Our client is seeking a skilled Cloud Security Architect with deep expertise in Microsoft Azure security to drive modernization and cybersecurity initiatives for both internal and public-facing cloud applications. This hands-on role is ideal for a security-focused professional with a strong background in cloud-native security, compliance, automation, and DevSecOps practices.

You will work closely with cross-functional teams—including developers, engineers, and leadership—to secure Azure infrastructure and services, embed security best practices across the SDLC, and ensure compliance with relevant standards and frameworks.

Key Responsibilities:

• Architect and implement robust security controls across Azure environments using tools like Azure Defender, Microsoft Sentinel, and Azure Policy.
• Configure and manage Azure Active Directory (AAD), Multi-Factor Authentication (MFA), Conditional Access, and Privileged Identity Management (PIM).
• Define and manage Role-Based Access Control (RBAC) across resources and subscriptions.
• Ensure alignment with regulatory compliance standards such as NIST, ISO 27001, GDPR, and other frameworks.
• Secure networking infrastructure, including Network Security Groups (NSGs), Application Security Groups (ASGs), VPNs, and ExpressRoute for hybrid connectivity.
• Automate security controls and infrastructure deployment using PowerShell, Bicep, ARM templates, or Terraform.
• Integrate security checks and scans into CI/CD pipelines using GitHub Actions and Azure DevOps.
• Conduct and document security risk assessments, produce mitigation plans, and generate technical documentation for audit and compliance.

Primary Skills:

• Azure Cloud Security: Azure Defender, Microsoft Sentinel, Azure Policy, Key Vault, Azure Security Centre
• Identity & Access Management: Azure AD, RBAC, PIM, Conditional Access, MFA
• Networking & Connectivity: NSG, ASG, VPN, ExpressRoute
• Automation & IaC: PowerShell, Bicep, ARM Templates, Terraform
• DevSecOps Integration: GitHub Actions, Azure DevOps
• Compliance & Risk Management: NIST, ISO 27001, GDPR, SIEM/SOAR, vulnerability management, risk mitigation

Minimum Qualifications:

• 5+ years of experience in IT security, with at least 3 years focused on securing Azure cloud environments
• Bachelor’s degree in Computer Science, Cybersecurity, or equivalent experience
• Hands-on experience with cloud security architecture, scripting, and automation
• In-depth understanding of modern DevSecOps and CI/CD security practices
• Strong written and verbal communication skills

Preferred Certifications (Highly Desired):

• Microsoft Certified: Cybersecurity Architect Expert
• Microsoft Certified: Azure Security Engineer Associate (SC-300)
• CISSP, CISM, or CompTIA Security+