Key Responsibilities:

• Design and Implement Cloud Network Solutions:
• Deploy and manage Azure Load Balancer, Azure Traffic Manager, and Azure VPN Gateway to ensure high availability, traffic distribution, and secure connectivity for applications hosted in Azure.
• Configure and maintain Azure Application Gateway, including WAF (Web Application Firewall) features, to secure and optimize application delivery.
• Design and deploy Azure Landing Zones to establish a secure, scalable, and compliant cloud environment for workloads on Azure.
• Implement Azure DDoS Protection to safeguard applications from potential distributed denial-of-service attacks.

Cloud Security Management:

• Configure and manage Azure Firewall for comprehensive network security, enforcing access policies and protecting resources from unauthorized traffic.
• Monitor security and network health through Azure Security Center and integrate it with security incident management systems to proactively identify and address vulnerabilities.
• Deploy Azure Sentinel to centralize security monitoring and incident response across the Azure infrastructure.
• Conduct regular assessments of security risks and ensure compliance with industry standards and regulatory requirements (e.g., GDPR, PCI-DSS, HIPAA).

Cloud Monitoring & Performance Optimization:

• Use Azure Monitor to collect, analyze, and act on telemetry data from Azure resources, ensuring optimal performance and availability of network and security systems.
• Implement and manage Azure Network Watcher to monitor and troubleshoot network performance issues and to perform diagnostic tasks such as packet capture and VPN diagnostics.

Incident Response & Troubleshooting:

• Respond to and resolve network and security incidents within the Azure environment, ensuring minimal downtime and impact to business-critical applications.
• Create and maintain incident response playbooks and disaster recovery plans to manage security incidents effectively.

Automation and Scripting:

• Automate network and security operations using Azure PowerShell, Azure CLI, and ARM Templates for configuration management and resource deployment.
• Develop and implement security automation scripts to enhance incident detection, response times, and compliance reporting.

Collaboration & Documentation:

• Work closely with cross-functional teams including DevOps, security, and application development teams to implement network and security best practices in Azure.
• Document network and security architectures, configurations, and operational procedures to ensure clear understanding and compliance.

Required Skills and Experience:

Technical Skills:

• Hands-on experience with Azure Network Services such as Azure Application Gateway, Azure Load Balancer, Azure VPN Gateway, and Azure Traffic Manager.
• Expertise in Azure Firewall and Azure DDoS Protection for securing cloud resources and preventing malicious traffic.
• Deep understanding of Azure Security Center, Azure Sentinel, and other security monitoring tools for identifying threats and ensuring a secure Azure environment.
• Strong experience with cloud networking concepts such as Virtual Networks (VNet), Subnets, Network Security Groups (NSG), and Azure Bastion.
• Experience with Azure Landing Zones and implementing governance, compliance, and security best practices in a multi-cloud or hybrid environment.

Security & Compliance:

• Expertise in implementing security frameworks and best practices to ensure secure communication, data protection, and privacy across the cloud infrastructure.
• Knowledge of regulatory and compliance standards (e.g., GDPR, SOC 2, HIPAA) and how to implement them in an Azure environment.

Tools & Automation:

• Proficiency in Azure PowerShell, Azure CLI, and ARM Templates for automation and infrastructure-as-code deployment.
• Experience with Terraform or Azure DevOps to automate cloud infrastructure deployment and configuration management.

Experience:

• 3+ years of hands-on experience with Azure network services, security solutions, and monitoring tools.
• Proven experience in configuring and maintaining cloud firewalls, DDoS protection, and network load balancing solutions.
• Strong experience with Azure Security Center and Azure Sentinel for security posture management and incident detection.

Certifications:

• Microsoft Certified: Azure Network Engineer Associate or Azure Security Engineer Associate.
• Additional certifications in cloud security, networking, or governance (e.g., Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP)) are a plus.

Preferred Qualifications:

• Experience with hybrid or multi-cloud network architectures and tools like Azure Arc.
• Familiarity with container-based networking (e.g., Azure Kubernetes Service - AKS).
• Knowledge of application security best practices, including secure APIs and microservices architecture.

Personal Attributes:

• Strong analytical and problem-solving skills with the ability to think critically in high-pressure situations.
• Excellent communication and interpersonal skills, with the ability to collaborate effectively with both technical and non-technical stakeholders.

A proactive mindset, with a focus on continuous improvement and staying updated with the latest cloud security trends and best practices.