Cloud Architect Cybersecurity (Azure Focus)

Role: Cloud Architect Cybersecurity (Azure Focus)
Location: Chicago, IL
Rate: Minimum Possible.

• Design and Secure Azure Cloud Architectures-Architect end-to-end secure solutions on Microsoft Azure, applying Zero Trust principles and aligning with Microsoft Cloud Adoption Framework and Well-Architected Framework Security Pillar.
• Implement Azure Security Best Practices-Enforce least privilege, secure network architecture, and data protection using Azure Security Benchmark, Azure Key Vault, and Azure Storage encryption.
• Risk Assessment and Security Controls-Conduct risk analysis and threat modeling (using STRIDE, DREAD) and apply mitigating controls with Azure Blueprints and Microsoft Defender for Cloud.
• Identity and Access Management (IAM)-Manage authentication and authorization using Azure Active Directory (Azure AD), Conditional Access Policies, Privileged Identity Management (PIM), and Multi-Factor Authentication (MFA).
• Cloud Security Monitoring and Threat Detection-Deploy and manage monitoring and SIEM tools like Microsoft Sentinel for threat detection, incident investigation, and real-time alerts across Azure resources.
• Compliance and Regulatory Alignment-Ensure alignment with ISO 27001, NIST, GDPR, or HIPAA using Azure Policy, Azure Compliance Manager, and Microsoft Purview for data governance.
• Network Security Architecture-Design secure network topologies with Network Security Groups (NSGs), Azure Firewall, Web Application Firewall (WAF), DDoS Protection, and Private Endpoints.
• Secure DevOps Integration (DevSecOps)-Embed security in CI/CD pipelines with GitHub Advanced Security, Microsoft Defender for DevOps, Azure DevOps, and tools like SonarCloud or Checkmarx.

Cloud Security Tools Deployment

• Utilize Azure-native and integrated tools such as:
• Microsoft Defender for Cloud (CSPM/CWPP)
• Microsoft Purview (Data Loss Prevention)
• Azure Monitor and Log Analytics
• Azure Bastion for secure VM access
• Azure Policy for automated remediation

• Security Reviews, Documentation & Continuous Improvement-Conduct periodic security reviews, penetration tests, and red/blue team exercises. Maintain architecture documents, threat models, and drive security maturity improvements based on evolving cyber threats and Microsoft's latest recommendations.

Key Tools Summary (Azure Cybersecurity Stack)

• IAM & Access: Azure AD, PIM, Conditional Access
• Security Monitoring: Microsoft Sentinel, Defender for Cloud
• Compliance: Azure Policy, Compliance Manager
• Network Security: NSGs, Azure Firewall, DDoS Protection
• DevSecOps: Azure DevOps + Defender, GitHub Security
• Data Protection: Azure Key Vault, Microsoft Purview