identity governance, and Microsoft security best practices. Experience working within MSP, consultancy, or multi-tenant environments. Excellent stakeholder management and customer-facing communication skills. Ability to operate as a trusted Microsoft SME and technical authority. Desirable Experience PowerShell scripting and automation. Microsoft Sentinel. Defender XDR. Experience driving technical standards, governance, and engineering improvements. Certifications (Desirable) MS-102: Microsoft 365 Administrator MD-102: Endpoint Administrator SC-Series Security Certifications AZ-Series Azure Certifications Why Join Us? This is an opportunity to become the Microsoft technical authority within a highly respected technology business. You'll work with the latest Microsoft cloud, security, and workplace technologies, influence technical strategy, and play a key role in delivering secure, modern workplace solutions for customers. If you're passionate about Microsoft technologies and want a role where your expertise genuinely makes an impact, we'd love to hear from you. Spectrum IT Recruitment (South) Limited is acting as an Employment Agency in relation to this vacancy.
Jun 25, 2026
Full time
Senior Microsoft Infrastructure Engineer (Microsoft 365 SME) Gloucester (Hybrid) Up to 65,000 + Benefits Are you a Microsoft technology expert looking to take ownership of enterprise-scale Microsoft 365 environments? We're seeking a Senior Microsoft Infrastructure Engineer to join a growing technical team as the go-to Microsoft Subject Matter Expert (SME). This is an opportunity for an experienced engineer who thrives on designing, securing, and optimising modern Microsoft environments while acting as a trusted advisor to customers and internal stakeholders. Working across a diverse customer base, you will lead the design and delivery of Microsoft 365, identity, endpoint management, and security solutions, helping organisations maximise their investment in Microsoft's cloud technologies. What You'll Be Doing Act as the Microsoft 365 SME, providing technical leadership and best practice guidance across customer environments. Design, deploy, and optimise Microsoft 365 solutions including Exchange Online, Teams, SharePoint Online, OneDrive, and Microsoft 365 Groups. Lead Microsoft tenant assessments, migrations, remediation projects, and platform modernisation initiatives. Architect and manage secure identity solutions using Microsoft Entra ID. Implement advanced Microsoft security technologies including Conditional Access, MFA, Passwordless Authentication, Privileged Identity Management (PIM), Microsoft Defender, and Microsoft Purview. Manage endpoint security and device lifecycle management through Microsoft Intune and Windows Autopilot. Apply Microsoft Zero Trust principles and security best practices across customer estates. Support compliance, governance, and security frameworks including GDPR and ISO-aligned standards. Drive automation and operational efficiency through PowerShell scripting and process improvement. Act as the senior escalation point for complex technical issues and project delivery. Mentor engineers and contribute to the development of technical standards and service excellence. What We're Looking For Essential Experience Extensive hands-on experience with Microsoft 365 administration, architecture, and security. Deep technical expertise across: Microsoft Entra ID (Azure AD) Microsoft Intune & Windows Autopilot Microsoft Defender Suite Exchange Online SharePoint Online Microsoft Teams Conditional Access & Identity Security Strong understanding of endpoint management, identity governance, and Microsoft security best practices. Experience working within MSP, consultancy, or multi-tenant environments. Excellent stakeholder management and customer-facing communication skills. Ability to operate as a trusted Microsoft SME and technical authority. Desirable Experience PowerShell scripting and automation. Microsoft Sentinel. Defender XDR. Experience driving technical standards, governance, and engineering improvements. Certifications (Desirable) MS-102: Microsoft 365 Administrator MD-102: Endpoint Administrator SC-Series Security Certifications AZ-Series Azure Certifications Why Join Us? This is an opportunity to become the Microsoft technical authority within a highly respected technology business. You'll work with the latest Microsoft cloud, security, and workplace technologies, influence technical strategy, and play a key role in delivering secure, modern workplace solutions for customers. If you're passionate about Microsoft technologies and want a role where your expertise genuinely makes an impact, we'd love to hear from you. Spectrum IT Recruitment (South) Limited is acting as an Employment Agency in relation to this vacancy.
Senior Cloud Ops Engineer Location: Durrington, Worthing (Hybrid) Contract Type: Permanent Salary: Circa 70K + bonus. Hours: 37 hours The Senior Cloud Operations Engineer plays a critical role in the design, implementation, and ongoing operation of the client's cloud infrastructure, with a strong emphasis on Microsoft Azure. As a key technical contributor within the Cloud Operations function, you will be responsible for ensuring that cloud-based services are available, secure, efficient, and cost-effective. This includes provisioning and managing compute, storage, networking, and identity services, as well as supporting the use of advanced PaaS capabilities and analytics platforms. Responsibilities to include: Azure Cloud Engineering Build, configure, and maintain Azure cloud environments (IaaS, PaaS, storage, networking, identity). Deploy and support Azure Landing Zones in line with enterprise architecture standards. Support the transition from IaaS to PaaS services by designing and implementing modern cloud-native solutions. Monitor and manage cloud workloads to ensure availability, performance, and security. Operations & Automation Implement infrastructure as code (IaC) using tools such as Bicep, ARM templates, or Terraform. Automate provisioning, scaling, and maintenance of cloud resources using DevOps pipelines and scripts (PowerShell, Azure CLI, CI/CD etc.). Monitor system health, respond to incidents, and participate in root cause analysis and continuous improvement. Security, Governance & Compliance Enforce cloud security best practices, including role-based access control (RBAC), encryption, and secure networking. Support compliance with internal policies and regulatory standards by ensuring guardrails and policies are in place. Cost Management & FinOps Support Contribute to cost optimization by right-sizing resources and identifying opportunities to reduce waste. Use Azure Cost Management tools and dashboards to track and forecast cloud spend. Provide reporting and insights to the Cloud Operations Manager and Finance teams. Process Development & Documentation Document standard operating procedures, cloud configurations, and runbooks. Collaboration & Support Work with infrastructure architects, data platform teams, developers, and project teams to support solution delivery. Act as an escalation point for cloud-related incidents and changes. Assist with service transitions, knowledge transfer, and training for BAU support teams. Disaster Recovery & Business Continuity Support the implementation and testing of disaster recovery and business continuity plans related to cloud infrastructure. Ensure cloud services are resilient and recoverable in line with Recovery Time Objectives (RTO) and Recovery Point Objectives (RPO). Collaborate with the DR/BCP team to maintain and update recovery procedures and test plans. Recommend improvements or innovations based on emerging technologies and industry trends. Knowledge and skills needed: Bachelor's degree in Computer Science, Information Technology, or a related field or equivalent work experience. Extensive experience with Microsoft Azure cloud services and PaaS/IaaS solutions. Strong knowledge of landing zone architecture and best practices. Proven experience in defining and implementing cloud infrastructure standards and best practices. Infrastructure as Code (IaC): Knowledge of IaC tools like Terraform or CloudFormation to provision and manage infrastructure resources programmatically. Containerisation and Orchestration: Proficient with container technologies like Docker and container orchestration platforms such as Kubernetes. Automation: Strong scripting skills (e.g., Python, PowerShell) and the ability to automate routine tasks and deployment processes for efficiency and consistency. Security: Expertise in cloud security best practices, identity and access management (IAM), encryption, and compliance frameworks (e.g., PCI DSS, NIST). Networking: Strong knowledge of cloud networking concepts, including virtual networks, subnets, security groups, load balancers, and VPN configurations. DevOps Principles: An understanding of DevOps practices and the ability to integrate development and operations workflows for faster and more reliable deployments. FinOps (Cloud Financial Operations): Experience with managing cloud costs, optimising cloud spending, and implementing FinOps principles to drive cost-effective cloud strategies while balancing performance and scalability. Capability required: Cloud Platform Expertise: Expert in MS Azure with a deep understanding of its services, features, and capabilities. Scaling and Performance Optimisation: Ability to scale cloud resources based on demand and optimize resource utilization for cost-effectiveness. Cloud Security and Compliance: Expertise in applying security best practices, including identity and access management (IAM), encryption, regulatory compliance and cloud-native security tools. Troubleshooting: Strong problem-solving and debugging skills to identify and resolve issues quickly. Documentation: Thorough documentation of configurations, processes, and procedures to ensure clarity and knowledge sharing. Disclaimer: This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission.
Jun 24, 2026
Full time
Senior Cloud Ops Engineer Location: Durrington, Worthing (Hybrid) Contract Type: Permanent Salary: Circa 70K + bonus. Hours: 37 hours The Senior Cloud Operations Engineer plays a critical role in the design, implementation, and ongoing operation of the client's cloud infrastructure, with a strong emphasis on Microsoft Azure. As a key technical contributor within the Cloud Operations function, you will be responsible for ensuring that cloud-based services are available, secure, efficient, and cost-effective. This includes provisioning and managing compute, storage, networking, and identity services, as well as supporting the use of advanced PaaS capabilities and analytics platforms. Responsibilities to include: Azure Cloud Engineering Build, configure, and maintain Azure cloud environments (IaaS, PaaS, storage, networking, identity). Deploy and support Azure Landing Zones in line with enterprise architecture standards. Support the transition from IaaS to PaaS services by designing and implementing modern cloud-native solutions. Monitor and manage cloud workloads to ensure availability, performance, and security. Operations & Automation Implement infrastructure as code (IaC) using tools such as Bicep, ARM templates, or Terraform. Automate provisioning, scaling, and maintenance of cloud resources using DevOps pipelines and scripts (PowerShell, Azure CLI, CI/CD etc.). Monitor system health, respond to incidents, and participate in root cause analysis and continuous improvement. Security, Governance & Compliance Enforce cloud security best practices, including role-based access control (RBAC), encryption, and secure networking. Support compliance with internal policies and regulatory standards by ensuring guardrails and policies are in place. Cost Management & FinOps Support Contribute to cost optimization by right-sizing resources and identifying opportunities to reduce waste. Use Azure Cost Management tools and dashboards to track and forecast cloud spend. Provide reporting and insights to the Cloud Operations Manager and Finance teams. Process Development & Documentation Document standard operating procedures, cloud configurations, and runbooks. Collaboration & Support Work with infrastructure architects, data platform teams, developers, and project teams to support solution delivery. Act as an escalation point for cloud-related incidents and changes. Assist with service transitions, knowledge transfer, and training for BAU support teams. Disaster Recovery & Business Continuity Support the implementation and testing of disaster recovery and business continuity plans related to cloud infrastructure. Ensure cloud services are resilient and recoverable in line with Recovery Time Objectives (RTO) and Recovery Point Objectives (RPO). Collaborate with the DR/BCP team to maintain and update recovery procedures and test plans. Recommend improvements or innovations based on emerging technologies and industry trends. Knowledge and skills needed: Bachelor's degree in Computer Science, Information Technology, or a related field or equivalent work experience. Extensive experience with Microsoft Azure cloud services and PaaS/IaaS solutions. Strong knowledge of landing zone architecture and best practices. Proven experience in defining and implementing cloud infrastructure standards and best practices. Infrastructure as Code (IaC): Knowledge of IaC tools like Terraform or CloudFormation to provision and manage infrastructure resources programmatically. Containerisation and Orchestration: Proficient with container technologies like Docker and container orchestration platforms such as Kubernetes. Automation: Strong scripting skills (e.g., Python, PowerShell) and the ability to automate routine tasks and deployment processes for efficiency and consistency. Security: Expertise in cloud security best practices, identity and access management (IAM), encryption, and compliance frameworks (e.g., PCI DSS, NIST). Networking: Strong knowledge of cloud networking concepts, including virtual networks, subnets, security groups, load balancers, and VPN configurations. DevOps Principles: An understanding of DevOps practices and the ability to integrate development and operations workflows for faster and more reliable deployments. FinOps (Cloud Financial Operations): Experience with managing cloud costs, optimising cloud spending, and implementing FinOps principles to drive cost-effective cloud strategies while balancing performance and scalability. Capability required: Cloud Platform Expertise: Expert in MS Azure with a deep understanding of its services, features, and capabilities. Scaling and Performance Optimisation: Ability to scale cloud resources based on demand and optimize resource utilization for cost-effectiveness. Cloud Security and Compliance: Expertise in applying security best practices, including identity and access management (IAM), encryption, regulatory compliance and cloud-native security tools. Troubleshooting: Strong problem-solving and debugging skills to identify and resolve issues quickly. Documentation: Thorough documentation of configurations, processes, and procedures to ensure clarity and knowledge sharing. Disclaimer: This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission.
Job Role: Senior Security Engineer - CIAMLocation: Hybrid - City of LondonSalary: £100,000 - £120,000 + Bonus Are you an experienced Security Engineer with a passion for safeguarding systems and driving innovation in identity and access management? Do you thrive in complex environments where you can solve critical security challenges and influence long-term strategy? If you're driven by excellence, collaboration, and the opportunity to make an impact on a global financial institution, this could be the perfect role for you. Join us as a Senior Security Engineer, where you'll help shape a market-leading digital platform and deliver secure, cutting-edge customer experiences. Ideal Candidate: Strong hands-on expertise with Hardware Security Modules (HSM), AWS Secrets Manager, and certificate lifecycle management (rotation, revocation, automation) Experienced with GitLab CI/CD pipelines, AWS CLI, and automation tooling (Chef or similar) Proven background in Cloud Security, with deep knowledge of:- AWS security controls, policies, and automation- Role-based and attribute-based access controls- Cryptographic protocols and secure key lifecycle management- Securing microservices, APIs, and DevSecOps best practices Skilled in penetration testing and hands-on coding with JavaScript, Java, or Python Strong understanding of vulnerability scanning, remediation, and vendor management Collaborative mindset with the ability to partner across engineering, security, and product teams Desirable Skills: Hands-on configuration, deployment, and operation of ForgeRock IAM solutions (PingGateway, PingAM, PingIDM, PingDS) Knowledge of PKI-based identity, HTTP header signing, and advanced authentication protocols Exposure to both AWS and Azure environments Experience embedding security into the Software Development Lifecycle (SDLC) This is a hybrid role, with 2-3 days a week in the City of London. If you're ready to take on a high-impact role in one of the world's leading banks and help shape the future of secure digital identity, get in touch today to arrange a chat! Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of all backgrounds and perspectives. Our success is driven by our people, united by the spirit of partnership to deliver the best resourcing solutions for our clients. If you need any help or adjustments during the recruitment process for any reason , please let us know when you apply or talk to the recruiters directly so we can support you.
Oct 07, 2025
Full time
Job Role: Senior Security Engineer - CIAMLocation: Hybrid - City of LondonSalary: £100,000 - £120,000 + Bonus Are you an experienced Security Engineer with a passion for safeguarding systems and driving innovation in identity and access management? Do you thrive in complex environments where you can solve critical security challenges and influence long-term strategy? If you're driven by excellence, collaboration, and the opportunity to make an impact on a global financial institution, this could be the perfect role for you. Join us as a Senior Security Engineer, where you'll help shape a market-leading digital platform and deliver secure, cutting-edge customer experiences. Ideal Candidate: Strong hands-on expertise with Hardware Security Modules (HSM), AWS Secrets Manager, and certificate lifecycle management (rotation, revocation, automation) Experienced with GitLab CI/CD pipelines, AWS CLI, and automation tooling (Chef or similar) Proven background in Cloud Security, with deep knowledge of:- AWS security controls, policies, and automation- Role-based and attribute-based access controls- Cryptographic protocols and secure key lifecycle management- Securing microservices, APIs, and DevSecOps best practices Skilled in penetration testing and hands-on coding with JavaScript, Java, or Python Strong understanding of vulnerability scanning, remediation, and vendor management Collaborative mindset with the ability to partner across engineering, security, and product teams Desirable Skills: Hands-on configuration, deployment, and operation of ForgeRock IAM solutions (PingGateway, PingAM, PingIDM, PingDS) Knowledge of PKI-based identity, HTTP header signing, and advanced authentication protocols Exposure to both AWS and Azure environments Experience embedding security into the Software Development Lifecycle (SDLC) This is a hybrid role, with 2-3 days a week in the City of London. If you're ready to take on a high-impact role in one of the world's leading banks and help shape the future of secure digital identity, get in touch today to arrange a chat! Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of all backgrounds and perspectives. Our success is driven by our people, united by the spirit of partnership to deliver the best resourcing solutions for our clients. If you need any help or adjustments during the recruitment process for any reason , please let us know when you apply or talk to the recruiters directly so we can support you.
Opus Recruitment Solutions
Newcastle Upon Tyne, Tyne And Wear
I am workign with a consutlancy feeding into the Public sector looking for an Lead IaC Test Engineer to join a contract. 6 month Inside IR35 60% of the week travel to Newcastle Key Responsibilities Strategy and Leadership: Define and lead the IaC test automation strategy for the PDU, championing quality and best practices. Framework Development: Design, build, and maintain scalable and resilient automated testing frameworks for infrastructure as code using industry-standard tools. End-to-End IaC Testing: Lead the automated testing of Terraform, Ansible, and other IaC scripts to ensure correct resource creation and configuration, performance, and operational stability. Security & Compliance: Drive the integration of security and compliance testing into the CI/CD pipeline, ensuring all deployments adhere to internal policies and government standards. CI/CD Integration: Take ownership of integrating and optimising automated tests within our CI/CD pipelines (e.g., GitLab CI) for continuous validation and rapid feedback. Essential Skills and Criteria IaC Expertise: Extensive experience with a major cloud provider (AWS, Azure, or Google Cloud) and expert-level, hands-on experience using IaC tools, such as Terraform or Ansible. Test Automation: A proven track record of designing, building, and leading automated testing strategies and frameworks for both infrastructure and application layers. Experience using specific IaC testing frameworks, such as Terratest, InSpec, or Gherkin. Scripting & Programming: Senior-level proficiency in multiple scripting or programming languages relevant to test automation (e.g., Python, Bash, or JavaScript). Cloud Architecture: A deep and comprehensive understanding of cloud principles, architecture, networking, security, and identity and access management. Agile/DevOps Practices: A strong background in modern agile and DevOps methodologies, with a demonstrable ability to integrate and improve CI/CD practices (e.g., GitLab CI). Communication & Leadership: Exceptional communication, collaboration, and stakeholder management skills, with a proven ability to provide technical leadership and mentor colleagues. Experience with containers and orchestration tools (e.g., Docker, Kubernetes). Extensive knowledge of monitoring and observability tools (e.g., Prometheus, Grafana). A strong background working with large-scale digital transformation projects in the public sector.
Oct 07, 2025
Contractor
I am workign with a consutlancy feeding into the Public sector looking for an Lead IaC Test Engineer to join a contract. 6 month Inside IR35 60% of the week travel to Newcastle Key Responsibilities Strategy and Leadership: Define and lead the IaC test automation strategy for the PDU, championing quality and best practices. Framework Development: Design, build, and maintain scalable and resilient automated testing frameworks for infrastructure as code using industry-standard tools. End-to-End IaC Testing: Lead the automated testing of Terraform, Ansible, and other IaC scripts to ensure correct resource creation and configuration, performance, and operational stability. Security & Compliance: Drive the integration of security and compliance testing into the CI/CD pipeline, ensuring all deployments adhere to internal policies and government standards. CI/CD Integration: Take ownership of integrating and optimising automated tests within our CI/CD pipelines (e.g., GitLab CI) for continuous validation and rapid feedback. Essential Skills and Criteria IaC Expertise: Extensive experience with a major cloud provider (AWS, Azure, or Google Cloud) and expert-level, hands-on experience using IaC tools, such as Terraform or Ansible. Test Automation: A proven track record of designing, building, and leading automated testing strategies and frameworks for both infrastructure and application layers. Experience using specific IaC testing frameworks, such as Terratest, InSpec, or Gherkin. Scripting & Programming: Senior-level proficiency in multiple scripting or programming languages relevant to test automation (e.g., Python, Bash, or JavaScript). Cloud Architecture: A deep and comprehensive understanding of cloud principles, architecture, networking, security, and identity and access management. Agile/DevOps Practices: A strong background in modern agile and DevOps methodologies, with a demonstrable ability to integrate and improve CI/CD practices (e.g., GitLab CI). Communication & Leadership: Exceptional communication, collaboration, and stakeholder management skills, with a proven ability to provide technical leadership and mentor colleagues. Experience with containers and orchestration tools (e.g., Docker, Kubernetes). Extensive knowledge of monitoring and observability tools (e.g., Prometheus, Grafana). A strong background working with large-scale digital transformation projects in the public sector.
