Cloud Engineer - 3rd Line Azure

One of the most exciting prospects in the UK cyber security sector today, Bridewell is a leading cyber security services company specialising in protecting and transforming critical business functions for some of the world’s most trusted organisations. We are the trusted partner for operators of essential services and provide end-to-end cyber security capabilities that help our clients overcome their security challenges, allowing them to operate safely and securely. 

Bridewell holds the Gold level, Investors in People award which we feel solidifies and reflects on the outstanding calibre that makes us truly one team.   

What you’ll be doing 

The Cloud Engineer is a senior technical role responsible for supporting, maintaining, and evolving Bridewell’s Microsoft Azure environment and wider cloud‑based services. Acting as a 3rd Line escalation point, you will lead on complex troubleshooting, automation, infrastructure-as-code implementation, and secure cloud operations. You will contribute to strengthening Bridewell’s modern infrastructure platforms through innovation, automation, resilience and scalable design.

This role includes participation in an on‑call rota to support business‑critical systems and ensure continuity of service.

These are some of the key areas where your role will deliver impact and where most of your role-specific goals and objectives will be based.

·         Azure Infrastructure Management

• Operate as the senior technical SME for Azure infrastructure, identity, networking, monitoring and governance.
• Implement improvements using Infrastructure as Code (Terraform or Bicep).
• Maintain secure configurations in line with best practice (CIS, Microsoft CAF, Zero Trust).
• Azure Secure Score achieved ≥ 90%
• 95–99.9% uptime across business‑critical services, excluding planned maintenance.

·         3rd Line Escalation, Troubleshooting & Mentoring

• Resolve complex incidents across Azure, M365, Intune, identity, networking and related on prem hybrid systems.
• Act as final escalation point for infrastructure issues.
• Mentor and upskill team.

·         Automation & DevOps Enablement

• Build CI/CD pipelines (GitHub Actions or Azure DevOps).
• Use automation to reduce manual tasks across the IT landscape.
• Collaborate with Cyber and Engineering teams on secure cloud deployments.

·         AI & Intelligent Automation (Desirable)

• Support the evaluation and adoption of AI driven capabilities across Azure and M365, including Defender AI features, Copilot integrations and automation opportunities.

·         On Call Responsibility

• Participate in the IT on call rota to ensure 24/7 availability of key business systems.
• On‑call response time within agreed RTO targets 100% of the time.
• All on‑call incidents documented with follow‑up actions within 24 hours.

What are we looking for?

Essential

• Proven experience as a 3rd Line IT/Cloud Engineer supporting Azure production environments.
• Strong hands-on experience with:
• Azure IaaS & PaaS services
• ARM/Bicep/Terraform IaC
• Azure networking (VNets, Firewalls, Private Endpoints, VPN/ExpressRoute)
• Azure AD/Entra ID, Conditional Access, Identity Governance
• Azure Monitor, Log Analytics, Sentinel (beneficial)
• Azure Storage, Key Vault, App Services, Function Apps
• Strong PowerShell scripting capabilities.
• Experience supporting modern workplace environments with Intune, Autopilot and Microsoft 365.
• Strong understanding of Zero Trust, security posture management and cloud governance.
• Ability to work autonomously and handle complex workloads.
• Data literacy – Interpreting and communicating system, performance and telemetry data to derive insights, support decision making, and demonstrate ITs contribution to the business.
• Digital agility – Leveraging Azure, automation tooling, and AI-enabled capabilities to modernise infrastructure, streamline processes, and enhance organisational efficiency. This includes using PowerShell, Terraform/Bicep, GitHub Actions/ADO pipelines, Defender for Cloud, and Power Automate to maximise impact.

Desirable Certifications

• AZ‑104 – Azure Administrator Associate
• AZ‑305 – Designing Microsoft Azure Infrastructure Solutions
• AZ‑400 – DevOps Engineer Expert
• AZ‑500 – Azure Security Engineer Associate
• Experience with:
• GitHub or Azure DevOps repos and pipelines
• AI/ML tooling or Copilot integrations

What’s in it for you?  

Our vision is to create a safe, inclusive digital world where people and organisations can thrive. Our values of Do the Right Thing, One Team and Above and Beyond emphasises the importance of the part we play in society, and our commitment to our people and clients.  Our story to-date has been phenomenal, but success doesn’t end here and as we continue to grow and scale, we want to keep the same culture, passion and commitment to high quality that has enabled us to get this far. Bridewell will provide a great career opportunity with continual development as well as the following:   

• 25 Days Holiday - Plus buy and sell options    

• Flexible Working (around core office hours)    

• Employee Benefit Trust 

• Company Pension      
• Personal Day & Birthday Off - After 1 year of service    

• Family Leave – After 1 year of service   

• Enhanced Maternity based on length of service    

• Dedicated Training Budget    

• Life Assurance    

• Electric Vehicle Scheme & Cycle to Work Scheme   

• Private Healthcare (incl. Gym discounts and vison care)  

Location: Bridewell operates a hybrid and flexible working policy, however you will be required to travel to different sites on occasion.   

Note: To be eligible for this job you must either hold SC or be eligible and willing to go through security clearance.   

Bridewell values diversity in the workplace and is a fair and equal opportunity employer. We are committed to creating an equal and inclusive working environment, with the aim that our employees will be truly representative of all sections of society and each person feels respected and able to give their best.