Position is for office work only
Role Description:
As an Azure Cloud Security & DevOps Engineer, you will be responsible for managing and securing Azure cloud infrastructure, ensuring operational resilience, and optimizing CI/CD processes. You will collaborate across teams to build and maintain secure, scalable, and high-performing environments on Azure. This position requires expertise in Azure security operations, infrastructure management, and DevOps practices to support efficient development, secure deployment, and stable infrastructure and cloud platform
Key Responsibilities:
Security Operations & Incident Response:
xe2x97x8f Manage the Security Operations Center (SOC) to monitor Azure environments for security events, incidents, and vulnerabilities
xe2x97x8f Lead incident investigations, conduct threat assessments, and implement effective mitigation strategies
Infrastructure Management & Optimization:
xe2x97x8f Oversee and manage Azure cloud infrastructure, ensuring performance, scalability, and cost-effectiveness.
xe2x97x8f Implement Infrastructure as Code (IaC) using tools like Terraform or ARM templates for consistent and repeatable deployments
xe2x97x8f Perform regular reviews of infrastructure health, scalability, and disaster recovery planning to optimize platform performance
xe2x97x8f Design and maintain comprehensive DR plans, ensuring rapid recovery during service disruptions
xe2x97x8f Regularly test DR mechanisms to ensure readiness
Data & Backup Management:
xe2x97x8f Implement robust data management strategies, including secure backups and storage solutions
xe2x97x8f Ensure consistency and accessibility of data while adhering to compliance requirements
Continuous Security Monitoring & Compliance:
xe2x97x8f Implement automated monitoring, logging, and alerting to identify security threats and ensure adherence to standards like ISO 27001 and NIST
xe2x97x8f Develop and maintain security controls to comply with industry regulations and organizational policies
Vulnerability & Risk Management:
xe2x97x8f Conduct vulnerability assessments, identify risks, and apply security patches to maintain a secure Azure environment
xe2x97x8f Implement proactive risk mitigation strategies in collaboration with cloud engineering teams
Access & Identity Management:
xe2x97x8f Administer Azure Active Directory for role-based access control, ensuring least-privilege principles and multi-factor authentication (MFA)
xe2x97x8f Implement and manage identity policies and access controls to protect sensitive resources
DevOps & CI/CD Integration:
xe2x97x8f Design and implement CI/CD pipelines that incorporate security and infrastructure management best practices
xe2x97x8f Collaborate with development and DevOps teams to automate deployments, reduce manual errors, and accelerate release cycles
Security Policy & Best Practices:
xe2x97x8f Develop and enforce security policies, protocols, and standards for Azure cloud services, promoting a secure and compliant environment
xe2x97x8f Promote secure coding, encryption, and data protection practices for cloud-hosted applications
xe2x97x8f Ensure Information Security Resilience by aligning cloud practices with organizational security policies
Reporting, Billing, & Documentation Management:
xe2x97x8f Establish and manage reporting scopes for system performance and security metrics xe2x97x8f Oversee billing management for cloud resources, optimizing costs without compromising performance
xe2x97x8f Maintain detailed documentation for infrastructure, security practices, and DevOps processes
Collaboration & Training:
xe2x97x8f Work with cloud engineering, DevOps, and IT teams to embed security and infrastructure best practices into development and operations
xe2x97x8f Provide training to development and IT teams on Azure security practices and secure deployment processes
Qualifications:
xe2x97x8f Education: Bachelors degree in Computer Science, Information Security, or a related field
xe2x97x8f Experience: 3+ years in cloud security, infrastructure management, and DevOps, focused on Azure
xe2x97x8f SOC & Infrastructure Management Expertise: Proven experience in managing SOC operations and cloud infrastructure
xe2x97x8f Technical Proficiency: Strong knowledge of Azure Security Center, Azure Active Directory, Key Vault, Terraform, and ARM templates
xe2x97x8f Compliance Knowledge: Familiarity with security standards (ISO 27001, NIST) and regulatory frameworks
xe2x97x8f Automation & IaC Skills: Proficiency in security automation, IaC, and CI/CD tools such as Github and Gitlab
xe2x97x8f Certifications: Azure Security and Infrastructure certifications (e.g., AZ-500, Microsoft Certified: Azure Security Engineer Associate) preferred