Description

1. Design Azure Cloud Security Solutions:
o Lead architecture reviews for decision records.
o Cover IAM (Entra ID/Azure Active Directory), posture management, workload protection, SIEM/SOAR, and application testing.
2. Architectural Runway and Collaboration:
o Create infosec requirements for infrastructure and app development.
o Collaborate with agile teams to meet security needs.
3. Continuous Monitoring and Compliance:
o Monitor cybersecurity policies, compliance artifacts, and systems authorization.
o Map security controls to compliance requirements.
4. Zero-Trust Implementation:
o Integrate Azure Zero-Trust Architecture into cloud solution design.
5. Risk Mitigation and Vulnerability Remediation:
o Coordinate risk reduction efforts for applications and infrastructure.
6. Hybrid Cloud Deployment:
o Deploy FedRAMP High hybrid cloud solutions, integrating on-premises components.
7. Threat Assessment and Incident Response:
o Assess vulnerabilities and provide incident support.

REQUIRED SKILLS:
1. Azure Expertise:
o Microsoft Azure Cloud experience (GovCloud preferred).
o Familiarity with Azure security tools/platforms (e.g., Azure AD, Sentinel, Defender, Monitor, Key Vault).
2. Education and Experience:
o Bachelor s degree in a technology field (Master s degree preferred).
o 5 years of cyber-related experience in a commercial environment with Azure, focusing on technical information security and risk management.
3. Security Proficiency:
o Identity Access and Management concepts (including multifactor authentication and SSO/Federation).
o Privileged Access Management.
o Vulnerability testing for Azure systems.
o Understanding of CI/CD pipelines and software scanning.
4. Cloud Security Domains:
o Demonstrated expertise in Information Security and Risk Management across Windows and Linux.
o Familiarity with key domains:
Identity, Credential, and Access Management (ICAM).
Authentication and Authorization (including SSO and Identity Federation).
Zero-Trust Model.
Defense-In-Depth.
Governance and Compliance.
Data Security.
Operating System Security.
Network Layer Protection.
Continuous Diagnostics and Mitigation, Alerting, Audit Trail, and Incident Response.
Cloud Core Platform (Compute, Storage, Networking).

GOOD TO HAVE:
INFOSEC Certifications: CISSP, CCSP, CISM.
Azure/AWS/Google Training and Certification.
Microsoft Certifications/Exams (recommended): Sc-100 Cybersecurity Architect, Sc-300 Identity and Access Administration, AZ-500 Azure Security Engineer.
Crowdstrike Falcon EDR for Azure.
Managing/maintaining FISM

Key Skills

Education

Bachelor's degree