Sr. Azure Cloud Security Architect (RARR Job 5776)

We are looking for an experienced Azure Cloud Security Engineer with strong hands-on implementation expertise across Microsoft security products and cloud security operations. The ideal candidate must have practical exposure to Azure Security services, Microsoft Defender suite, Sentinel, M365 security, and overall cloud posture management. The role involves incident handling, security monitoring, compliance enforcement, and implementation of best practices to strengthen the organization’s cloud security landscape.

Key Responsibilities

Azure Sentinel (SIEM)

• Provide 2nd-line incident support and escalation handling.

• Perform security incident analysis, troubleshooting, and reporting.

• Work closely with SecOps teams for monitoring and rule tuning.

• Manage dashboards, analytics rules, hunting queries, and log ingestion.

Microsoft Defender for Cloud

• Manage cloud security posture (CSPM) and remediate identified issues.

• Monitor alerts, recommendations, and incidents across subscriptions.

• Implement Zero Trust principles and regulatory compliance controls.

• Hands-on with Defender for Servers and workload protection.

Microsoft 365 Security

• Manage access configurations, conditional access policies, and identity controls.

• Monitor security dashboards and alerts across M365 workloads.

• Support compliance configurations and assessments.

Microsoft Defender XDR Suite

• Handle Defender XDR incident and alert investigations.

• Configure and monitor Defender for Endpoint (Windows 11).

• Implement and maintain compliance reporting (including Purview workloads).

• Conduct endpoint hardening and EDR tuning.

Database & Virtual Desktop Security

Azure SQL & Cosmos DB

• Manage security, access control, auditing, encryption, and posture improvement.

Azure Virtual Desktop (AVD)

• Manage access controls, security monitoring, encryption, and compliance.

• Review and configure logging, EDR integration, Windows 11 security baselines.

Required Skills (Strong Hands-On)

• Azure Sentinel (SIEM)

• Microsoft Defender for Cloud

• M365 Security & Compliance

• Defender XDR (Defender for Endpoint, Identity, Cloud Apps)

• Azure SQL Security, Cosmos DB

• Azure Virtual Desktop Security

• Zero Trust Architecture

• Incident Response & Security Operations

• Identity & Access Management (IAM)

• Regulatory & Compliance Standards (ISO, SOC, GDPR preferred)

Good to Have

• Azure Certifications like AZ-500, SC-200, SC-300, SC-400

• Knowledge of KQL for Sentinel investigations

• Experience with automation using Logic Apps / PowerShell

• Understanding of network security, firewalls, WAF, NSG, ASG

Soft Skills

• Strong analytical and troubleshooting ability

• Excellent communication and documentation skills

• Ability to work in fast-paced environments and collaborate with cross-functional teams