Salary: Career graded 9 – 10, £48,639 – £59,997 (including market forces supplement)
Location: Fully remote
Hours/Contract: 37 hours per week, permanent
The role
This could be the perfect time for you to join us in our Digital Policing Department as a Cloud Engineer.
In addition to engineering new cloud services & environments to architectural standards and enhancing existing capabilities, the Cloud Engineer will influence, verify, and inform the designs intended to deliver the next generation of digital services for Northumbria Police.
You will be adept at engineering secure-by-design cloud solutions and skilled in SecOps (Security Operations) processes and procedures. You will ensure that all operational teams adhere to processes which maintain secure cloud operations at-all-times through influencing and convincing teams and business capabilities of the benefits of security best practices.
What you’ll do
- Building and implementing cloud systems and services that consistently meet or exceed expectations.
- Developing the automation necessary for on demand resource provisioning and user self-service.
- Implementing industry best practices across all cloud services and solutions.
- Managing the migration of legacy systems from on-premises to cloud.
- Delivering the secure migration of data from on-premises systems to services.
What you’ll bring
- Proven enterprise level experience of making detailed technical assessments of existing on-premises servers, applications & services including, but not limited to; – TCP/IP networking, routing & firewalling, defensive security posture, storage IOPS, vCPU & memory right-sizing, database interoperability, RTO & RPO, etc. to ensure that cost modelling for cloud migrations are fully predicted and based on detailed technical analysis.
- Proven experience in migrating legacy on premise solutions to Azure and engineering cloud infrastructure, avoiding ‘lift and shift’ entirely.
- Proven experience deploying and using Azure Migrate: Discovery and Assessment, and Migration and Modernisation within an enterprise.
- Demonstrable experience delivering secure & resilient connectivity via ExpressRoute, S2S VPN Gateways, and P2S VPNs.
- Proven experience building solutions and services using Microsoft Azure Resources (Subscriptions/Resource Groups/App Registrations/PaaS/API Permissions/Application Hosting & Delivery/Environments/Azure Site Recovery/Storage/Backup/Log Analytics/Azure Monitor/Azure Sentinel/Identity/Azure CLI/Load Balancers/Key Vault/OAuth).
- Experience engineering event driven solutions and integrations with Azure Event Grid (Topics, Subscribers, Namespaces, Relays, Hybrid Connections, etc.). In addition, you will be able to demonstrate technical experience in controlling costs from all operation metered Azure technologies.
- Proven SecOps (Security Operations) experience and skilled in penetration testing methodologies ensuring that all cloud solutions continually meet high standards of security & compliance.
- In-depth knowledge and experience using Azure ARC, AMA (Azure Monitoring Agent), Defender, and traditional on-premises anti-virus (malware) solutions.
- Deeply skilled in threat hunting across cloud, all traditional IT domains, and highly knowledgeable with current TTPs (Tactics, Techniques and Procedures) used by threat actors.
- Demonstrable experience and building fully monitored and highly resilient secure-by-design solutions.
- Experience engineering identity security solutions and integrations with SailPoint IDN.
- Proven expertise in using Infrastructure as code (IaC) such as Terraform.
- Proficient in one or more scripting languages including PowerShell.
- As a minimum you will hold Microsoft certifications: Azure Administrator, Azure Security Technologies (AZ-900 / AZ-500).
- Demonstrable experience engineering bespoke solutions through collaboration with technical teams across all traditional IT domains (Networks, Servers, EUD, Defensive Cyber Security, Information Security & Governance, Software Development, Scripting, Storage) and subject matter experts across the organisation.
- Ability to cut through technical and organisational complexity to gain a full understanding of complex technologies and business processes.
- Proven experience of delivering the exceptional while building and managing relationships diplomatically.
- We know it’s important for you to feel that you’re not only part of a great team, but part of a community. We welcome applications from suitably qualified people from all sections of the community, regardless of age, disability, gender reassignment, marriage and civil partnership, pregnancy and maternity, race, religion or belief, sex, and sexual orientation.
- Harnessing these differences creates a productive environment in which everyone feels valued, and their talents are fully utilised. Appointments are based on merit alone.
Just so you know
If your application is successful, we’ll ask you to complete a Management Vetting (MV) form, therefore you must be a resident of the UK for a minimum period of 5 years to ensure vetting checks can be successfully performed. A job offer will be dependent upon vetting clearance, medical information, and references.
Terms of appointment
This is a permanent role subject to a six-month probationary period.
We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible.
PREVIOUS APPLICANTS NEED NOT APPLY.
Proud member of the Disability Confident employer scheme
Disability Confident
About Disability Confident
A Disability Confident employer will generally offer an interview to any applicant that declares they have a disability and meets the minimum criteria for the job as defined by the employer. It is important to note that in certain recruitment situations such as high-volume, seasonal and high-peak times, the employer may wish to limit the overall numbers of interviews offered to both disabled people and non-disabled people. For more details please go to Disability Confident .