Senior Cloud Assurance Specialist

job summary:

This is for an Azure Implementation Project. Candidate should be Azure focused. Will be the compliance expert for this group as they continue to implement Azure across the org. Will be working closely with Moody's compliance, assurance and corporate control teams to ensure project success and smooth outcomes.

location: Charlotte, North Carolina

job type: Contract

salary: $75 - 85 per hour

work hours: 9am to 5pm

education: Bachelors



responsibilities:

Key Responsibilities As a key leader and architect within the AI Cloud Engineering team, you will:

• Architect Security Controls: Design and define the technical implementation of security controls within Azure, interpreting and mapping corporate Risk and Control Self-Assessments (RCSAs) and industry frameworks (e.g., NIST, DORA) to cloud services and configurations.
• Drive IaC Security: Partner directly with Cloud Engineers (Azure, Terraform, GitHub Actions) to embed security and compliance checks directly into the IaC and CI/CD pipelines, ensuring control implementation is automated, repeatable, and non-negotiable.
• Define Assurance Automation: Serve as the subject matter expert to define clear, technical requirements for automating the collection and production of audit evidence and continuous monitoring data from Azure using tools like Azure Policy, Datadog, Grafana, or equivalent solutions.
• Lead Compliance Integration: Collaborate closely with Internal Compliance and Audit teams to clarify requirements, provide technical context, and act as the primary translator, bridging the gap between control mandates and technical cloud architecture.
• Establish Repeatable Processes: Design and document repeatable, scalable processes and standards for demonstrating continuous compliance and auditability across the Azure environment.
• Consult and Innovate: Provide expert consultation on emerging Azure services and IaC practices, ensuring security and compliance are inherent in all architectural decisions.
• Support Audit Preparation: Prepare and present technical documentation and automated evidence artifacts to support internal and external audits, detailing the efficacy of the automated control environment.

Required Qualifications

7+ years of progressive experience in Information Security, IT Audit, GRC, or Risk Management, with a focus on enterprise-level architecture.

4+ years of hands-on experience as a Cloud Security Architect or Senior Engineer specializing in assurance, compliance, and security within a major public cloud platform (Azure required).

Deep expertise in translating complex regulatory, policy, or control frameworks (e.g., NIST, DORA, SOC 2) into specific, actionable cloud technical configurations and security blueprints.

Demonstrated ability to design and implement security controls using Infrastructure as Code (Terraform) and integrate security gates into CI/CD pipelines (GitHub Actions).

Strong analytical skills with proven experience defining and implementing requirements for automated audit evidence collection and continuous compliance reporting.

Excellent communication skills with the ability to articulate technical security and compliance concepts to both engineering teams and non-technical stakeholders (Compliance, Audit, Leadership).

Familiarity with enterprise collaboration tools (Jira, Confluence).

Preferred Qualifications

Certification such as AZ-500 (Azure Security Engineer Associate) or Azure Solutions Architect Expert.

Experience with cloud security posture management (CSPM) tools like Wiz or similar.

Direct experience working in a highly regulated industry (e.g., Financial Services, Healthcare).

A strong understanding of data governance and security principles specific to AI/ML workloads.

Expertise in leveraging data visualization/reporting tools (e.g., Datadog, Grafana) for compliance dashboards and metrics.

qualifications:

Required Qualifications

7+ years of progressive experience in Information Security, IT Audit, GRC, or Risk Management, with a focus on enterprise-level architecture.

4+ years of hands-on experience as a Cloud Security Architect or Senior Engineer specializing in assurance, compliance, and security within a major public cloud platform (Azure required).

Deep expertise in translating complex regulatory, policy, or control frameworks (e.g., NIST, DORA, SOC 2) into specific, actionable cloud technical configurations and security blueprints.

Demonstrated ability to design and implement security controls using Infrastructure as Code (Terraform) and integrate security gates into CI/CD pipelines (GitHub Actions).

Strong analytical skills with proven experience defining and implementing requirements for automated audit evidence collection and continuous compliance reporting.

Excellent communication skills with the ability to articulate technical security and compliance concepts to both engineering teams and non-technical stakeholders (Compliance, Audit, Leadership).

Familiarity with enterprise collaboration tools (Jira, Confluence).

Preferred Qualifications

Certification such as AZ-500 (Azure Security Engineer Associate) or Azure Solutions Architect Expert.

Experience with cloud security posture management (CSPM) tools like Wiz or similar.

Direct experience working in a highly regulated industry (e.g., Financial Services, Healthcare).

A strong understanding of data governance and security principles specific to AI/ML workloads.

Expertise in leveraging data visualization/reporting tools (e.g., Datadog, Grafana) for compliance dashboards and metrics.

Equal Opportunity Employer: Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other legally protected group status.

At Randstad Digital, we welcome people of all abilities and want to ensure that our hiring and interview process meets the needs of all applicants. If you require a reasonable accommodation to make your application or interview experience a great one, please contact

Pay offered to a successful candidate will be based on several factors including the candidate's education, work experience, work location, specific job duties, certifications, etc. In addition, Randstad Digital offers a comprehensive benefits package, including: medical, prescription, dental, vision, AD&D, and life insurance offerings, short-term disability, and a 401K plan (all benefits are based on eligibility).

This posting is open for thirty (30) days.