Azure Cloud Security Architect, London

Azure Cloud Security Architect, London/Remote, £730/day (Inside IR35) A good client of ours, a leading digital consultancy is currently looking to bring on a Cloud Security Architect for an initial 3 month project. This role will be working for one of their prestigious end clients who are based in the heart of London. The successful candidate will have extensive experience working with Azure as well as security services. HYBRID - 3 DAYS PER WEEK IN LONDON Responsibilities: Scope, design, build and operate Azure and multi-cloud security services that multiple engineering teams can use within their products to help them deliver value faster, reliably, and securely. Defining the High-level and low-level security architecture design and solutions for a project or programme aligned to business and functional requirements. Designing secure system architectures through the application of regulations, policies, standards and procedures to meet user needs while managing business and security risks. Develop, test, and deliver Security Policy as code for a variety of Public Cloud compute services and Container platforms leveraging native services. Understand industry standard controls such as CIS/NIST/GDPR/ISO/CSA CCM and convert them into technical requirements for engineering teams. Support other architects to make design choices that will scale and be easy to operate within Cloud services and provide guidance on security/performance/operational constraints. Working to deliver leading edge solutions in identity management, network and infrastructure protection, cloud security, security monitoring, network segregation, etc., to defend against some of the most advanced threats and capable threat actors. Working very closely with application development teams to enable secure coding practices and implement product feature pipelines and integration with various SAST, SCA and DAST tools. Foster a culture of teamwork by collaborating with technical and business teams to ensure seamless coordination. Reviewing the current state of security measures and recommending and implementing enhancements. Securing applications and infrastructure, and ability to find and resolve vulnerabilities. Research and leverage modern technologies to meet product requirements, compliance, and controls. Deep understanding of cloud-based Key Management services and their integration with various tooling and applications. Embed DevSecOps practices ensuring quality and compliance for the infrastructure code. Experience: 8+ years in Cloud Infrastructure Engineering/platform Engineer/Security Engineer role, deploying and maintaining multi-cloud foundation services (aka Landing zone) and/or container orchestrator platforms. Ability to create threat model (STRIDE/MITRE ATT&CK) and define application controls/mitigations. Experience in SIEM & SOAR (security information and event management (SIEM) and security orchestration, automation, and response (SOAR). Experience with Rapid7 SIEM tooling is a bonus. Ability to quickly learn new platforms, languages, tools, and techniques as needed to meet project requirements.

#J-18808-Ljbffr