Azure Cloud Security Engineer

Contract Term: 6 months, renewable
Work Location: Remote Work in Canada
Enhanced Reliability clearance is mandatory

Our client, a global leading IT company, is looking for an Azure Cloud Security Engineer.

Project:

Infrastructure
• Replace aging hardware and unsupported stack.
• Align with best-in-class future technology.
• Introduce a CI/CD pipeline for an agile working model.
• Meet and maintain security requirements and obligations.

Product
• Consolidate product offerings with diverse technologies and code bases.
• Simplify operational and maintenance efforts.
• Enable easier feature enhancements.
• Address outdated and vulnerable technologies and versions.
• Meet and maintain security requirements and obligations.

Key Responsibilities:
• Design and implement security controls and policies for Azure infrastructure and services.
• Monitor and respond to security threats, vulnerabilities, and incidents in Azure environments.
• Utilize Azure-native tools such as Microsoft Defender for Cloud, Azure Security Center, Sentinel, and Azure Policy to ensure compliance and threat protection.
• Develop and maintain identity and access management (IAM) strategies, including role-based access control (RBAC), Conditional Access, and Azure AD.
• Implement infrastructure-as-code (IaC) with a focus on secure configurations using tools like Terraform, Bicep, or ARM templates.
• Perform regular security assessments, risk analysis, and penetration testing on cloud workloads.
• Collaborate with DevOps and development teams to integrate security into CI/CD pipelines (DevSecOps).
• Ensure compliance with relevant standards and frameworks (e.g., ISO 27001, NIST, GDPR, HIPAA).

Required Qualifications:
• Strong experience in cloud security, with a focus on Microsoft Azure.
• Strong knowledge of Azure security services and tools (e.g., Defender for Cloud, Azure Firewall, Sentinel, Key Vault).
• Experience with identity and access management in Azure and integration with Azure Active Directory.
• Proficient in scripting or automation languages such as PowerShell, Python, or Bash.
• Familiarity with security monitoring, logging, and SIEM tools.

Contact Information: Lam Guan