Cybersecurity Engineer / Analyst

Cloud Security & Engineering

• Monitor and support security controls across SaaS, PaaS, and IaaS environments.
• Assess and implement controls for identity, encryption, data protection, and threat detection.
• Review Azure configurations to ensure alignment with security and compliance requirements.
• Validate security posture of SaaS applications (CRM, HR, identity, messaging, etc.).
• Support secure design and deployment of .NET and Angular applications on Azure App Services.

Threat Detection & Incident Response

• Monitor and analyze security events and incidents using Microsoft Sentinel and Defender.
• Investigate security incidents, correlate logs across systems, and perform root cause analysis.
• Review vulnerability assessments, penetration testing reports, and audit findings.
• Identify and mitigate risks, vulnerabilities, and compliance gaps.

Networking & Zero Trust

• Design and maintain secure Azure network architectures (NSGs, Azure Firewall, Private Endpoints).
• Analyze network traffic and enforce segmentation and least privilege access.
• Manage Zscaler policies and integrations for secure internet access and zero trust enforcement.
• Support VPN, hybrid connectivity, and ExpressRoute configurations.

Collaboration & Governance

• Work with cross-functional teams to embed security into DevOps pipelines and cloud operations.
• Ensure security practices minimize attack surface and align with business objectives.
• Assist in developing and maintaining cloud security processes, procedures, and playbooks.
• Stay current with emerging threats, vulnerabilities, and regulatory requirements.

• Bachelor's degree in Cybersecurity, Computer Science, or related field (or equivalent experience).
• 5+ years of experience in cybersecurity engineering and/or analysis roles.
• Strong knowledge of Azure security services and architecture.
• Strong understanding of TCP/IP, DNS, VPN, routing, and network segmentation.
• Familiarity Web Application Firewalls and API Management solutions
• Experience with Microsoft Sentinel, Defender, Intune, Purview and Zscaler.
• Familiarity with DevSecOps practices and tools (e.g., GitHub Actions, Azure DevOps).
• Knowledge of application security testing tools (e.g., SAST, DAST, dependency scanning).
• Understanding of NIST CSF and other security frameworks.
• Proficiency in scripting (PowerShell, Python)
• Excellent analytical, communication, and problem-solving skills.

• Microsoft Certified: Azure Security Engineer Associate (AZ-500)
• Microsoft Certified: Cybersecurity Architect Expert (SC-100)
• Microsoft Certified: Security Operations Analyst Associate (SC-200)
• CISSP, CISM, or CSSLP a plus for candidates with broader strategic or secure software lifecycle experience