We are seeking a Senior Cloud Security Engineer to lead and support the implementation of robust security controls across cloud and hybrid environments, with a strong focus on Microsoft Azure. This role plays a critical part in safeguarding enterprise systems, data, and infrastructure through IAM, DevSecOps, threat detection, and regulatory compliance.
Key Responsibilities:
- Manage Azure AD/Entra ID, RBAC, Conditional Access, and PIM
- Enforce least privilege principles and integrate IAM across enterprise systems
- Implement encryption, DLP (e.g., Microsoft Purview), classification, and tokenization
- Align controls with NIST, SOC 2, and CIS Benchmarks
- Support audits, maintain compliance documentation, and generate security reports
- Secure Azure workloads (VMs, containers, PaaS)
- Administer WAFs (Azure WAF, Cloudflare) and next-gen firewalls (Palo Alto, Azure Firewall)
- Conduct vulnerability assessments and monitor posture using Defender for Cloud and Sentinel
- Embed security in CI/CD pipelines (Azure DevOps, GitHub Actions)
- Use IaC tools (Terraform, Bicep, ARM) with policy-as-code validation (Azure Policy, OPA)
- Automate code scanning, secrets detection, and container security
- Security Operations & Incident Response:
- Maintain SIEM/XDR systems (Sentinel, Defender XDR), investigate threats, and lead incident response
- Develop incident response plans and conduct root cause analysis and remediation
- Enforce security policies aligned with regulatory requirements
- Promote a culture of security awareness and stay current with industry trends
- Conduct security training and collaborate cross-functionally with IT and business units
Required Qualifications:
- Bachelor’s degree in Computer Science, IT, or related field
- 5+ years in cloud or security engineering roles
- Strong experience with Microsoft Azure and Microsoft 365 security
- Hands-on expertise with WAFs, firewalls, IAM, SIEM, and DevSecOps practices
- Familiarity with PowerShell, Python, or Bash scripting
- Deep understanding of NIST frameworks, SDLC, and secure code review practices
- Experience in compliance-driven or regulated environments
Compensation: $100,000-135,000
Salary is based on a range of factors that include relevant experience, knowledge, skills, other job-related qualifications.
Read Full Description