Application Security Solution Architect

Application Security Solution Architect Role Description:

Proven experience with building cloud security solutions using Azure native components and is responsible for deploying, configuring, and maintaining security baselines within the Azure cloud environment. You are able to set up and manage access to cloud resources using accounts, users, and groups. Knowledgeable about potential vulnerabilities of virtual machines and container deployment systems and have the Microsoft Azure Security Engineer (AZ-500) certification (and possibly the Certified Cloud Security Professional (CCSP) certification). You understand the division of responsibility for designing and maintaining a secure cloud environment.

Role Requirements:

• Participating in pre-sales cloud security architecture of designs and solutions (Solutioning, RFI/RFP response, customer’s presentations, and Proof of Concept.) and be a part of delivery deliver team as well
• Balancing work between delivering pre-sales designs and value propositions; and delivery components (architecting & onboarding cloud security controls)
• Coordinating with the client and key stakeholders to gather requirements and design the solutions to support those requirements
• Determining Azure architectural standards and best practices for our clients’ cloud environments
• Planning, configuring, deploying, and optimizing Microsoft Azure security-based solutions
• Lead the Architecture and High-Level Design Workshops for Azure Security, including integration into the existing technology landscape
• Give practical advice in large-scale technology project while working at all levels – both client and third-party vendor teams
• Develop a technical security design to guide the company in the implementation and configuration of Azure environment
• Working closely with our data and application security teams to design best-in-class Azure implementations
• Working independently and in concert with others to architect solutions that have a measurable impact on security value, service management and client satisfaction

Required skills:

• 10+ years of cloud security experience across multi cloud (Azure, AWS, GCP) in defining cloud security strategy and architecture for monitoring entire cloud security principles
• Strong experience in implementing Azure native services across Iaas, PaaS and/or SaaS Solutions
• Providing strategic and technical leadership for client teams establishing cloud design, migrating data centers to cloud, developing infrastructure as code, or deploying cloud solutions
• Experience of understanding and implementing Zero Trust framework on Azure platform
• Developing and updating cloud templates, standards, and best practices to be used by multiple cloud projects
• Strong foundation across Microsoft Azure technology stack and Azure security offerings and the ability to communicate security and risk-related concepts
• Standardizing Azure Security best practices, processes, and procedures
• Experience with virtual machine, containerization, and serverless concepts and tools
• Designing and advising against security requirements to support cloud migration efforts
• Deep knowledge and understanding of the Microsoft Azure stack including (at a minimum) PaaS, IaaS, Storage, SQL, NSGs, Redis, VNETs, Availability Zones, Azure Traffic Manager and Azure Active Directory
• Ability to work productively while remote and communicate effectively in a virtual team environment
• Strong verbal and written skills enabling direct contact with client stakeholders
• Familiarity with the Cloud Security Alliance and other industry frameworks and configuration standards
• Understanding of CIS benchmarks for Azure cloud foundations

Preferred but not essential:

• Experience with scripting (PowerShell preferred)
• Experience in Identity & Access domain controls, data security, Encryption methods
• Experience in SaaS based solutions mainly on D365, 0365 cloud security controls
• Experience in integrating the whole Microsoft cloud stack of tools to Azure Sentinel and Azure Security Center
• Knowledge and experience with networking concepts including subnetting, routing, routing protocols, firewalls, and traffic managers (both local and global)
• Bachelor’s degree or equivalent experience in computer science, IT engineering, or related field
• Prior work experience in the Life Sciences or Financial Services sector
• Knowledge of compliance, policy, and control requirements for life science (HIPAA, PHI, etc.) or Financial Services (PCI, NYDFS, etc.)