KI

Senior Cloud Security Engineer

KI

full-time

Posted on:

Location Type: Hybrid

Location: LondonUnited Kingdom

Visit company website

Explore more

AI Apply
Apply

Job Level

Senior

Tech Stack

AWSAzureCloudDockerFirewallsGoGoogle Cloud PlatformKubernetesPythonTerraform

About the role

  • Design and implement security architectures for cloud-based systems, including GCP, Azure, AWS or hybrid environments
  • Design secure cloud architectures for AI/LLM workloads and AI-enabled services, including isolation patterns, secure networking, and hardened runtime configurations
  • Ensure the reproducibility of security configurations and infrastructure through infrastructure-as-code (IaC), specification driven development(SDD), and automated deployment pipelines
  • Automate cloud security processes leveraging agentic AI harnesses.
  • Design and implement robust security measures across our cloud platforms
  • Be opinionated regarding Ki's current architecture, able to suggest improvements
  • Develop and enforce security policies, standards, and guidelines for cloud services
  • Ensure cloud environments meet regulatory and compliance requirements such as ISO 27001, SOC 2, SOX ITGC, NIST, GDPR, etc
  • Conduct and automate regular security assessments and audits
  • Enable cloud security governance (Azure, GCP and AWS) with security monitoring, cloud security posture and vulnerability management
  • Monitor cloud environments for security breaches and respond to incidents
  • Conduct root cause analysis, create incident reports, and implement remediation strategies
  • Triage & prioritise mitigation of vulnerabilities adhering to our remediation policies
  • Manage and implement IAM policies, roles, and permissions to enforce the principle of least privilege and zero trust
  • Develop solutions for secure authentication and authorisation mechanisms
  • Ensure data security and compliance through encryption, data masking, and secure storage practices
  • Implement DLP (Data Loss Prevention) and data classification technologies
  • Develop automated security controls, processes, and work with Terraform, Kubernetes
  • Define secure-by-default automation patterns for AI-enabled systems, including observability and policy-as-code controls
  • Integrate security tools and technologies with CI/CD pipelines to enhance DevSecOps practices
  • Automate your work by writing code and contributing to infrastructure and security tooling around our platforms in the cloud
  • Work closely with development, operations, and product teams to integrate security into the system development lifecycle
  • Mentor junior security engineers and provide guidance on cloud security best practices
  • Provide guidance and hands-on implementation advice in application security, aligning to industry best practices and frameworks
  • Organise regular penetration tests and ad-hoc security assessments
  • Develop and optimise technical controls for platform integrations
  • Diligently document your work and share knowledge with the engineers
  • Help facilitate and manage the Security Champions network across the engineering teams
  • Organise regular security training sessions

Requirements

  • You have extensive experience working with one of the major public cloud providers (preferably GCP and Azure) and understand network infrastructure
  • Strong understanding of identity management, network security, firewalls, VPNs, IDS/IPS, and WAFs
  • Hands-on scripting or programming experience with Python, Golang, or similar languages, delivered services or automation into production
  • Hands-on experience with security tools such as SIEM, vulnerability scanners, EDR/XDR, and cloud security posture management (CSPM) tools
  • You understand the Kubernetes ecosystem and security considerations around it
  • You have experience with AI augmented development flows, and you can steer agents effectively for high quality outcomes that you can understand and explain
  • You have worked with agile development teams before collaboratively
  • The ability to troubleshoot and solve cloud related security issues independently
  • Google Cloud Platform and Azure Experience
  • Experience with CNAPP, and CSPM type tools like Wiz
  • Experience with Kubernetes, Docker, and container security
  • Experience with Infrastructure-as-Code using Terraform / OpenTofu, HCL
  • Experience with CI tools such as Github Actions, Azure DevOps, pipeline builds, release packaging and artefact management
  • Enterprise-wide agile methodologies and practices
  • Desirable Qualifications
  • GCP professional cloud security engineer qualification desirable
  • Experience or familiarity with securing LLM systems and AI agent harness and tool access patterns
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
cloud security architectureinfrastructure-as-codePythonGolangTerraformKubernetesCI/CDdata loss preventionencryptionvulnerability management
Soft Skills
mentoringtroubleshootingcollaborationcommunicationproblem-solvingdocumentationguidanceopinionated architecturetraining facilitationincident response
Certifications
GCP professional cloud security engineer