SR2 are looking to engage two SC-cleared Cloud Security Engineers to support the delivery of secure, scalable, and compliant cloud environments for a high-priority central government digital programme. These roles will focus on cloud-native security design, posture management, threat detection, and governance across AWS workloads. You will work closely with architecture, platform, and SOC teams to embed security by design across agile delivery pipelines.

Essential Skills & Experience

• Extensive hands-on experience in cloud security engineering within AWS environments
• Strong knowledge of AWS security services (e.g. IAM, KMS, CloudTrail, GuardDuty, Config, Security Hub, Macie)
• Experience implementing governance frameworks and compliance checks using tools like AWS Config Rules, SCPs, and security baselines
• Scripting or automation skills (e.g., Python, Bash, or use of tools like Terraform for secure IaC)
• Familiarity with government or highly regulated environments and ability to design in accordance with security risk appetite
• Strong documentation and stakeholder engagement skills, particularly around risk management and controls

Desirable

• Experience working with SIEM platforms (e.g., Splunk, ELK) and integrating AWS logging for threat detection
• Knowledge of modern container security approaches (e.g., EKS, image scanning, RBAC)
• AWS Certification (e.g., Security Specialty, Solutions Architect – Associate or Professional)