About the Role:

As a Security Engineer, you will be responsible for the technical security of IT environments and applications, focusing on securing the cloud environment in Microsoft Azure and ensuring that OutSystems applications meet the highest security standards. Your role will also involve training and guiding developers and IT administrators to improve security practices.

Main Responsibilities:

This role involves managing and optimizing security measures and implementing security policies. Key responsibilities include:

• Managing and optimizing security measures within Microsoft Azure and OutSystems.
• Implementing and maintaining security policies, such as Zero Trust, Identity, and Network Security.
• Monitoring and analyzing security incidents, actively resolving vulnerabilities.
• Setting up and conducting security audits and penetration tests on applications and infrastructure.
• Advising and training developers and IT administrators in secure coding and best security practices.
• Securing CI/CD pipelines within Azure DevOps, including security testing and vulnerability scanning.
• Managing and implementing compliance and security standards, such as ISO 27001.
• Identifying and resolving security risks in APIs, databases, and cloud services.

Key Requirements:

• Bachelor’s or Master’s degree (or equivalent experience), preferably in an IT or security-related field.
• At least 3-5 years of experience in a technical security role, preferably within a Microsoft Azure environment.
• In-depth knowledge of Microsoft Azure Security Services, such as Azure Security Center, Defender for Cloud, Sentinel, and Azure Key Vault.
• Experience with OutSystems Security, including encryption, secure API integrations, and role-based access control (RBAC), is a plus.
• Familiarity with security frameworks, such as ISO 27001.
• Experience with Identity & Access Management (IAM), Multi-Factor Authentication (MFA), and Privileged Access Management (PAM).
• Knowledge of secure coding principles and DevSecOps processes.
• Experience with security monitoring and incident response, including SIEM solutions such as Microsoft Sentinel.
• Experience with scripting and automation tools (e.g., PowerShell, Python, Terraform).
• Strong communication skills to share security knowledge with developers and IT administrators.