Position Summary: Are you passionate about securing cloud environments and driving innovation? We’re seeking an experienced Azure Cloud Security Engineer to join our dynamic team. As a key player, you’ll blend hands-on expertise with architectural insights to safeguard our Azure infrastructure. Here’s what awaits you:
- Design Cutting-Edge Security Solutions: Lead architecture reviews, shaping critical decisions. Dive into IAM (Entra ID/Azure Active Directory), posture management, workload protection, SIEM/SOAR, and application testing. Your expertise will fortify our defenses against emerging threats.
- Collaborate and Elevate: Be the bridge between security and agility. Collaborate with agile teams, ensuring security requirements are seamlessly woven into development cycles. Your impact will resonate across our hybrid cloud deployments, including FedRAMP High solutions.
- Must Have experience: Ideally you will have secured an Azure DevOps instance and have implemented personally many if not all aspects of security for your applications and infrastructure. We are running a FedRamp environment and zero trust architecture knowledge is required. You know Azure Defender, Azure Sentinel, Azure Application Gateway.
Job Responsibilities - Design Azure Cloud Security Solutions:
- Lead architecture reviews for decision records.
- Cover IAM (Entra ID/Azure Active Directory), posture management, workload protection, SIEM/SOAR, and application testing.
- Architectural Runway and Collaboration:
- Create infosec requirements for infrastructure and app development.
- Collaborate with agile teams to meet security needs.
- Continuous Monitoring and Compliance:
- Monitor cybersecurity policies, compliance artifacts, and systems authorization.
- Map security controls to compliance requirements.
- Zero-Trust Implementation:
- Integrate Azure Zero-Trust Architecture into cloud solution design.
- Risk Mitigation and Vulnerability Remediation:
- Coordinate risk reduction efforts for applications and infrastructure.
- Hybrid Cloud Deployment:
- Deploy FedRAMP High hybrid cloud solutions, integrating on-premises components.
- Threat Assessment and Incident Response:
- Assess vulnerabilities and provide incident support. Required Experience and Skills:
- Azure Expertise:
- Microsoft Azure Cloud experience (GovCloud preferred).
- Familiarity with Azure security tools/platforms (e.g., Azure AD, Sentinel, Defender, Monitor, Key Vault).
- Education and Experience:
- Bachelor’s degree in a technology field (Master’s degree preferred).
- 5+ years of cyber-related experience in a commercial environment with Azure, focusing on technical information security and risk management.
- Security Proficiency:
- Identity Access and Management concepts (including multifactor authentication and SSO/Federation).
- Privileged Access Management. o Vulnerability testing for Azure systems.
- Understanding of CI/CD pipelines and software scanning.
- Cloud Security Domains:
- Demonstrated expertise in Information Security and Risk Management across Windows and Linux.
- Familiarity with key domains: o
- Identity, Credential, and Access Management (ICAM).
- Authentication and Authorization (including SSO and Identity Federation).
- Zero-Trust Model. o Defense-In-Depth.
- Governance and Compliance.
- Data Security.
- Operating System Security.
- Network Layer Protection.
- Continuous Diagnostics and Mitigation, Alerting, Audit Trail, and Incident Response.
- Cloud Core Platform (Compute, Storage, Networking).Nice to Have
Nice To Have
- INFOSEC Certifications: CISSP, CCSP, CISM.
- Azure/AWS/Google Training and Certification.
- Microsoft Certifications/Exams (recommended): Sc-100 Cybersecurity Architect, Sc-300 Identity and Access Administration, AZ-500 Azure Security Engineer.
- Crowdstrike Falcon EDR for Azure.
- Managing/maintaining FISM.