Azure Security Architect

For one of our global clients, we are searching for a Freelance Azure security architect. In this role, you will be responsible for designing, implementing and securing cloud infrastructure solutions.

Key Responsibilities:

• Cloud Architecture: Design and implement scalable, secure, and highly available cloud infrastructures that meet business needs and technical requirements, ensuring compliance with security best practices, industry standards, and regulatory requirements (e.g. ISO 27001, GDPR, NIS2 etc.)
• Cloud Governance: Implement cloud security governance policies and ensure adherence to cloud security standards. Utilize Azure Defender, Azure Policy, Management Groups, and Azure Blueprints to enforce governance and security controls.
• Identity & Access Management (IAM): Implement and manage secure authentication and authorization policies using Azure Entra ID, Privileged Identity Management (PIM), role-based access control (RBAC), and conditional access to ensure least-privilege access for users, applications, and services.
• Automation & Security Tools: Utilize automation tools (e.g. ArgoCD) and DevSecOps principles to implement security into the CI/CD pipeline, ensuring that security testing, vulnerability scanning, and security checks are integrated into the entire software development lifecycle. Leverage Infrastructure as Code (IaC) tools such as Terraform, Bicep, or Azure Resource Manager (ARM) templates to automate secure resource provisioning and configuration.
• Security Monitoring & Incident Response: Automate security tasks including vulnerability scanning, compliance checks, threat detection, and security monitoring using tools like Azure Sentinel, Azure Monitor, and Azure Defender. Develop and execute incident response plans for handling security breaches, including data exfiltration, DDoS attacks, or insider threats.

Your Profile:

• Proven experience in cloud security, cloud architecture, DevSecOps or related roles, with hands-on experience in architecting secure environments on Microsoft Azure.
• Strong understanding of cloud networking, hybrid cloud, and virtual networking concepts (e.g., VPNs, subnets, NSGs, load balancing, hub-spoke).
• Expertise in designing and implementing cloud security architectures on Azure, with strong knowledge of Azure Defender, Azure Sentinel, Azure Key Vault, Azure EntraID, Azure Firewall, and other Azure security services
• Expertise in Infrastructure as Code (IaC) tools such as Terraform, ARM templates, or Bicep to automate secure provisioning and configuration of Azure resources.
• Experience in Azure governance and cost management using Azure Cost Management, Azure Policies, and management groups.
• Hands-on experience with CI/CD tools (e.g., Azure DevOps, ArgoCD) and integration of security tools (e.g. SonarQube) within the pipeline.

If you are interested, please forward your updated resume to be considered.