Cloud Security Engineer

Job Title: Cloud Security Engineer

Location: Phoenix, AZ (Hybrid 3 days onsite initially, then 2 days/week)

Address: 1300 W Washington St, Phoenix, AZ 85007
Employment Type: Contract (Potential for Full-Time Conversion)

Position Overview

We are seeking a highly skilled Azure Cloud & Security Engineer to design, implement, and secure cloud-based infrastructure and applications within Microsoft Azure. This role plays a critical part in supporting enterprise IT and security initiatives, ensuring systems are resilient, compliant, and well-documented.

The ideal candidate combines deep technical expertise in Azure with strong security practices, infrastructure automation, and the ability to produce clear technical documentation and diagrams.

Key Responsibilities

Cloud Architecture & Engineering

• Design, deploy, and manage scalable Azure cloud solutions
• Implement Azure services including VMs, App Services, and Functions
• Optimize performance, availability, and cost across cloud environments

Security Engineering & Compliance

• Implement and maintain cloud security best practices (Zero Trust, defense-in-depth)
• Configure Azure-native security tools such as Defender for Cloud and Microsoft Sentinel
• Perform vulnerability assessments, threat detection, and remediation
• Ensure compliance with regulatory frameworks (NIST, CIS, HIPAA, FedRAMP, CJIS)

Networking & Identity Management

• Configure and manage VNets, NSGs, Azure Firewall, and ExpressRoute
• Manage identity and access using Azure AD, RBAC, and Conditional Access policies

Infrastructure as Code & Automation

• Develop and manage infrastructure using Terraform, Bicep, or ARM templates
• Automate deployments using Azure DevOps, GitHub Actions, and PowerShell

Monitoring & Incident Response

• Monitor systems using Azure Monitor and Log Analytics
• Support Tier 3 troubleshooting and incident response
• Implement proactive and reactive security and network defense measures

Disaster Recovery & Business Continuity

• Support and maintain disaster recovery and business continuity strategies

Documentation & Process Management

• Create and maintain architecture diagrams (Visio, Lucidchart)
• Develop SOPs, runbooks, and technical documentation
• Maintain version-controlled documentation repositories
• Follow ITIL-based incident, problem, and change management processes

Collaboration & Communication

• Work closely with development, security, and compliance teams
• Communicate technical concepts clearly to non-technical stakeholders
• Contribute to knowledge sharing and team documentation

Required Qualifications

• 5+ years of experience in cloud engineering, with a strong focus on Microsoft Azure
• Hands-on experience with Azure services (Compute, Networking, Storage, Identity)
• Strong expertise in Azure security tools (Defender for Cloud, Sentinel, Key Vault)
• Experience with Infrastructure as Code (Terraform, Bicep, or ARM templates)
• Knowledge of Zero Trust architecture and cloud security principles
• Experience with monitoring tools such as Azure Monitor and Log Analytics
• Familiarity with compliance frameworks (NIST, CIS, HIPAA, FedRAMP, CJIS)
• Strong scripting skills (PowerShell preferred)
• Experience with documentation tools (Visio, Lucidchart)

Preferred Qualifications

• Azure certifications (e.g., AZ-500, AZ-104, AZ-305)
• Experience in government or highly regulated environments
• Knowledge of ITIL processes and change management
• Experience supporting enterprise-scale cloud environments

Key Skills

• Azure Architecture & Services
• Cloud Security & Compliance
• Infrastructure Automation (IaC)
• Monitoring & Incident Management
• Technical Documentation & Diagramming
• Cross-functional Collaboration