Principal Cloud Engineer

London, United Kingdom

Space NK

Shop Space NK’s edit of luxury makeup, haircare, skincare and fragrance from bestselling brands including Charlotte Tilbury, Drunk Elephant, Diptyque and more. Space NK

View all jobs at Space NK

Apply now Apply later

If you love beauty, you’re in the right place.

As the ultimate curator of over 100 of the most in-demand, highly innovative and boundary-pushing beauty brands, we are the go-to destination for worldwide beauty discovery.

Together through our neighbourhood stores, online presence and loyalty scheme, Space NK has built a flourishing community in which to discover beauty. The customer is at the heart of everything we do, and we will always endeavour to offer everything they need to help them explore, experiment, and enjoy our brands.

We are currently recruiting for a Principal Cloud Engineer!

Role Overview

The Principal Cloud Engineer will drive the design, optimisation, and governance of
our Azure cloud environment. This role involves architecting scalable, cost-effective
cloud solutions that integrate seamlessly with our existing infrastructure while
ensuring security and compliance standards. Working closely with the engineering,
DevOps, and infrastructure teams, this role will establish a well-governed, secure, and
efficient cloud environment that supports business growth and resilience. This leader
will also play a key role in guiding cloud security practices, ensuring a balanced focus
on both performance and protection.

Key Responsibilities:

Azure Architecture and Optimisation
· Design and Optimise Cloud Infrastructure: Develop scalable, resilient, and high-performing Azure solutions, balancing cost efficiency with performance needs.
· Cost Management and Resource Optimisation: Implement policies and tools for efficient resource utilisation, monitor usage, and optimise costs across Azure services.
· Cloud Automation and DevOps Integration: Collaborate with DevOps to embed
automation in cloud deployments, leveraging CI/CD best practices to streamline processes and improve reliability.
· Hybrid Integration: Architect solutions that integrate on-premises infrastructure with cloud systems, enabling a seamless hybrid environment where necessary.


Cloud Security and Compliance
· Security Integration: Implement and manage Azure security best practices, working with security-focused tools (e.g., Azure Security Center, Sentinel, Key Vault) to safeguard cloud resources.
· Risk Management: Lead cloud risk assessments, vulnerability scans, and threat identification efforts, collaborating with the security team to address and mitigate cloud-specific threats.
· Policy Governance: Develop and enforce cloud governance policies, including access management, resource tagging, and compliance with relevant regulations and standards (e.g., GDPR, PCI-DSS).


Cross-functional Collaboration and Mentorship
· Collaborate with Existing Engineering Teams: Partner with the engineering principal, DevOps, and infrastructure leads to create a cohesive cloud environment that aligns with
application needs and infrastructure requirements.
· Mentorship and Training: Provide guidance to DevOps and engineering teams on cloud best practices, focusing on areas like cost efficiency, secure coding, and operational reliability in the cloud.
· Knowledge Sharing and Process Development: Facilitate knowledge sharing sessions and workshops on cloud optimisation and security, driving a culture of continuous improvement across teams.

Continuous Improvement and Emerging Technology
· Monitoring and Incident Management: Implement and oversee cloud monitoring practices, ensuring fast response to anomalies and incidents while continuously improving incident management capabilities.
· Cloud Trend Analysis: Stay updated on emerging cloud technologies and security threats, making recommendations to enhance cloud infrastructure, security posture, and operational efficiency.
· Performance Audits and System Reviews: Conduct regular reviews and audits of the cloud environment to ensure it meets the evolving needs of the business while maintaining high performance and security standards.

Qualifications, Knowledge, and Experience:

· Education: Bachelor’s degree in Computer Science, Information Technology, or a related field (or equivalent experience).
· Experience: 7+ years in cloud engineering or architecture roles, with at least 3 years specifically on Azure and experience in cloud security best practices.

Technical Skills:

o Expertise in Azure services and architecture (e.g., Azure Resource Manager,
Virtual Networks, Azure AD, AKS, AEH).
o Strong understanding of cloud cost management and optimization tools (e.g.,
Azure Cost Management).
o Proficient with Azure security services, including Azure Sentinel, Key Vault, and
Azure Security Center.
o Knowledge of DevOps tooling and practices (e.g., CI/CD pipelines,
Infrastructure as Code with ARM templates or Terraform).

Certifications: Relevant certifications (e.g., Microsoft Certified: Azure Solutions
Architect Expert, Azure Security Engineer Associate) highly preferred.

Soft Skills: Excellent communication skills, with the ability to explain complex
technical topics clearly to both technical and non-technical audiences

Please note that only successful candidates will be contacted.

All applicants must have the right to live and work in the UK.

If you want to find out more about us, what it is like to work for us, all about our benefits, and our pledges on Diversity, Inclusion and Belonging, please visit our website.

Space NK are an equal opportunities employer.

How We Will Use Your Information

We will use the information you provide to us with your job application to help us process your application for the specific job you have applied for. If you apply speculatively, we will process your application for the job/relevant business area that you detail within your email.

Please note that our current system does not use an automated filtering system.

All applications made via the website, through a third-party website or in-store will be kept on file for a period of 12 months.

This information will be retained and used to assess your suitability to similar positions that may arise in the future, or if the initial vacancy becomes live again during the 12-month period. If you would prefer us to not hold your information on file/ you wish to be ‘forgotten’ if you are not offered a position with Space NK, please email your ‘right to be forgotten’ to our recruitment email address with RIGHT TO BE FORGOTTEN as the title of the email. We will always inform you when we have deleted your application details, otherwise we will treat your application as consent to us holding this information.

Apply now Apply later

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  1  0  0

Tags: Audits Automation Azure CI/CD Cloud Compliance Computer Science DevOps GDPR Governance Monitoring Risk assessment Risk management Sentinel Terraform Vulnerability scans

Region: Europe
Country: United Kingdom

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.