Country:

United States

Cities:

Atlanta, Austin, Charlotte, Dallas, Houston, Miami, Orlando, Tampa, Washington DC

Area of expertise:

Security

Job Description



The Azure Cloud Security Architect is responsible for leading the development of information security architecture and ensuring technology initiatives are implemented within the framework to make our client’s cloud environments more secure. The Security Architect will be accountable for securing enterprise information by identifying network and application security requirements, planning, implementing, and testing security controls and procedures. This role is customer-facing and plays an active role in transforming our client’s Security through designing and implementing Security technologies on-premises and in the cloud.

 

About the Role:

Work closely with enterprise architects to identify and mitigate risks, perform security reviews, design top tier security practices, and deliver strategic, innovative cloud-based security offerings

Propose, design, plan and execute strategic and tactical operational security objectives

Perform deep analysis and develop metrics that measure current risk and effectively evaluate and manage threats

Identify appropriate technology/data sources and drive the collection of data necessary to effectively evaluate threats

Communicate threat intelligence and vulnerability management options

Analyze threats and current security controls to identify gaps in current defensive posture

Meet with clients and lead workshops

 

About You:

Experience with Microsoft Azure IaaS, PaaS and SaaS solutions

Azure Key Vault, Azure Security Center, Azure Operations Management Service, Log Analytics, Sentinel

Architecture and security management

Solid understanding of security best practices

Securing network and enterprise cloud applications

Security frameworks, such as ISO/IEC 27001, NIST 800-53, anda OWASP

Building a security framework, SIRRP process and/or forensic handling methods

Knowledge of host hardening, auditing, logging and monitoring, network security, SEIM deployments, security analytics, anomaly detections, PKI

Experience with Cloud Infrastructure and Network Security products, such as Splunk, Zscaler, Palo Alto firewalls

Market understanding of industry trends for cybersecurity, risk & threat intelligence, and governance

Proven implementation of cloud security models, particularly identity, network, and encryption

Demonstrated understanding of Microsoft security technologies and strategy to include Zero Trust

Program management skills and solution support for security transformation/implementation programs

Business case development skills for justifying, prioritizing & forecasting the funding requirements for security programs and initiatives

Strong technical skills to design and implement Azure Security services with hands on experience on several of the items outlined below:

? Security Operations

? Azure Monitor

? Azure Log Analytics

? Diagnostic logging & log retention

? Vulnerability scanning and policies

? Azure Sentinel

? Azure Security Center

? Microsoft Cloud App Security

? Platform Protection

? Azure Networking

? Virtual networks

? Application Gateways

? Traffic Manager

? Network Security Groups

? VPN

? Peering

? Azure Firewall

? Force tunneling

? Azure DDoS protection

? Host Security

? VM Hardening

? Azure Update Management

? Serverless Computing (Kubernetes)

? Subscription Security

? Azure resource locks

? Subscription policies

? Resource policies

? Secure Data & Applications

? Protect data at Rest (Azure disk encryption)

? Azure Information Protection

? Protect Data in transit (Azure VPN gateway, SSL/TLS and HTTPS)

? SQL Database (Discovery, classification, labeling, immutable storage, data retention, legal holds, and data sovereignty

? SQL Database firewall

? SQL Database authentication

? Cosmos DB authentication

? Azure HDInsight DB authentication

? Azure AD authentication for SQL DB

? Database auditing policy

? SQL DB threat detection

? Access control for storage accounts

? Key management for storage accounts

? Ability to integrate Microsoft Cloud Technologies with 3rd party security products such as Lookout, Zscaler, MobileIron, AirWatch, Splunk, Symantec DLP, Ping, Okta, SailPoint, etc.


Preferred Certifications

• CISSP

• CCSP

• CompTIA Security+

• Microsoft Azure Security Associate (Exam AZ-500)

• Microsoft Azure Administrator (Exam AZ-103 / AZ-104)

• Microsoft Azure Security and Integration (Exam AZ-100)

• Microsoft Azure Architect Technologies (Exam AZ-300 / AZ-303 / AZ-304)


Apply now

Share this job:

Share Facebook Twitter Email

About Avanade

Avanade leads in providing innovative digital services, business solutions and design-led experiences for its clients, delivered through the power of people and the Microsoft ecosystem. Our professionals combine technology, business and industry expertise to build and deploy solutions to realize results for clients and their customers. Avanade has 29,000 digitally connected people across 23 countries, bringing clients the best thinking through a collaborative culture that honors diversity and reflects the communities in which we operate. We welcome all, and seek talented individuals who can bring their whole self to work, build inclusive teams and encourage diversity inside and outside the organization. Majority owned by Accenture, Avanade was founded in 2000 by Accenture LLP and Microsoft Corporation. Learn more at www.avanade.com.