Job Title: Lead Cloud Security Architect (Azure)
Location: Toronto, ON (Hybrid)
Job Type: Fulltime
Exp Range 8 - 10 Years• 8+ years of experience in Cybersecurity and Cloud-native Security Services (around 4 to 5 years in Azure)
• 5+ years of experience with Cloud Security Posture Management tools such as Microsoft Defender, Palo Alto Prisma Cloud and DecSecOps tools
• 4+ years of hands-on experience in building and deploying security controls for applications migrating from on-premises into Azure
• 4+ years of experience in deploying & configuring Azure services & resources using IaC tools and Policy-as-Code tools
• Strong experience in building security controls using approaches such as Zero Trust, Defense-in-depth, Secure-by-design etc.
• 4+ years of experience in conducting Cloud Security Assessments and Creating Roadmaps, Designing Security Controls aligning with Security frameworks such as NIST CSF, CSA Cloud Controls Matrix, CIS Benchmarks, Microsoft Cloud Security Benchmark etc. and Regulatory compliance standards such as PCI-DSS, FedRAMP, HIPAA etc.
• Good Knowledge of CNAPP/CWPP tools, Azure Entra ID, Container Security, NextGen Network Firewalls, Web Application Firewalls, Encryption Key Management and Secrets Management
• Good experience and knowledge of Cloud IAM, Cloud Networking, Key Management, Logging and Monitoring services, SIEM, Incident Response, Attack Surface Management and Threat Management
• Very good understanding of Azure Security Reference Architecture, Well-Architected Framework and Industry Best Practices in Cloud Security
• Good experience in gathering security & compliance requirements for Applications migrating from on-premises into Azure environment
• Good understanding of GRC related controls and processes
• Good understanding of misconfigurations, threats, attacks in Azure
• 5+ years of experience in consulting, leading and mentoring teams in Azure Security Architecture, design and implementation in Client Engagements
• Technical leadership skills coupled with strong communication and analytical skills required
• Must have experience in direct customer interaction and stakeholder expectations management
• Highly desirable to have certifications in Cloud Security and Cloud Architecture in Azure or any other Cloud
Bachelor’s degree in computer science or equivalent in related fields
Certification – CISSP
• Very good understanding of Microsoft Security Reference Architecture (MCRA)
• Strong experience with 3rd party tools such as Palo Alto Nextgen Firewalls, Qualys VMDR, CrowdStrike Falcon EDR, Zscaler SASE, Snyk, Aqua CNAPP, Imperva WAF etc. for building Defense-in-Depth Security controls
• Strong experience with SIEM, Incidence Response, Vulnerability Management, Backup and Recovery tools and processes
