Principal Azure Security Architect

About The Position

Requirements

• 5+ years of cybersecurity work experience
• Strong background in cloud security architecture, with emphasis on Microsoft Azure.
• Experience working with enterprise engineering teams in agile and DevSecOps environments.
• Deep experience with Microsoft Azure security architecture (IAM, networking dependencies, PaaS security, RBAC, Conditional Access).
• Experience implementing security controls across hybrid and multi-cloud environments.
• Microsoft Purview (data governance, data classification, DLP, insider risk concepts).
• Power Platform security model: Environment strategy, tenant isolation, connector governance, Data loss prevention (DLP) policies
• Copilot Studio / AI platform security considerations: Secure plugin/integration design, Prompt and data protection considerations, Identity-aware access control patterns
• Strong understanding of authentication, authorization (OAuth2/OIDC), and token-based access models.
• Secure API and integration patterns, including RESTful services and event-driven architectures.
• Knowledge of OWASP Top 10, SAMM, and application security testing approaches (SAST, DAST, SCA).
• Experience integrating security into CI/CD pipelines and cloud-native development workflows.
• Familiarity with infrastructure-as-code security and policy-as-code enforcement.
• Experience creating reusable security patterns and reference architectures.
• Ability to define enforceable standards that align with governance bodies (e.g., Architecture Review Boards).
• Strong ability to translate risk into actionable engineering guidance.
• Strong analytical and problem-solving skills.
• Ability to communicate complex technical concepts to both technical and non-technical stakeholders.
• Excellent written, presentation, and collaboration skills.

Nice To Haves

• Bachelor’s degree preferred (or equivalent experience).

Responsibilities

• Embed security architecture into Azure-native and hybrid cloud solutions from design through deployment.
• Define and publish reusable security patterns across Microsoft ecosystems (Azure, Power Platform, Copilot Studio).
• Partner with platform and engineering teams to ensure secure adoption of AI, low-code, and data governance capabilities.
• Mentor engineering teams on security architecture, secure coding, and cloud-native control implementations.
• Drive consistency through governed, scalable security patterns that reduce the need for per-integration reviews.

Benefits

• Competitive compensation, including base pay and annual incentive
• Comprehensive health and life insurance and well-being benefits, based on location
• Pension / Retirement benefits
• Paid Time Off and Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being.