AWS Security Engineer Job in London | Apsley Recruitment Ltd

2673 IT & Software Developer jobs in the UK

Company Size

<50

Company Type

Services

Exp Level

Regular

Job Type

Full-Time

Language

English

Visa sponsorship

Requirements

Must:

- Deep, hands-on AWS security experience across IAM, networking, compute, storage, serverless, and managed data services. - Strong knowledge of the AWS Well-Architected Security Pillar and common control frameworks (CIS AWS Foundations, NIST/ISO-aligned controls). - Demonstrable experience implementing and validating AWS security controls, including IAM least privilege, roles, permission boundaries, SCPs, and access reviews. - Experience with VPC segmentation, security group/NACL design, private endpoints, WAF/Shield. - Knowledge of encryption in transit and at rest using KMS, TLS, and secrets management. - Familiarity with logging and monitoring: CloudTrail, CloudWatch, Config, centralized SIEM patterns. - Strong understanding of modern SDLC, CI/CD, and DevSecOps approaches. - Proven experience managing the full vulnerability lifecycle: triage, prioritization (CVSS/EPSS/KEV), remediation, verification, and reporting. - Comfortable remediating a wide range of findings: OS/package CVEs, container images, third-party libraries, serverless runtimes, and cloud misconfigurations. - Able to translate security findings into clear, practical tasks for engineering teams and coach on secure implementation. - Infrastructure as Code experience with Terraform and/or CloudFormation; able to review and fix security weaknesses in IaC. - Scripting/automation skills in Python, Bash, or similar to streamline remediation and control validation. - Familiarity with container and serverless security (ECR, ECS/EKS, Lambda, image scanning, runtime hardening). - Experience with common vulnerability and scanning tools (e.g., AWS Inspector/Security Hub, Snyk, Trivy, Dependabot, Prisma/Qualys/Tenable, etc.). - Security certifications such as AWS Security Specialty, AWS Solutions Architect, or equivalent are advantageous. - Experience supporting data platforms on AWS (Glue, EMR, Redshift, Athena, RDS, OpenSearch, Kafka/MSK) is a plus. - Knowledge of secure coding practices in Python/Node/Java or your core development stack. - Experience with policy-as-code and automated control enforcement (OPA/Conftest, tfsec, Checkov).

Technologies

AWS

Lambda

OpenSearch

Redshift

Architect

Bash

CI/CD

Cloud

CloudWatch

DevSecOps

EC2

Responsibilities

- Own end-to-end remediation of AWS and workload vulnerabilities: confirm findings, assess impact, prioritize actions, and track through to closure. - Partner with Developers and Data Engineers to implement secure fixes in code, infrastructure, and delivery pipelines (IaC, containers, serverless, OS/packages). - Work with the AWS Security Lead to ensure remediation aligns with AWS security controls, internal risk policies, and compliance requirements. - Improve and automate vulnerability management processes (e.g., scanning coverage, SLAs, exception handling, evidence capture). - Embed security into CI/CD and the SDLC: shift-left reviews, secure coding guidance, dependency management, and pipeline guardrails. - Configure, tune, and operate AWS security services (e.g., GuardDuty, Security Hub, Inspector, Config, IAM Access Analyzer) to reduce exposure and prevent repeat issues. - Produce clear remediation guidance, runbooks, and reporting dashboards for both technical and non-technical stakeholders. - Support incident response and post-remediation validation where high-risk findings are exploited or trending.

Description

We are looking for an AWS Security Engineer to join our team in central London. In this role, you will lead the remediation of cloud and application vulnerabilities across our AWS environment, working closely with developers and data engineers. We value a collaborative and pragmatic approach, providing benefits that foster both personal and professional growth. Our office is centrally located, requiring on-site attendance 2-3 days per week. If you are passionate about security and eager to drive secure implementations, we encourage you to apply.

Something wrong or incorrect with this job? Tell us in the chat 💬 on the right ➡️

IT & Software developer jobs in the UKSecurity Engineer jobs in the UKSecurity Engineer jobs London

You can find Cyber Security Engineer salaries in the UK here.

How many Cyber Security Engineer jobs are in the UK?

Currently, there are 2673 Security openings. Check also: IAM jobs, SAML jobs, Cisco jobs, Splunk jobs - all with salary brackets.

Is the UK a good place for Cyber Security Engineers?

The UK is one of the best countries to work as a Cyber Security Engineer. It has a vibrant startup community, growing tech hubs and, most important: lots of interesting jobs for people who work in tech.

Which companies are hiring for Cyber Security Engineer jobs in the UK?

Mas & Pas Limited, Bluefruit Software Limited, Pense Ltd, FCDO Services, Access4, COMPANIES HOUSE, Companies House among others, are currently hiring for Security roles in the UK.

The company with most openings is Experis as they are hiring for 100 different Cyber Security Engineer jobs in the UK. They are probably quite committed to find good Cyber Security Engineers.