Senior Cloud Security Engineer

About us  At Davy, it’s the unique talents of all our people that have been the foundations of our success for 100 years. As we continue to grow, so do you. Because you are not just part of our team – you are a key player in shaping our future.   At Davy, you are the difference.    Established in 1926, the Davy Group sits at the heart of wealth and capital in Ireland, providing a broad range of services to high-net-worth individuals, self-directed investors, small-to-medium enterprises, credit unions, corporations, and domestic & international institutional investors.   Our culture is shaped around three values, which are at the heart of everything we do: client success, one Davy, and building a proud legacy. Sharing the same goals, we work together to deliver exceptional outcomes for our clients. As part of a team of over 900, you will be encouraged to learn and to grow, both professionally and personally.   About the role  The Senior Cloud Security Engineer will lead security assurance across cloud platforms and modern development practices, with a strong focus on Microsoft Azure/365. This role combines hands-on cloud security engineering, DevSecOps expertise, solution architecture review, and security governance. The analyst will work closely with Service Delivery, Architecture, and Development teams to embed robust security controls across the SDLC, proactively identify risks, and support the secure operation of enterprise systems. Acting as a key escalation point within the Security function, the role also contributes to incident response, threat modelling, and continuous improvement of security capabilities. Key Responsibilities Cloud Security & Architecture • Partner with Service Delivery to secure cloud environments, including Azure, Microsoft Entra, Microsoft 365 and Salesforce. • Provide expert guidance and assurance across cloud architecture, SaaS integrations, design submissions, and technical change processes. • Evaluate emerging technologies and recommend future-state secure solutions. • Assess internally developed application designs from a security perspective.

Operational Security • Provide operational support for the Microsoft Defender suite (Endpoint, Identity, O365, Cloud). • Investigate and triage outputs from SIEM, vulnerability scanners, and other security tools. • Support incident response processes by contributing technical analysis and remediation guidance.

Security Engineering & DevSecOps • Support secure delivery across IaaS, PaaS, Containers, and Infrastructure-as-Code environments. • Ensure secure integration of APIs, cloud-native services, and CI/CD tooling. • Support container platform security, particularly within Red Hat OpenShift/Azure Red Hat OpenShift environments.

Identity & Access Management • Design and maintain IAM capabilities including provisioning, RBAC, ABAC, SCIM, PAM, and LDAP-based integrations. • Provide expert guidance on modern authentication and authorisation frameworks (OAuth 2, OIDC, SAML). • Support the management of certificates, token-based authentication, and federated identity platforms.

Governance, Assurance & Compliance • Ensure alignment with industry frameworks such as NIST, ISO 27001, and CIS benchmarks. • Monitor, measure, and report on the effectiveness of security controls. • Support internal and third-party audits and assurance programmes.