Azure Security Architect
Full-time
United States – Must Work East Coast Hours
Up to 10% Travel
Primary Purpose and Goal of Role
Key contributor supporting end-to-end Platform application delivery, including Infrastructure provisioning & automation and integration with Continuous Integration/Continuous Development (CI/CD) platforms, using existing and emerging technologies. Read all the job responsibilities with Quzara below.
Responsibilities
- Develop using Azure Cloud Platforms: Azure services, Azure stack edge, IOT Hub/Central, AKS, Azure functions, Vnets, Azure advisor, ARM template
- Effectively consult, plan, and implement solutions utilizing Azure services such as Azure Active Directory, SQL Azure, API Management, Powershell Automation, and Autoscaling
- Design, configure, and deploy using Azure Development Tools such as Azure ARM Portal
- Develop playbooks for automation tools such as Azure CLI, Powershell and Ansible
- Develops and manages proper orchestration techniques related to the system and application automation to migrate workloads to the cloud
- Align standards, frameworks and security with overall business and technology strategy
- Define and implement Security standards for SSDLC working closely with DevOps and business leaders to ensure they are adhered to
- Develops and manages proper orchestration techniques related to the system and application automation to migrate workloads to the cloud
- Gather and analyze requirements from product owners
- Identify security design gaps in existing and proposed architectures and recommend changes or enhancements
- Develop Security Architecture for highly scalable and fault-tolerant applications that adhere to expected security posture standards
- Specify, design, implement, and test features end to end for pertinent cloud and automation technologies
- Implement security best practices for cloud infrastructure
- Implement best practices and principles to enable consistent delivery and enable alignment with long-term direction
- Provide technical and architectural oversight for systems and projects that are reliable, scalable, highly available, and maintainable
- Drive Dev Sec Op models and integrate into existing DevOps
- Identify and communicate current and emerging security threats within DevOps technologies in use
- Identify and implement testing and code review technologies that improve the security posture of implemented systems including static & dynamic code scans
- Work with product owners to develop secure business requirements, develop the security architecture and integrate into the longer-term platform strategy
Requirements
- Bachelor’s degree in Computer Science, Information Technology, or related field required; Master’s degree preferred
- Professional certification in an information security domain such as CISSP, CISM, or CISA preferred
- Agile project management methodology certificate or training preferred
- Microsoft AZ-500 or MS-500 preferred
- Five years minimum Azure Security Architecture experience (IaaS, SaaS, PaaS)
- Three years minimum DoD experience
- Experience provisioning and managing applications in both virtual and cloud infrastructures (Openstack preferred)
- Experience in shell scripting for process automation, preferably utilizing Ansible
- Experience of Jenkins for continuous integration
- Ability to utilize and work with a large variety of open-source technologies and tools
- Data management skills with an emphasis in automation tools
- Container experience in Docker Swarm and/or Kubernetes
- Deep understanding of Cloud Services for Azure, Google, etc. Including, but not limited to, Infrastructure as a Service (VPC/VNET, EC2/Virtual Machines, Security Groups, Network ACL, ELB/ALB/NLB, etc.), Platform as a Service (EBS/S3/Blob, Database, Route53, CDN, etc.), Serverless Services (Functions, etc.), Micro Services (Rockeries, etc.), Security Services (WAF, HSM, KMS, etc.)
- Extensive experience with automation systems, and version control systems such as, but not limited to Saltstack, Ansible, Jenkins, GIT, Bitbucket, Azure management tools such as SecurityCenter, etc.)
- Experience with scripting and coding using, but not limited to, Python, or PowerShell, Bash
- Proficiency with Azure CLI and SDKs
- Working knowledge of IP networking, VPNs, DNS, load balancing and firewalling
- Experience in documenting security controls for DevOps and Cloud environments using industry standard guidelines such as Center for Internet Security (CIS), Cloud Security Alliance (CSA) in conjunction with business requirements
- Knowledge of current and emerging DevOps and Cloud security trends
- Authorized to work in United States without the need for visa sponsorship now or in the future
- Ability to solve complex problems spanning multiple technologies and disciplines
- Demonstrates leadership through ownership of issue analysis and resolution efforts and commitment to resolve technical issues in a 24x7 SLA-bound operating environment
- Collaborates with team members to drive a service-oriented approach, with the ability to focus on and deliver assigned tasks in a timely manner
- Fosters innovation through a methodical approach to change execution, implementation, and documentation
- Communicates effectively with all audiences to provide expert advice on systems-related topics
Quzara LLC is an Equal Employment/Affirmative Action employer. We do not discriminate in hiring based on sex, gender identity, sexual orientation, race, color, religious creed, national origin, physical or mental disability, protected Veteran status, or any other characteristic protected by federal, state, or local law.