Cloud Security and Integrations Engineer
Remote
London, United Kingdom
Full Time
22-04-2025
Job Specifications
Company Description
About Sibylline
Sibylline is a leading intelligence and strategic risk consultancy in the security sector. Since 2010 we have supported businesses, governments and NGOs through the provision of high-quality risk analysis, due diligence and consultancy services. The firm provides an innovative, entrepreneurial and fast-growing working environment, offering employees ever greater exposure to high-profile clients and challenges. Sibylline offers fantastic opportunities for career progression within a successful company, and we aim to help our employees to build their own personal profiles as well-regarded analysts within the broader industry.
Key attributes of Sibylline employees are:
Self-motivated, and auto-improving individuals who can couple initiative and boldness with good judgement
Excellent written and spoken English
Clarity of thought and analytical flair
Strong, demonstrable interest in security and intelligence
The ability to work under pressure, demonstrate leadership when required but also be able to collaborate effectively in teams
Excellent attention to detail
Job Description
About the role
We are looking for a Cloud Security and Integrations Engineer with expertise in Microsoft 365 security, cloud integration, and identity management to join our rapidly growing company. You will play a pivotal role in safeguarding our organisation's cloud infrastructure, maintaining robust security configurations, and enabling seamless integration between our various systems.
You will also be monitoring and enhancing our Microsoft 365 security posture, managing cloud-based identity solutions, and implementing secure system integrations, whilst working closely with stakeholders throughout Sibylline and with external partners. You will collaborate with the Microsoft 365 Architect and other teams across the company to implement robust security measures, design and deploy automated processes, and establish secure integrations with third-party applications.
Additionally, you will be supporting incident response activities, contributing to compliance efforts, and driving security awareness across the organisation. This position requires a security-focused mindset with particular emphasis on cloud security best practices and zero-trust principles.
Responsibilities
Monitor, assess, and enhance Microsoft 365 security configurations across the entire tenant - Including, but not limited to, Azure, Defender, Entra, Intune, and 3rd party software
Support the Microsoft 365 Architect with research and implementation of cloud systems
Implement and manage data loss prevention (DLP) policies, sensitivity labels, and advanced threat protection measures
Conduct regular security assessments of Microsoft 365 environment to identify and remediate potential security gaps
Design and implement Conditional Access policies that seek to harden security standards while maintaining staff accessibility
Evaluate, integrate, and onboard 3rd party software with appropriate security policies and SSO configuration
Conduct periodic reviews of 3rd party software integrated with Microsoft 365
Develop and maintain secure integrations and automated workflows between Microsoft 365 and other business-critical applications
Implement security controls for data flows between integrated systems
Provide weekly updates to the Director of Tech and the wider team regarding recent security incidents, or any new vulnerabilities that need to be addressed
Monitor security logs and alerts from Microsoft 365 Defender suite and track remediation of identified security issues
Create regular security reports for technical and non-technical stakeholders
Conduct and support internal audit efforts related to ISO-27001, Cyber Essentials, regular security audits of cloud configurations and any other relevant frameworks
Develop and maintain security policies and procedures for cloud environments
Respond to and investigate security incidents related to cloud environments and M365 and develop incident response playbooks for common cloud security scenarios.
Requirements
Minimum 3 years of experience in cloud security, with specific focus on Microsoft 365 security and administration
Relevant certifications such as Microsoft Certified: Security, Compliance, and Identity Fundamentals, Microsoft 365 Certified: Security Administrator Associate, or similar certifications
Demonstrated expertise in Azure Active Directory/Entra ID, Single Sign-On (SSO) implementation, and identity management
Strong experience configuring and managing Microsoft Defender for Office 365, Defender for Endpoint, and other M365 security components
Experience with Conditional Access policies and implementing zero-trust security principles
Hands-on experience integrating Microsoft 365 with third-party applications and implementing appropriate security controls
Experience with Microsoft Intune for device management and security
Understanding of data protection regulations and compliance requirements (particularly ISO-27001 and Cyber Essentials)
Experience monitoring and responding to security alerts and incidents
Knowledge of cloud security best practices and frameworks
Ability to communicate security concepts effectively to both technical and non-technical audiences
Strong analytical and problem-solving skills
Experience with audit and compliance initiatives.
Nice to have
Additional certifications such as Certified Information Systems Security Professional (CISSP), Microsoft Certified: Azure Security Engineer Associate, or Certified Cloud Security Professional (CCSP)
Experience with cloud security posture management tools
Knowledge of secure API integration principles
Experience with cloud-based SIEM solutions, particularly Microsoft Sentinel.
Additional Information
Interview Process
Initial call with our Talent Acquisition team member
Interview with the hiring manager
Panel interview with some of the team members and hiring managers at Sibylline
Research indicates that certain groups are less likely to apply for a position unless they meet every single requirement. If you feel you meet some of the requirements and can offer a unique perspective to this role, we strongly encourage you to apply—you might be the perfect fit we're looking for!
Sibylline is committed to the recruitment and selection of candidates without regard for sexual orientation, gender, ethnicity, age, political beliefs, culture and lifestyle. We are committed to fostering a business culture that reflects these values and promotes equal opportunity.
About the Company
Sibylline is a leading strategic risk consultancy delivering timely, accurate, relevant and actionable intelligence; tailored to increase organizational resilience and decision advantage. Since 2010 we have supported businesses, governments and NGOs through the provision of high quality risk analysis and due diligence services. We do not believe in one-size-fits-all solutions. Instead, our global source network, professional intelligence analysis processes and specialist expertise allows us to produce high-quality, insightf... Know more
Related Jobs
- Company Name
- Owen Thomas
- Job Title
- Senior Backend Python Engineer, GCP | Full stack, Data/AI | Greentech, B2B Logistics | Recent Series A Raise | Salary up to £130,000 + Equity, Bonus, Benefits | London, Hybrid (2 days PW)
- Job Description
- Senior Backend Python Engineer, GCP | Full stack, Data/AI | Greentech, B2B Logistics | Recent Series A Raise | Salary up to £130,000 + Equity, Bonus, Benefits | London, Hybrid (2 days PW) The Company We are working with a Series A backed scale-up, that has raised over $ 30million. The platform is used by the largest eCommerce companies across Europe, to help reduce their CO2 Footprint at scale. The business is primed for the AI-driven scale up phase and are investing heavily into their engineering disciplines. About The Role You will be joining an experienced team of excellent engineers, working on the platform for the couriers to retain loyalty and improve overall success of their work. They love engineers who are passionate about solving problems first, and using whatever technology that might be to best fit the problem. Beyond the Backend developmen which will be the main part of your role, you will also be taking on Full stack responsibilities with Backend API's, Cloud Infrastructure and improving FE code, . This is a true Software Engineer role, where you will wear many hats! Requirements for the Senior Backend Python Engineer, GCP | Full stack, Data/AI | Greentech, B2B Logistics | Recent Series A Raise | Salary up to £130,000 + Equity, Bonus, Benefits | London, Hybrid (2 days PW) Minimum 4 years experience working in high-performing software teams. Strong experience with Python Strong experience working with GCP Deep understanding of backend systems, but also understanding of Cloud Infrastructure and front-end code. Proven examples of working on software at scale, taking ownership on projects and wearing many hats. Strong communication skills Experience working in Start-up/Scale up companies. What They Can Offer: Up to £130,000+Equity+Bonus & Benefits 3 Days Hybrid Working in the central London Office Health Insurance Dental Insurance Competitive Pension Contribution If you are interested in the Senior Backend Python Engineer, GCP | Full stack, Data/AI | Greentech, B2B Logistics | Recent Series A Raise | Salary up to £130,000 + Equity, Bonus, Benefits | London, Hybrid (2 days PW)
- Company Name
- Saab UK
- Job Title
- Cyber Security Lead
- Job Description
- Introduction: Saab UK is part of Scandinavia's largest defence company, bringing together the best of Swedish and British innovation. Saab offers world-leading solutions and services in defence, aviation, space, and civil security to keep people and society safe. Our UK presence has been growing at pace, meaning we can offer a wide range of opportunities for personal fulfilment and career growth. We currently employ over 500 people across eight sites in the UK, and our specialisations include software engineering, underwater robotics, radars, AI, and armed forces training. As part of the global entity Saab AB, Saab UK combines the innovative spirit of a start-up with the resources and expertise of a larger corporation. Globally, Saab employs over 22,000 people, with operations on every continent. Our partnerships with UK customers and industry mean we are able to deliver innovative solutions to complex challenges, anticipating the threats of tomorrow. We invest 23% of our annual revenue into research and development, collaborating with a range of partners including industry and academia. Saab is a company that offers our employees plenty of opportunities for growth and advancement. We embrace diversity and are committed to providing a workplace where individuals can thrive professionally, paving the way for future progression. We also recognise the need for a healthy work-life balance to ensure our staff have the chance to live a fulfilling life beyond the workplace. The Role: The Cyber Security Lead will lead the deployment and management of Cyber Security activities across the UK Saab operations in close co-operation with the business units, group security and the group IT operations in Sweden. The role will ensure compliance of UK operations to customer and group security standards. The role will work closely with UK Security and Group IT and Security teams to assist with compliance against CyberEssentials plus, ISO 27001 compliance and UK customer security requirements Responsibilities: Safeguards Saab UK networks and information system by identifying and solving potential and actual security problems. Protects systems by implementing and managing access privileges, control structures, and resources. Recognises problems by identifying abnormalities; reporting violations. Reporting on emerging threats together with the Group IT Security function Implements security improvements by assessing current situation; evaluating trends; anticipating requirements. Determines IT process violations and inefficiencies by conducting periodic audits. Upgrades system by implementing and maintaining security controls. Keeps users informed by preparing performance reports; communicating system status. Maintains quality service by following Saab Group IT standards. Maintains technical knowledge by attending educational workshops; reviewing publications. Systems accreditation for internal and external teams Leading IT Security Incident response process Required Skills: System administration Network security Problem solving Information security policies On-call network troubleshooting Firewall administration Network protocols Routers, hubs, and switches Collaboration and communication Process improvement Knowledge of systems accreditation for internal and external teams Experience and Qualifications: Bachelor's degree in Computer Science, Information Systems, or equivalent education or work experience 4+ years of prior relevant experience Advanced certifications in Security Standards Advanced understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defence-in-depth and common security elements. Hands-on experience analysing high volumes of logs, network data (e.g. Netflow, FPC), and other attack artifacts in support of incident investigations Experience with vulnerability scanning solutions In-depth knowledge of architecture, engineering, and operations of at least one enterprise SIEM platform (e.g. Sentinel, Nitro/McAfee Enterprise Security Manager, ArcSight, QRadar, LogLogic, Splunk) Understanding of mobile technology and OS (i.e. Android, iOS, Windows), Experienced in Cloud Security principles As a National Security Vetting clearance is required for this role, applicants will be required to hold National Security Vetting clearance to SC level or have the ability to gain it. By submitting an application to Saab UK you consent to undertaking workforce screening activities that may include but are not limited to: Baseline Personnel Security checks, National Security Vetting, reference checks, verification of working rights and in all circumstances preferred candidates will be placed through a security interview.
- Company Name
- NICE
- Job Title
- Information Security Engineer
- Job Description
- At NICE, we don’t limit our challenges. We challenge our limits. Always. We’re ambitious. We’re game changers. And we play to win. We set the highest standards and execute beyond them. And if you’re like us, we can offer you the ultimate career opportunity that will light a fire within you. So, what’s the role all about? We are seeking a seasoned Information Security Engineer with expertise in crafting, deploying, and sustaining cloud security solutions within a cloud computing framework, aligning with established security policies, standards, and industry best practices. Your role will encompass researching, conceiving, constructing, and overseeing cloud-based security products and services, contributing to the safeguarding of our clients' cloud assets. How will you make an impact? Responding to security questionnaires, contract reviews, and customer calls. Customer consultation to determine outcomes, success criteria and challenges/gaps. Develop and implement plans of action to close gaps and drive successful outcomes. Interface with Technical Support and/or R&D to resolve technical issues that may impede success. Define and create memorandums in accordance with customer’s business requirements. Articulate security processes throughout the organization. Create customer reports to achieve project alignment and unity of effort. Review and investigate issues raised by client and provide accurate guidance based on current documentation. Understand client software configuration and customizations Understand the install, configure and customize solutions by following implementation guides and manuals. Coordinate client environment data, configuration and setup in order to investigate possible issues. Provides information by collecting, analyzing, and summarizing development and service issues. Utilizes software engineering tools such as configuration management systems, build processes, and debuggers in the software development process. Collaborates and adds value through participation in peer case reviews, providing comments and suggestions. Provides reliable solutions to a variety of problems using sound problem solving techniques. Performs technical root cause analysis and outlines corrective action for given problems. Work with customer and ownership for issues collaborating with higher tiers for end-to-end resolution Assist with Customers request assistance via many channels including, phone, email, and various web contact methods (chat, e-Services). Working in accordance with NICE support process, procedures, contractual SLA’s Documenting all customer interactions in CRM tool in accordance with SLA. Have you got what it takes? Excellent verbal and written communication skills in English. At least 2 years in technical support facing customers and resolving issues. Fast learner with ability to educate her/himself on relevant technologies 2 years of experience with application development Intimate knowledge of the customer’s connected applications. Excellent technical and analytical skills. Familiarity with servers tuning and solving performance issues plus. Technical development/debugging and diagnosis skills Integration experience with desktop enterprise software applications. Excellent organizational skills, ability to set own task lists and timelines. Ability to work in a team. Demonstrated interest and ability to communicate across technology and business boundaries. Bachelor's degree in computer science (or equivalent). You will have an advantage if you also have: Knowledge on cloud software infrastructure (AWS, Azure, GCP) Speaking multiple languages Cybersecurity training and certifications Enjoy NICE-FLEX! At NICE, we work according to the NICE-FLEX hybrid model, which enables maximum flexibility: 2 days working from the office and 3 days of remote work, each week. Naturally, office days focus on face-to-face meetings, where teamwork and collaborative thinking generate innovation, new ideas, and a vibrant, interactive atmosphere. Requisition ID:6465 Reporting into: Director, Cloud Information Security and Architecture. Role Type: Individual Contributor. About NICE NICE Ltd. (NASDAQ: NICE) software products are used by 25,000+ global businesses, including 85 of the Fortune 100 corporations, to deliver extraordinary customer experiences, fight financial crime and ensure public safety. Every day, NICE software manages more than 120 million customer interactions and monitors 3+ billion financial transactions. Known as an innovation powerhouse that excels in AI, cloud and digital, NICE is consistently recognized as the market leader in its domains, with over 8,500 employees across 30+ countries. NICE is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, age, sex, marital status, ancestry, neurotype, physical or mental disability, veteran status, gender identity, sexual orientation or any other category protected by law.
- Company Name
- Nuclear Restoration Services
- Job Title
- Security Architect
- Job Description
- Nuclear Restoration Services Limited (NRS) is a wholly owned subsidiary of the Nuclear Decommissioning Authority (NDA). NRS is responsible for decommissioning first generation nuclear power stations Berkeley, Bradwell, Chapelcross, Dungeness A, Hinkley Point A, Hunterston A, Oldbury, Sizewell A, Trawsfynydd and Wylfa, and research sites Harwell and Winfrith. NRS is also responsible for electricity generation at hydroelectric plant Maentwrog. As a division of NRS, NRS Dounreay is responsible for the clean-up and demolition of the former centre of fast reactor research and development. NRS is an exciting place to be, and this role is the perfect opportunity for you to be part of our challenging mission - to safely and successfully manage the UK’s civil nuclear legacy on behalf of the nation. To deliver our commitment, we need people like you who want to perform at an industry leading standard and be part of a team that continues to develop, innovate and even exceed our greatest achievements. At NRS, we understand, and acknowledge the value of an inclusive working environment, and celebrate the diversity this brings to our workplace. Without this approach, we wouldn’t be in the position that we are now, being able to safeguard and secure the future of our organisation. About The Role Hear from the Hiring Manager "Over the last five years NRS has been on a transformation journey, leveraging modern technology such as M365, PowerPlatform and SaaS solutions to change the way we work. As technology evolves and our digital footprint increases so does our awareness of cyber threats, particularly for an organisation within the Critical National Infrastructure sector. As Security Architect within our IT function you will play a critical role in enabling us to leverage innovative technologies whilst understanding the risks involved. Being able to effectively communicate those risks and how to mitigate them with business stakeholders, senior leaders and our Cyber Security & Information Assurance (CS&IA) team is key to being successful in this role along with strategic thinking and a solid technology background." Please note this is a hybrid role, with the expectation of working at our office in Bradley Stoke (BS32 4QQ) or another NRS site a minimum of two days per week. Key Deliverables The purpose of the role is to ensure our NRS IT programmes and projects deliver secure by design solutions. The main responsibilities include: - Provide advice and guidance to all project and programme stakeholders on cyber security aspects relevant to the respective initiatives: Work closely with Solution Architects in projects and programmes so ensure their designs cover all aspects of cyber security. Guide completion of Authority to Operate and Risk Balance Cases. Liaise with vendors and partners to ensure security requirements are understood. Liaise with the Solution Architect and our CS&IA team to scope IT Health Checks and provide guidance on remediation of any findings. Undertake risk assessments for new approaches or innovative solutions such as AI. Provide advice and guidance to CS&IA on selection and implementation of the most suitable solutions across the NIST functions Identify, Protect, Detect, Respond, Recover. Develop NRS security principles and standards to guide design and implementation of IT solutions. Work within the wider NDA group to develop the cyber security strategy and standards across the operating companies. Qualifications & Experience Essential: - Degree or Higher level Degree in relevant subject. Hold CISSP, CISM or equivalent. Member of relevant professional institute. ISO27001 Lead Auditor or CISA Certified. Relevant experience at senior level in related specialism role. Range of cyber experience across HMG and OGDs. Detailed knowledge of Legislation and Regulations relevant to the role including but not limited to; NIST / ISO Standards, CESG/NCSC technical requirements and NDA/ONR security requirements. Post holders will be required to demonstrate excellent leadership and business skills alongside robust and comprehensive technical knowledge/expertise. Desirable: - Excellent communicator across all levels of the organisation including negotiation skills, interpersonal fluency and ability to explain and communicate complex technical issues in a way that non-specialists can understand. Experience working in any of the following industries: energy, utilities, construction, civil engineering. Hands-on experience with Microsoft Azure and M365 security solutions and infrastructure. Ideally Microsoft Certified: Cybersecurity Architect Expert. Broad experience with IT solutions in data, infrastructure, end user compute, analytics, etc., ideally supported by industry certifications. Experience in cyber security regarding Internet of Things and Operational Technology solutions. Solid understanding of how Machine Learning and AI solutions work and how their cyber security is governed. #INDOR Benefits Package Nuclear Restoration Services Limited (NRS) staff should refer to the document titled “Spot Point v Grade alignment” available on SharePoint for more information on how the grade structure aligns to Spot Points. Flexible working – where possible. The equivalent of 25 days (185 hours per year) annual leave plus Public Holidays (59.2 hours per year). This increases by 2 days (14.8 hours per year) annual leave after two full calendar years of service (as at 5th January in the leave year) , and an additional 3 days (22.2 hours per year) annual leave after five full calendar years of service (as at 5th January in the leave year). You also have the option to buy or sell the equivalent of 5 days (37 hours) annual leave each year (available in specific windows for the following holiday year). For the purpose of assessing an employee’s annual leave entitlement, a day means seven and two fifths (7.4) hours. A pro rata entitlement will apply for part time workers. Flexible benefits scheme – including cycle to work and reduced gym membership fees. Participation in Company Bonus Scheme (up to £5,750 per annum based on corporate objectives). Employee Assistance Programme including 24-hour telephone support & personal assistance service and access to an online wellbeing App. Up to 13.5% employer pension contribution depending on individual contribution amount. Enhanced maternity and paternity pay (dependent on service). Access to training and development through the company performance management arrangements, supporting you in maintaining your personal Continuous Professional Development. We have various different employee networks supporting our inclusion, diversity and wellbeing mission at NRS. Additional Information Please be aware this role holder requires security clearance, or the ability to obtain said clearance. There is a requirement to live within a commutable distance to the sites where the role is based. For central/multi-site roles, we have...