NSL – Cloud Security Specialist

Location: UK, London

About the Role

As an AWS Cloud Security Architect you will work with our teams and customers to design, implement and secure AWS cloud environments. You will translate legal and regulatory requirements and industry best practices into secure AWS workloads and tooling, partner closely with customers and their cyber security specialists, and lead large‑scale cloud migration and new cloud‑native projects.

Core Duties

• Lead the development of secure architectures, patterns and processes for a wide range of AWS services.
• Collaborate closely with solution architects and cyber security specialists, translating concerns into cohesive solutions.
• Apply security requirements to AWS architectures and services.
• Ensure cloud‑based solutions meet legal and regulatory compliance.
• Perform threat modelling and risk assessments of solutions built on AWS.
• Promote a culture of security‑by‑design.
• Design and support implementation of security controls to validate compliance and prevent non‑compliance.
• Provide consultancy and guidance on secure cloud development to development teams, serving as an escalation point for security concerns.
• Seek opportunities to improve the security posture.
• Make security practices accessible to all through documentation, reusable constructs and communication.

About You

• Subject matter expert on AWS Cloud Security.
• Proven experience in AWS cloud security architecture and design in enterprise environments at scale.
• Deep understanding of general cyber security principles (e.g., encryption, secure network design, application attack vectors).
• Practical knowledge of industry‑standard security frameworks such as CIS AWS Foundations Benchmark, NIST, ISO 27001 and regulatory requirements (GDPR, PCI‑DSS).
• Concrete understanding of core AWS principles (e.g., networking and IAM) with knowledge of security details across a range of AWS services.
• Hands‑on experience with AWS‑native security tools (e.g., IAM, KMS, GuardDuty, Macie, WAF).
• Proficiency in Infrastructure‑as‑Code (CloudFormation, Terraform).
• Excellent communication and stakeholder engagement skills.
• Curiosity and a desire to continuously learn, staying up to date with the latest threats and best practices.

Additional Experience (Nice to Have)

• Industry certifications such as AWS Certified Cloud Security Specialty or CISSP.
• Experience of securing container workloads.
• Mentoring junior engineers and nurturing their passion for engineering.

Security Clearance

Security Clearance is required for this vacancy. If you are not currently Security Cleared, you will need to be eligible for clearance and willing to go through the process.

How we will support you

• Work‑life balance is important; you can work around core hours with flexible and part‑time working.
• As many of our customers work predominantly in the office, we expect all staff to work at least three days per week in the office.
• 25 days holiday a year plus the option to buy/sell and carry over from the year before.
• Flexible benefits package includes private medical and dental insurance, a competitive pension scheme, cycle to work scheme, taste cards and more.
• Dedicated Career Manager to help you develop your career and guide you on your journey through BAE.
• Company bonus scheme.
• Participation in Diversity and Support groups covering everything from gender diversity to mental health and wellbeing.

#J-18808-Ljbffr…