Description
You will secure Azure cloud environments and Microsoft 365 ecosystems through proactive vulnerability management and identity protection.
Responsibilities
- Manage Entra ID user identities, including group management, conditional access policies, Enterprise apps, SSO, OAuth, and MFA.
- Implement Azure Defender EDR policies, Purview DLP, and Sentinel integration across Azure IaaS, PaaS, SaaS, and Microsoft 365.
- Secure Microsoft Office 365 workflows, including Exchange Online, SharePoint, OneDrive, Teams, and Power Platform.
- Monitor SIEM and analyze threat events using Tenable, Crowdstrike, and ArcticWolf XDR solutions.
- Conduct threat hunting to identify potential Indicators of Compromise (IOCs) and respond to security breaches.
Required Skills
- 8+ years of experience designing and planning Azure deployments in enterprise environments.
- Hands-on experience with Azure Enterprise-scale reference architecture (IaaS/PaaS/SaaS).
- Expertise in Azure security native and 3rd party tools, including CSPM, CWPP, and CNAPP.
- Strong knowledge of IAM principles using Azure Entra ID, ADDS, B2C, B2B, SSO, SAML, and OAuth.
- Infrastructure as Code (IaC) experience with Terraform, ARM, Bicep, Ansible, PowerShell, Python, AZ CLI, or JSON templates.
- Experience creating architecture patterns for public cloud and cloud-native solutions.
- Proven ability to conduct cloud risk assessments and develop mitigation strategies.
- Experience creating Incident Response plans and Ransomware/DDoS response strategies.
- Relevant certifications: AZ-500, MS-102, or AZ-104.
Preferred Skills
- Experience with GitHub and cloud automation workflows.