Job Role: Azure Security
Experience: 5+ years
Location: Abu Dhabi, UAE (Onsite)
Contract Duration: 1 year (extendable)
Key Responsibilities
- Design, implement, and manage security controls in Microsoft Azure to protect cloud workloads and data.
- Perform Cloud Security Posture Management (CSPM) assessments and remediation to ensure compliance with regulatory and security frameworks (CIS, NIST, ISO 27001, etc.).
- Configure and manage Azure Security Center, Microsoft Defender for Cloud, and Sentinel SIEM for threat detection and response.
- Implement Identity and Access Management (IAM) using Azure AD, Conditional Access Policies, and Privileged Identity Management (PIM).
- Ensure security best practices for Azure Networking, Firewall, NSG, WAF, and DDoS Protection.
- Work with Azure Policy and Blueprints to enforce governance and compliance.
- Implement Data Security measures including encryption, DLP, and Rights Management.
- Perform security assessments, vulnerability management, and risk analysis across Azure workloads.
- Automate security operations using Azure PowerShell, Terraform, or Bicep.
- Investigate and respond to security incidents, alerts, and anomalies in Azure.
- Collaborate with cross-functional teams to integrate security within CI/CD pipelines and DevSecOps practices.
- Develop documentation, reports, and security playbooks for operational and compliance needs.
Required Skills & Qualifications
- 5+ years of hands-on experience in Azure Security and CSPM.
- Strong understanding of Azure cloud security architecture, workloads, and services.
- Experience with Microsoft Defender for Cloud, Azure Sentinel (SIEM), and Microsoft Defender XDR.
- Expertise in Azure AD, RBAC, and Just-In-Time (JIT) Access.
- Knowledge of Azure Networking security (NSG, WAF, Azure Firewall, DDoS Protection).
- Hands-on experience with security automation (PowerShell, Terraform, Bicep, ARM Templates).
- Strong understanding of cloud compliance frameworks (CIS, NIST, ISO 27001, GDPR, etc.).
- Experience in incident detection, response, and forensic investigations in Azure.
- Understanding of Zero Trust principles and Cloud Native Security.
- Experience integrating security within CI/CD and DevSecOps.
Skills: ddos,blueprints,terraform,vulnerability management,privileged identity management (pim),cloud compliance frameworks,encryption,azure ad,siem,web application firewall (waf),sentinel siem,conditional access policies,network security groups (nsg),devsecops,firewall,data loss prevention (dlp),security information and event management (siem),ci/cd,azure security,cloud security posture management (cspm),azure networking,cspm,microsoft defender for cloud,azure,azure powershell,bicep,azure security center,rights management,waf,data security,security assessments,ddos protection,azure sentinel,identity and access management (iam),azure policy,azure cloud security,rbac,risk analysis,microsoft defender
