We have a new requirement for a Platform Security Engineer to work for a client of ours. This role has been deemed as Outside IR35. - We are looking for an SC Cleared Platform Security Engineer to help stand up a new AWS platform and developer portal where security is Embedded by default through reusable GitLab pipelines, policy-as-code guardrails and automated evidence/continuous compliance. - The correct candidate will be able to strengthen cloud security operations by improving telemetry a Splunk-backed SOC, by reducing manual security ticketing and lead times via self-service patterns. - Tooling is flexible, but experience with tools such as Wiz CNAPP and modern cloud security scanning/assurance is expected. - Candidate must be comfortable producing compliance evidence outputs (dashboards/scorecards, audit-ready artefacts, policy evaluation outputs) automatically.- Candidate must know how to:. instrument AWS logging (CloudTrail/Config/VPC flow logs/etc.),. integrate into Splunk (forwarders, HEC, data models),. align to SOC operational needs (alert quality, use cases, tuning).- Candidate needs strong AWS IAM, policy guardrails (SCPs), and policy engines or guardrail frameworks.- Candidate should be comfortable doing both:. delivery (hands-on),. and pragmatic operating model definition (lightweight RACI, ways of working)- Candidate should be able to streamline onboarding via:. standard docs/runbooks,. automated access workflows,. pre-approved patterns,. paved roads/"golden