We are looking for a Cloud Security Lead/Architect with extensive experience in Azure Cloud Security. You will operationalise Defender for Cloud, automate remediation, manage Cloud identity and entitlements, and enhance the security posture through effective architecture and collaboration.
Responsibilities
* Deploy and manage Microsoft Defender for Cloud.
* Analyze security recommendations, prioritize risks, and implement best practices.
* Automate security remediation at scale using tools like Terraform, Azure CLI, and custom scripts.
* Optimize Role-Based Access Control (RBAC) and manage Cloud Identity and Entitlement Management (CIEM).
* Improve security posture through architecture design and remediation strategies.
* Create Azure Policies.
* Design and secure Azure cloud architectures, including network security with private endpoints, service endpoints, Azure Firewall, and NSGs.
* Ensure security for PaaS services such as AKS, Azure Storage Accounts, and App Services.
* Work with Logic Apps and Azure Monitor to set up automation and monitoring alerts.
* Manage identity and entitlement with Entra ID and enforce least-privilege access.
Required Skills
* Expertise in Azure Cloud Security, architecture, and tools like Defender for Cloud.
* Deep understanding of network security, including private endpoints, service endpoints, and firewalls.
* Experience with PaaS services such as AKS, Azure Storage Accounts, and App Services.
* Proficiency in automating processes using Terraform and scripting languages.
* Expertise in CIEM, RBAC optimization, and entitlement management.
* Experience with CSPM tools and improving cloud security postures.