Key Responsibilities:
-
Enforce and monitor Azure Policy, Secure Score, and compliance standards.
-
Manage Active Directory, Azure AD, MFA/PIM, and RBAC configurations.
-
Utilize Microsoft Defender suite (Cloud, Endpoint, Identity) for threat protection.
-
Perform continuous monitoring, log analysis, and threat detection using Azure Monitor, Log Analytics, and KQL.
-
Conduct security assessments and vulnerability analysis using Azure Security Center and third-party tools.
-
Implement data protection, encryption, key management, and DLP controls.
-
Automate operations using PowerShell, Azure CLI, and ARM templates.
-
Integrate security within DevOps workflows, CI/CD, and IaC.
-
Collaborate with IT Security, Enterprise Architecture, and vendor partners to align security and engineering goals.
-
Lead incident response, threat hunting, and ensure up-to-date defense strategies.
-
Maintain a library of cloud security design patterns for reusable deployment models.