Azure Cloud Governance Engineer

JDA TSG is looking for a Customer Engineer (CE) with deep expertise in Azure governance and platform security to guide enterprise customers through secure cloud adoption and operations. In this role, you ll be at the forefront of driving secure deployment practices, governance frameworks, and access control strategies in large-scale Azure environments.

You ll work closely with enterprise customers to provide guidance for scalable Azure PaaS architectures aligning to Microsoft s Cloud Adoption Framework (CAF) and best practices for networking, WAF, and RBAC.

Salary Range: $95,000 - $110,000K based on experience

Location: Remote

Primary Work Includes:

• Guide customers in designing and implementing Azure PaaS governance models, aligning with Microsoft s CAF and Zero Trust principles.
• Assess and configure Azure networking for security, performance, and scalability (VNETs, NSGs, VPN/ExpressRoute, etc.).
• Support clients implementation of Web Application Firewall (WAF) policies across Azure Front Door, Application Gateway, and APIs.
• Guide clients through Architecture and enforcement of RBAC and identity governance policies, ensuring least privilege and compliant access across Azure subscriptions.
• Deliver workshops, security briefings, and architecture sessions to help customers adopt secure Azure PaaS solutions.
• Partner with Microsoft field teams to drive adoption of secure-by-design patterns for cloud-native applications.
• Identify opportunities to optimize platform configurations, reduce risk exposure, and increase automation in cloud governance.
• Capture and share feedback, patterns, and best practices to contribute to Microsoft s broader platform and security evolution.

The experience you ll need to excel in the role:

• 10+ years of overall IT experience
• 7+ years of experience with Azure architecture, cloud governance, or security engineering roles.
• Hands-on experience implementing secure Azure PaaS environments in enterprise-scale deployments.
• A consultative approach with the ability to guide customers through both technical and strategic governance conversations.
• Familiarity with Microsoft Sentinel, Defender for Cloud, or other layered security solutions is a plus.