Azure Cloud Security Engineer with exp in KQL Scripting IAC ITSM at Alpharetta GA 12 months cont

Job Id: 3207 L4

Duration: 12 months

Location: Alpharetta GA

Title : Azure Cloud Security Engineer with exp in KQL Scripting IAC ITSM at Alpharetta GA 12 months cont

Top 3 skills:

Primary focus is Azure they need to have good knowledge around azure policies deployment and test security runbooks login analytics. They need to have a good background in scripting especially Powershell and Python. They need to have a good attitude towards the work and be a team player .

Also need:

Terraform IFAC; GIT and Infrastructure as code. Networking background is a plus security center is a huge plus (not required) and financial services is a plus (not required)

Between 23 interviews all remote.

Bachelors degree required.

Hybrid 3 days on site required only local candidates.

Description:

JD Azure Platform Security Squad

The Cloud Security team is responsible for securely enabling the use of cloud technologies to support the firms desire to leverage cloudnative services at enterprise scale. The Cloud Security team designs the security requirements that must be adhered to in cloud as well as builds the tooling and automation needed to provide enterprise capabilities to protect the firm and make securing workloads easier for application teams.

The team works with multiple cloud providers and is currently looking for an experienced Azure Security Engineer familiar with multiple cloud concepts cloud services and programming languages. The team this engineer will join implements security controls into our cloud platforms (detective preventative and corrective) and owns platforms used to further secure our cloud footprint. This team also works to enable the Security Operations teams to extend their enterprise security functions to the cloud environments.

Primary Responsibilities:

• Developing testing and deploying Azure Security Controls across the firms Azure tenants
• Providing security recommendations and solutions for migrating and new applications in the Firms environment to Azure
• Working closely with vendors and partner squads to develop deploy and test Cloud security services
• Responding to Azure Cloud security drifts in timely manner and working with the stakeholders to remediate the drifts.
• Integrating configuring documenting and deploying compliant infrastructure and supporting services in the Cloud platform
• Troubleshooting problems analyzing root cause and (where possible) fixing bugs introduced by owned or managed security solutions
• Collaborating with Risk Management Security Architecture and Cyber Incident Response teams to ensure necessary controls to Cloud services are deployed and tested
• Provide training and review sessions to the teams regarding solutions implemented
• Working in a globally distributed team to provide innovative and robust Cloudcentric solutions

Required Skills:

• • Knowledge of the Shared Responsibility Model; keen understanding of the security risks inherent in hosting cloudbased applications and data
  • Experience developing across the security assurance lifecycle (including prevent detect respond and remediate controls)
  • Experience configuring Azure native security tooling and capabilities such as Azure Policy Azure Monitor etc.
  • Experience solutioning and configuring eventdriven serverlessbased security controls in Azure including but not limited to technologies such as Azure Function Automation Runbook Logic App.
  • Deep understanding of DevOps processes and workflows.
  • Working knowledge of the Secure SDLC process.
  • Experience with Infrastructure as Code (IaC) tooling such as Terraform and ARM templates
  • Familiarity with standard Azure security tooling such as Microsoft Defender Suite Sentinel.
  • Familiarity with Logging and data pipeline concepts and architectures in cloud.
  • Strong in scripting languages such as PowerShell Python and Bash.
  • Experience creating technical architecture documentation.
  • Excellent communication written and interpersonal skills.
  • Practical experience in designing and configuring CICD pipelines.
  • Practical experience in Azure DevOps GitHub Action and Jenkins.
  • Experience in ITSM.
  • Ability to articulate complex technical concepts to nontechnical stakeholders.
  • Experience writing queries and analytics in Kusto Query Language (KQL)
  • Experience with risk control frameworks and engagements with risk and regulatory functions
  • Experience in the financial industry would be a plus.
  • Azure Certifications would be a plus.