Job Title: Cloud Security Engineer (Azure)
Fully Remote
Employment Type: Contract-to-Hire
***This is a W2 Opportunity ONLY!!! No C2C!- USC and GC Candidates ONLY
Job Overview
We are seeking an experienced Cloud Security Engineer to lead the implementation and management of enterprise cloud security initiatives within a Microsoft Azure environment. This role will be responsible for designing, implementing, and maintaining security controls that protect cloud infrastructure, applications, and data while ensuring compliance with regulatory and organizational security standards. The ideal candidate has strong hands-on Azure security experience, expertise in identity and access management, and a deep understanding of Zero Trust architecture, cloud compliance frameworks, and security operations.
Key Responsibilities
- Design, implement, and maintain security controls across Microsoft Azure cloud environments.
- Analyze and monitor cloud cybersecurity and privacy policies, compliance requirements, and system authorization activities.
- Map existing security controls to compliance frameworks including NIST, FedRAMP, and FISMA.
- Implement and manage Azure security solutions including Microsoft Sentinel, Entra ID, Microsoft Defender suite, and other Microsoft security platforms.
- Lead the implementation and adoption of Zero Trust Architecture across cloud infrastructure and applications.
- Conduct security architecture reviews and security impact assessments for cloud and software development initiatives.
- Coordinate vulnerability management, risk mitigation, and remediation efforts across cloud infrastructure and applications.
- Assist with the design and deployment of security controls within highly regulated cloud environments.
- Support incident response activities by identifying vulnerabilities, analyzing attacker tactics and techniques (TTPs), and implementing preventative security measures.
- Collaborate with infrastructure, application development, compliance, and business teams to strengthen the organization's cloud security posture.
- Ensure cloud environments align with enterprise security policies, governance standards, and regulatory requirements.
Required Qualifications
- Bachelor's degree in Information Technology, Cybersecurity, Computer Science, or a related field (Master's preferred).
- 5+ years of experience in information security, cybersecurity, or cloud security engineering.
- 5+ years of hands-on experience securing Microsoft Azure environments.
- Experience implementing and managing Azure security policies, governance, and compliance initiatives.
- Strong knowledge of Identity and Access Management (IAM), Multi-Factor Authentication (MFA), Single Sign-On (SSO), Identity Federation, and Privileged Access Management (PAM).
- Experience configuring and administering Azure security services and acting as the lead security resource for Azure environments.
- Experience performing network and application vulnerability assessments within Azure.
- Familiarity with securing CI/CD pipelines, application security testing, and software scanning tools.
- Strong understanding of Windows and Linux security within cloud environments.
Preferred Qualifications
- Experience supporting government or highly regulated environments.
- Experience maintaining FedRAMP High and FISMA compliance.
- Azure Government (GovCloud) experience.
- Experience working directly with external clients, auditors, and executive leadership.
- Relevant certifications such as:
- CISSP
- CCSP
- Microsoft Azure Security Engineer Associate (AZ-500)
- Azure Solutions Architect Expert
- AWS Security Specialty
- Google Professional Cloud Security Engineer
Preferred Experience
- Designing and implementing enterprise cloud security architectures.
- Securing Microsoft 365 environments.
- Supporting cloud security compliance audits.
- Building and maintaining cloud governance frameworks.
- Leading enterprise security initiatives across Azure cloud environments.
- Collaborating with infrastructure, application development, compliance, and security operations teams to improve overall cloud security posture.