Azure Security Engineer - Architect

About the Opportunity: 

Cloud Security Services is currently looking for an experienced Azure Security Consultant for our client. Our client requires an experienced consultant with experience in Azure Security with excellent project management and communications skills to support the continuous enhancements of their security posture on the Azure platform. This is a 6-month remote project that may require some onsite travel. 

Responsibilities: 

• Define program scope and problem statements 
•  Document current state for process and technologies currently being deployed to address security posture on the Azure platform. 
• Develop future state Azure Security framework 
• Document roles and responsibilities 
• Develop roadmap and business case including funding estimates 
• Facilitate obtaining stakeholder consensus 
• Create program charter 
• Validate current controls and IT risk management 
• Create 2-year Azure Security program roadmap 

Required Skills: 

• 3 - 5 years) Azure Cloud Security Analyst/Engineer 
• In depth knowledge of data platforms like Snowflake and Databricks 
• Understanding Azure architecture, resources and cloud and cloud security pattern 
• Defender for Cloud, Defender for Endpoints (Servers, Storage, Containers, Key Vaults) 
• Azure Monitoring, Azure Active Directory, Azure Sentinel 
• Azure Policy, Azure firewall/WAF/Network Security groups 
• Coordinate the security activities associated with our Azure security practice. This position reports directly to our vice CISO and will be responsible for the overall security posture and roadmap for our Azure platform security stack 
• Manage Azure Policy and Blueprints to detect, alert and remediate controls that are non-compliant to required regulatory standards 
• Expert use of runbooks, flows, playbooks and/or logic apps to automatically remediate resources and controls that do not meet security or compliance baselines 
•  Clear Security documentation and diagrams should be standard protocol 
• Build automation and orchestration of Security infrastructure 
• Lead security and quality code scanning and remediation at the code promotion gates 
• Continually improve Azure Sentinel SOC/SIEM service with accurate rules and playbooks 
• Passion for security, automation, performance, and reliability 
• 10+ years of experience in Information Security 
•  3+ years proven Microsoft Azure Cloud security experience 
• 3+ years of experience with Microsoft Cybersecurity tools, including Azure Sentinel, Defender ATP, Cloud App Security, Data Classification, Data Loss Protection, Information Protection, M365 Compliance and M365 Protection 
• Passion for security, automation, performance, and reliability 
• Proficiency in cryptographic protocols and cipher suites 
• IAM custom JSON roles and roles-based access control best practice experience 
• Technical experience in administering a Cloud PKI infrastructure with CA and Certificate issuance 
• Experience with DevOps workflow tools like Jenkins and Gitlab 
• We are seeking an Azure Security Engineer to join our growing Information Security Office to assist with the following: 
• Design and develop security controls within the Azure portfolio. 
• Design, estimation and implementation of Azure security reviews, assessments, and statements of work. 
• Build strategies around logging, threat detection, and incident response. 
• Audit, ensure, and secure data encryption methods internet protocols. 
• Develop and coordinate cloud security architecture using security principles and security best practices. 
•  Assess systems configurations and build solutions to implement security controls using automation and scripting 
• Identify data ingress and egress controls and implement data protection mechanisms. 
• Participate in efforts that tailor security policies and standards for use in cloud environments 
• Provides Info security architecture & systems engineering consulting to other IT and business teams 
• Identify and implement new security technologies and best practices into Cloud offerings 
• Ability to articulate business outcomes from technical controls 
• Ability to interpret and leverage existing documentation 
• Experience working across multiple levels, functions, and stakeholders in a large enterprise setting 
• Working knowledge of the characteristics of Big Data; Structured Data Unstructured Data 
• Collaborative team worker – both in person and virtually using MS Teams or similar 
• Excellent project management and organizational skills with attention to detail 
• Excellent documentation skills; demonstrated proficiency in Microsoft Office including Word, Excel and PowerPoint 
• Ability to work as liaison between business and information security/information technology 
• Flexibility to accommodate working across different time zones 

Preferred Skills: 

•  Cybersecurity certifications such as CISSP, CISM, vendor certifications, etc. 
• 1 - 3 years overall experience in Public Key Infrastructure (PKI), Digital Certificates (user and device based), Secure Shell (SSH), Transport Layer Security (TLS), Hardware Security Modules (HSM), Key Management Lifecycle (Generation, Deployment and Revocation), Information / Digital Rights Management, Transparent Database Encryption (TDE), Storage and Messaging Encryption 
• 1 - 2 years overall experience in IT infrastructure and networking administration 
• 1 - 2 years overall experience in network and platform security 

Required Education: 

• Bachelor's degree or equivalent experience in Computer Science 

Preferred Education: 

•  Cybersecurity certifications such as CISSP, CISM, vendor certifications, etc. 

EEO Statement: 

Cloud Security Services is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, marital status, national origin, genetics, disability, age, or veteran stat