This role delivers security improvements across the organisation’s cloud environments, ensuring platforms remain secure, compliant, and aligned with best practice. As part of the IT Security team, you’ll design and operate cloud security controls, contribute to security strategy, and work closely with internal IT teams and managed service providers to address evolving cloud security challenges.

You’ll play a key role in safeguarding IaaS, PaaS, and SaaS platforms while clearly communicating risk and solutions to a wide stakeholder audience.

Main duties and responsibilities

Cloud security engineering & operations

• Design and deploy cloud security solutions across IaaS, PaaS, and SaaS platforms.
• Support and maintain security controls within Microsoft Azure, Azure Active Directory, and Microsoft 365.
• Operate and maintain cloud security tooling and platforms.
• Identify security risks and provide practical mitigation recommendations.
• Conduct regular security assessments and audits across cloud environments.

Policy, governance & strategy

• Develop and maintain cloud security policies, standards, and procedures.
• Help shape cloud security strategy, ensuring controls, tooling, and ways of working adapt to emerging threats.
• Ensure alignment with recognised security frameworks and best practice.

Incident response & assurance

• Support production issues and incidents, participating in problem and change management forums.
• Take part in incident response and post incident reviews, proposing engineering improvements to prevent recurrence.
• Maintain a strong focus on secure, stable, and resilient cloud services.

Collaboration & capability building

• Work closely with the wider IT Security function, internal IT teams, and managed service providers.
• Act as a clear communicator, explaining complex security challenges to a broad stakeholder audience.
• Support mentoring and cross skilling activities across the IT Security team.
• Stay current with emerging cloud threats, vulnerabilities, and security trends, recommending remediation actions.

Applicants to this role require

• Extensive experience working with cloud technologies, with Microsoft Azure strongly preferred.
• Proven experience delivering information security in modern digital workplace and cloud environments.
• Strong hands on experience with Microsoft 365 and Azure Active Directory (Microsoft Purview exposure desirable).
• Solid experience supporting security controls within Windows Server and enterprise IT environments.
• Working knowledge of security frameworks and standards such as NIST, ISO 27001, and GDPR.
• Scripting capability using PowerShell.
• Strong understanding of IT infrastructure, applications, and modern enterprise technology trends.
• Excellent communication skills, with the ability to engage both technical and non technical audiences.
• Operates with a high level of integrity and confidentiality.

Desirable Certifications

• Security certifications such as CISSP or CISM.
• Azure security certifications such as AZ500 or SC300.

TMM Recruitment INDFIN