Role: sr cloud security engineerremotejob description summary: we operate at the heart of the digital transformation of our business. Our team is responsible for the cyber-security architecture and data protection for our global organization. We focus on ensuring the security and improvement of our identity and access management tools and policies across the business. This position designs, programs, documents, tests, and fixes bugs involved in creating and maintaining applications and frameworks involved in a software release lifecycle resulting in a digital product. Deep technical expertise within a field. Has comprehensive knowledge of underlying principles, approaches and methodology.essential responsibilities:- developing, implementing, and managing azure policies to enforce governance and compliance standards across the organization's azure environments
- providing technical guidance and support to application teams to ensure policy compliance during application deployments
- monitoring and auditing azure policy compliance, investigating policy violations, and providing remediation guidance to ensure continuous adherence to security standards
- leading small development team and managing end to end execution of software development in the azure space
- gathering user requirements and understanding use cases, design documents, and driving implementation in accordance with project and platform goals.required qualifications:- have a bachelor’s degree from an accredited university or college with overall 7 years of experience.
- have 4 years of experience in cyber security engineering.
- be an expert with microsoft azure, including proficiency in azure policy, azure resource manager, and azure governance
- be very proficient with software development/engineering. Be able to design, test and implement solutions through code and programming like python or java.
- be an expert with scripting and automation languages (e.g., python, powershell, azure cli, json) to author and manage azure policies
- have strong skills in identifying the pain areas of cloud security and automating cloud security workloads to improve azure governance
- have a thorough understanding of cicd and devsecops to implement and manage azure policies and automations
- have a thorough understanding of power platform, arm templates and bicep.
- have experience with grc frameworks (i.e., iso27001, nist etc.)