Azure Security Consultant / Architect
Apply NowCompany: Futran Tech Solutions Pvt. Ltd.
Location: Dallas, TX 75217
Description:
Azure Security Consultant / Architect
JD:
Seasoned cloud security expert with in-depth knowledge on comprehensive security design, implementation and management across all Azure security technologies and services.
Key Responsibilities -
Design and implement extensive Microsoft Security related activities that include, but not limited to:
End to End cloud security design and implementation for a 100% cloud (Azure) environment
Defining maturity model and conducting maturity assessments
Defining transformation roadmap
Architecture and design of security controls, product best fit analysis to ensure end to end security covering different approaches for layered security, zoning, Integration aspects, API, Endpoint security, Data security, Compliance and regulations, Threat intelligence, Threat exposure & Incident management aspects for the cloud deployments
In-depth experience on Infrastructure Security design and deployments using combination of 3rd-party and/or cloud native security services (Azure AD, Azure Security Center, Azure VNets, VNet-peering, NSG, Azure DDoS, Load Balancers, WAF, Storage security, Azure API management) is a must.
Hands-on experience in the technical deployment, configuration, integration, support, and administration of security technologies (e.g. Firewalls, IPS, DDoS, WAF, Endpoint etc.) for Azure cloud environment.
Designing and implementing RBAC for Azure resources
Experience around creating and audit of security best practices and implementation of security principles across the organization, to meet business goals along with customer and regulatory requirements
Define and enforce polices and guardrails for extensive security controls across environments, educating broad user base for effective distributed security responsibilities and best practices.
Well-versed with agile and Azure DevOps principles, embedding security throughout CI/CD process
Threat and Vulnerability management for the Azure workloads
Azure security monitoring policies setup
Configure rules for real-time alerting in SIEM tool for events
Lead continuous compliance process and other obligatory security requirements and reporting
Perform ongoing security enhancements, testing and validation to ensure robust and functional security across all environments.
Able to migrate subscription, roles, Managed identity, RBAC, Key vault and secretes from one tenant to another tenant.
Page Break
Technical Qualification/ Knowledge:
Hands-on knowledge on Azure security technologies and associated components and variations
Azure Security Center, Azure Monitor, Log Analytics, Sentinel or any other SIEM integration
Azure Networking: VNET, Network Security Group (NSG), VNet peering, Azure Firewall
Azure Storage Security: storage accounts, managed disks, blobs, encryption at rest and in-transit, Azure KeyVault,
Azure Active Directory, RBAC, MFA, SAML, Conditional Access, Managed Identity.
Azure Load Balancers, WAF, Application Gateway, Availability Sets/Scale Sets
Knowledgeable about Windows Operating System, Server hardening, Group Policies, event and log management
Experience in deploying MDATP for Servers
Experience with multiple security tools and technologies including Next-Gen Firewalls (Palo Alto), McAfee ePO, DLP, CrowdStrike, ZScaler, Vulnerability Assessment (Tenable.io)
Ability to lead troubleshooting of cloud security issues, detect and confirm anomalies, identify risks, perform root cause analysis
Skilled in Graph API, Azure CLI / PowerShell automation experience
Should be able to create, update, retry and delete Azure AD objects via PowerShell, Azure CLI
Understanding of the Azure Subscription and Migration activities will be added advantages.
Additional Qualifications and Experience: Good to have following certification.
Cloud Security certifications
Microsoft certifications: AZ-900, AZ-500, MS-900, MS-500, AZ-30X, SC200 - 300.
Familiarity with Zero Trust principles
JD:
Seasoned cloud security expert with in-depth knowledge on comprehensive security design, implementation and management across all Azure security technologies and services.
Key Responsibilities -
Design and implement extensive Microsoft Security related activities that include, but not limited to:
End to End cloud security design and implementation for a 100% cloud (Azure) environment
Defining maturity model and conducting maturity assessments
Defining transformation roadmap
Architecture and design of security controls, product best fit analysis to ensure end to end security covering different approaches for layered security, zoning, Integration aspects, API, Endpoint security, Data security, Compliance and regulations, Threat intelligence, Threat exposure & Incident management aspects for the cloud deployments
In-depth experience on Infrastructure Security design and deployments using combination of 3rd-party and/or cloud native security services (Azure AD, Azure Security Center, Azure VNets, VNet-peering, NSG, Azure DDoS, Load Balancers, WAF, Storage security, Azure API management) is a must.
Hands-on experience in the technical deployment, configuration, integration, support, and administration of security technologies (e.g. Firewalls, IPS, DDoS, WAF, Endpoint etc.) for Azure cloud environment.
Designing and implementing RBAC for Azure resources
Experience around creating and audit of security best practices and implementation of security principles across the organization, to meet business goals along with customer and regulatory requirements
Define and enforce polices and guardrails for extensive security controls across environments, educating broad user base for effective distributed security responsibilities and best practices.
Well-versed with agile and Azure DevOps principles, embedding security throughout CI/CD process
Threat and Vulnerability management for the Azure workloads
Azure security monitoring policies setup
Configure rules for real-time alerting in SIEM tool for events
Lead continuous compliance process and other obligatory security requirements and reporting
Perform ongoing security enhancements, testing and validation to ensure robust and functional security across all environments.
Able to migrate subscription, roles, Managed identity, RBAC, Key vault and secretes from one tenant to another tenant.
Page Break
Technical Qualification/ Knowledge:
Hands-on knowledge on Azure security technologies and associated components and variations
Azure Security Center, Azure Monitor, Log Analytics, Sentinel or any other SIEM integration
Azure Networking: VNET, Network Security Group (NSG), VNet peering, Azure Firewall
Azure Storage Security: storage accounts, managed disks, blobs, encryption at rest and in-transit, Azure KeyVault,
Azure Active Directory, RBAC, MFA, SAML, Conditional Access, Managed Identity.
Azure Load Balancers, WAF, Application Gateway, Availability Sets/Scale Sets
Knowledgeable about Windows Operating System, Server hardening, Group Policies, event and log management
Experience in deploying MDATP for Servers
Experience with multiple security tools and technologies including Next-Gen Firewalls (Palo Alto), McAfee ePO, DLP, CrowdStrike, ZScaler, Vulnerability Assessment (Tenable.io)
Ability to lead troubleshooting of cloud security issues, detect and confirm anomalies, identify risks, perform root cause analysis
Skilled in Graph API, Azure CLI / PowerShell automation experience
Should be able to create, update, retry and delete Azure AD objects via PowerShell, Azure CLI
Understanding of the Azure Subscription and Migration activities will be added advantages.
Additional Qualifications and Experience: Good to have following certification.
Cloud Security certifications
Microsoft certifications: AZ-900, AZ-500, MS-900, MS-500, AZ-30X, SC200 - 300.
Familiarity with Zero Trust principles