Cloud Security Engineer

• Design, implement, and automate enterprise-level security systems and controls—including IAM, SIEM, DLP, firewalls, endpoint protection, and cloud-native guardrails—to safeguard assets across both cloud and hybrid environments
• Work collaboratively with global IT, Cloud, and Security Operations Centre teams to protect company systems and efficiently tackle any emerging challenges
• Maintain ongoing compliance with relevant security and data privacy standards (e.g., GDPR, ISO 27001, NIST, CCPA) through diligent documentation, effective policies, and audit preparedness
• Evaluate and strengthen our overall security posture by performing continuous audits, risk assessments, threat modelling, and architecture reviews to ensure effective controls and adherence to regulatory standards
• Keep abreast of emerging threats, tools, and technologies, and propose innovative strategies to enhance our security frameworks continuously
• Consistently monitor and assess cloud environments for vulnerabilities and misconfigurations utilising tools like AWS Inspector, GuardDuty, and Security Hub, complemented by regular vulnerability scanning and penetration testing
• Create and present clear, actionable security reports for internal stakeholders and external clients, aiding in assurance activities and fulfilling contractual obligations
• Actively respond to security events and incidents by leading investigations, coordinating remediation efforts, and driving improvements after incidents
• Advocate secure-by-design principles, integrating security best practices into system architecture, development processes, and operational workflows

Vix Technology, a global leader in automatic fare collection, transit information, and transit analytics solutions, is seeking a highly skilled and experienced Field Engineer. With a presence in over 200 city and regional transport authorities worldwide, Vix has been at the forefront of transforming fare collection for more than 35 years. At Vix, we are committed to solving problems and delivering innovative solutions that are revolutionising the world of public transit.

Join the Vix team as an experienced Cloud Security Engineer! This on-site position in Manchester involves collaborating with our Cloud Operations team and the Security team to maintain robust security protocols. You'll play a crucial role in guiding our technical teams to meet security standards, successfully passing security audits, and safeguarding both company and customer data. As the first point of contact for security incidents, your expertise will be essential in keeping our systems secure.

**We regret that this position is only available for UK citizens/Residents with indefinite leave to remain in the UK, with current full time work rights for the United Kingdom, currently residing in the UK. The position is located in Manchester.**

Add your resume and anything else to showcase why you would be a great addition to our team. We regret that this position is only available for UK citizens/Residents with indefinite leave to remain in the UK.

• Strong understanding of security principles, technologies, and industry best practices, including vulnerability and incident management.
• Proficiency in programming or scripting languages (such as Python, Bash, or PowerShell) for automation or tooling.
• 3-5 years of experience in Information Security and Cloud Security Engineering, with proven expertise in securing AWS environments (IAM, networking, storage, and compute).
• Strong understanding of networking protocols, systems architecture, and secure key management (e.g., PCI digital keys, security access modules).
• Proven ability to handle sensitive information with discretion, professionalism, and sound judgment.
• Bachelor's degree in Computer Science, Information Technology, or Information Security, or equivalent practical experience.
• Hands-on experience with offensive security techniques, including penetration testing and phishing simulations.
• Organised, adaptable, and dependable, maintaining focus and professionalism in dynamic environments.
• Proficiency with Windows and Linux systems, as well as network scanning and diagnostic tools (e.g., Wireshark, IP scanner).
• Familiarity with key security frameworks and standards such as PCI, ISO 27001, NIST, and CIS, along with experience supporting audits and compliance initiatives.
• Exposure to threat intelligence and security analytics, particularly within cloud environments.
• Hands-on experience with networking, infrastructure, and container security (EKS, ECS, Kubernetes) across both cloud and on-premises environments.
• A solid understanding of Public Key Infrastructure (PKI) and encryption fundamentals.
• Excellent collaboration, communication, and organisational skills, with the ability to work both independently and as part of a cross-functional team.
• A proactive, automation-first engineer who embraces security-by-design and sees tasks through to completion.
• Practical experience with security monitoring and protection tools such as Firewalls, IDS/IPS, XDR, SIEM, CNAPP, and log collection platforms (e.g., CrowdStrike, Lacework).
• Experience with Infrastructure as Code (IaC) and its security implications is highly desirable
• Excellent communicator, both written and verbal, with a strong customer-service mindset and a passion for supporting others.
• Relevant certifications such as AWS Certified Security - Speciality, CISSP, CCSP, or Terraform Associate (or equivalent experience)
• Experience in designing and implementing Identity and Access Management (IAM) solutions and maintaining secure authentication practices.
• Outstanding problem-solving abilities and a keen eye for detail, ensuring precision and reliability in all tasks.

• Income Protection Scheme
• Group Life Assurance
• Private Healthcare
• Eyecare and Spectacle Vouchers
• Cycle to Work Scheme
• Electric Car Benefit Scheme
• Employee Assistance Program