Azure Cloud SRE - Security Specialist II
Full-time
Remote
United States – Must Work East Coast Hours
Primary Purpose and Goal of Role
We are seeking an Azure Cloud SRE - Security Specialist II with a strong background in Cloud and Application Security within the Microsoft Azure ecosystem. This role is paramount as we persist in setting the highest standards for security across our applications, cloud services, and integrations, with an emphasis on Microsoft Azure and Microsoft 365 Defender environments. The ideal candidate will bring an established history of conducting intensive technical security assessments and efficiently managing security risks.
Responsibilities
- Conduct meticulous security evaluations of our cloud services, focusing on Microsoft Azure and Microsoft 365 Defender, pinpointing vulnerabilities, and suggesting mitigation techniques.
- Collaborate closely with architectural teams to review and optimize the security posture of Azure deployments, ensuring compliance and performance.
- Stay updated with emerging threats, vulnerabilities, and risks pertinent to cloud services, especially within Microsoft Azure and Microsoft 365 Defender landscapes.
- Engineer and deploy security controls within cloud and application designs, endorsing resilient, scalable, and impenetrable solutions.
- Serve as the technical touchstone for cloud security during customer engagements, guiding and supporting on all security facets related to cloud and application security.
- Handle security incident response protocols, offering technical prowess, and implementing protective or corrective actions upon discovery of security breaches or vulnerabilities.
- Handle security incident response protocols, offering technical prowess, and implementing protective or corrective actions upon discovery of security breaches or vulnerabilities.
- Uphold a constructive rapport with 3rd Party Assessment Organizations (3PAOs) to evidence our technical adeptness in security evaluations.
REQUIREMENTS
- Bachelor of Science in Computer Science, Information Security, or a related domain.
- A minimum of 7 years in Information Assurance, emphasizing cloud and application security.
- Must possess the following certifications:
- AZ-500: Microsoft Azure Security Technologies
- MS-500: Microsoft 365 Security Administration
- Additional qualifications such as Security +, CISSP, CCSK, or equivalent are preferred.
- Comprehensive comprehension of security frameworks like ISO 27001, CIS Controls, or similar.
- Demonstrated experience in formulating and executing Information Assurance strategies for new system developments.
- Adept in scripting and automation tools, including PowerShell, Azure CLI, and ARM templates.
- Exceptional communication skills and the capacity to work synergistically with both business and technical stakeholders.
- Acquaintance with GRC tools.
- Established ability to juggle multiple tasks in a dynamic environment.
- Previous experience in a leadership or mentoring role is a bonus.
Quzara LLC is an Equal Employment/Affirmative Action employer. We do not discriminate in hiring based on sex, gender identity, sexual orientation, race, color, religious creed, national origin, physical or mental disability, protected Veteran status, or any other characteristic protected by federal, state, or local law.