We are seeking a highly skilled Azure Cloud Security Technical lead with expertise in Cloud security products, authentication, authorization, in Workforce Identity and Access management (IAM). As a key member of our IAM Security Engineering team, you will play a vital role in ensuring the secure and compliant implementation of various solutions in the Cloud focused on Identity and access Management domain.
Responsibilities
- Design hybrid Workforce security solutions to ensure secure and efficient authentication and authorization processes aligned with industry best practices
- Guides the architectural development, specification and communication of Security solutions on cloud. Also, review and provide security solutions to applications or infrastructure teams used by multiple business teams.
- Provides extensive, in-depth, security technical consultation to the partners, and IT Management to develop plans and directions to assure Cloud adoption
- Acts as Cybersecurity expert for cloud migration projects/programs
- Leads Cloud Security initiatives with deeper focus on IAM
- Thoroughly understands decision process issues of technology choice, such as design, data security, client server communication, cloud architectures, cloud native services, cloud security etc.
- Good understanding of Cloud Infrastructure Entitlement Management solutions
- Design target architectures considering security controls, audit requirements
- Evaluates and selects from existing and emerging technologies those options best fitting business/project needs
- Promotes sharing of expertise through consulting, presentations, and documentations, etc.
- Experienced, functional expert with technical and/or business knowledge and functional expertise
- Carries out complex initiatives involving multiple disciplines and/or ambiguous projects
- Displays a balanced, cross-functional perspective, liaising with the business to help improve efficiency, effectiveness, and productivity
- Strategic in developing, implementing, and administering programs within functional areas
- Provides guidance to team members, fostering an environment that encourages employee participation, teamwork, and communication
Requirements
- In-depth knowledge and experience on Azure and AWS Security
- Expertise in different Azure Services, Subscriptions, management groups
- Design, implement Azure Security solutions to ensure secure and efficient authentication and authorization processes aligned with industry best practices
- Drive the onboarding of applications, Application registration, enterprise application setup, and role-based access management (RBAC).
- Experience in architecting custom solutions using Java Frameworks on the Azure is a must
- Lead the implementation of Multi-Factor Authentication (MFA) and Single Sign-On (SSO) for enhanced security.
- Proven experience on Azure security such as RBAC, Permissions, actions, identities, Roles, privileged access management
- In-depth knowledge of Azure AD, Azure AD B2B, related authentication/authorization components and security protocols which including SAML, OAuth, and OpenID
- Strong scripting and automation skills (PowerShell, Azure CLI)
- Experience in architecting custom solutions using Java Frameworks on the Azure is a must
- Expertise in configuring and troubleshooting authentication protocols, including OAuth, OpenID Connect, and SAML for secure authentication and authorization
- Good understanding of Cloud Infrastructure Entitlement Management solutions / Microsoft Entra Permissions Management
- Configure and manage conditional access policies to control access based on specific conditions, locations, and device compliance
- Collaborate with cross-functional teams to support and troubleshoot IAM-related issues, ensuring solutions are secure, compliant, and scalable.
- Understand and implement security best practices for Azure products, services, and solutions.
- Hands on experience related to DevSecOps, IaC, CI/CD pipeline, automation, and vulnerability scanning tools, Terraform, Powershell, bash script, Azure CLI
- Experience as Full stack application development on technologies like Java, React, JavaScript, SQL and Oracle databases
- Utilize Azure Sentinel for monitoring, creating alerts, and developing automation scripts for incident response.
- Provide production support, responding to and resolving security incidents in a timely manner.
- Establish and maintain identity governance frameworks, including privileged identity management (PIM) for elevated access
- Stay informed of Azure updates, security threats, and industry best practices to enhance our security posture.
- Collaborate with DevOps and development teams, demonstrating a basic understanding of tools and requirements.
Qualifications
- Bachelor's degree in computer science or a related discipline and experience in information security, or an equivalent combination of education and work experience.
- Deep knowledge of application or infrastructure systems architecture, usually having experience with multiple system technologies.
- Excellent consultative and communication skills, and the ability to work effectively with client, partner, and IT management and staff.
- Five years of experience in the Information Security role. Three years of experience with cloud and/or technologies
- Cloud security certification preferred
- Strong collaboration skills and a analytical ability
- Certifications on Azure, AWS security will be preferred
- Excellent understanding of cloud security principles
- Ability to work in a dynamic environment and adapt to evolving security challenges.
- Excellent communication and collaboration skills for working with cross-functional teams.
- Commitment to maintaining a secure, compliant, and scalable IAM solution.
