Azure Cybersecurity Engineer

About The Position

Requirements

• Bachelor's degree and five years of experience in systems engineering or administration or an equivalent combination of education and work experience.
• In-depth knowledge in applied enterprise information security technologies including but not limited to firewalls, intrusion detection/prevention systems, network operating systems, identity management, database activity monitoring, encryption, content filtering, and Mainframe security.
• Previous experience in planning and managing IT projects.

Nice To Haves

• 5-7 years of professional experience in security engineering, with at least 3 years focused on Azure cloud environments.
• Strong knowledge of Azure cloud services, architecture, and best practices for securing cloud-native workloads.
• Expertise in security frameworks (NIST, CIS, ISO 27001) and regulatory compliance requirements.
• Hands-on experience with Azure Security Center, Azure Sentinel, Azure Active Directory, and other native security tools.
• Proficiency in scripting languages (PowerShell, Python, Bash) and infrastructure-as-code tools (ARM, Bicep, Terraform).
• Solid understanding of networking principles, firewalls, VPNs, and hybrid connectivity in Azure.
• Demonstrated ability to manage security operations, incident response, and vulnerability management in cloud environments.
• Relevant certifications (e.g., Microsoft Certified: Azure Security Engineer Associate, CISSP, CISM, CCSP) are highly desirable.

Responsibilities

• Develop and implement robust security architectures for Azure-based systems, including designing secure network boundaries, identity solutions, and multi-layered defense mechanisms.
• Collaborate with cross-functional teams to integrate security requirements into software development lifecycles and cloud migrations.
• Evaluate and recommend security tools and frameworks tailored to business needs and regulatory requirements.
• Monitor Azure environments for suspicious activity using native tools (Azure Security Center, Sentinel, Log Analytics) and third-party solutions.
• Lead rapid response to security incidents, managing investigation, containment, eradication, and recovery efforts.
• Conduct root cause analysis and develop strategies to prevent recurrence of security incidents.
• Administer Azure Active Directory, implementing least-privilege principles, conditional access policies, and multi-factor authentication.
• Oversee provisioning, review, and de-provisioning of user accounts, service principals, and managed identities.
• Establish and maintain RBAC (Role-Based Access Control) models across Azure resources.
• Design and implement data encryption strategies for data at rest and in transit, using Azure Key Vault and managed HSM.
• Monitor compliance with regulations such as GDPR, HIPAA, and PCI-DSS, mapping Azure services to frameworks and reporting on gaps.
• Conduct regular security assessments, vulnerability scans, and penetration testing of cloud assets.
• Automate security processes with Azure PowerShell, Azure CLI, and ARM/Bicep templates.
• Configure, tune, and manage security monitoring and alerting systems.
• Produce dashboards and reports on security posture, risk assessments, and action plans for senior stakeholders.
• Educate internal teams on cloud security best practices, offering training and guidance on new threats and technologies.
• Act as a key liaison between IT, development, and compliance departments to ensure security is embedded in all Azure initiatives.
• Participate in internal and external audits, preparing documentation and evidence for review.

Benefits

• Medical, dental, vision, life insurance, disability, accidental death and dismemberment.
• Tax-preferred savings accounts and a 401k plan.
• No less than 10 days of vacation during the first year of employment, along with 10 sick days and paid holidays.