Key skills
AzureCloudKubernetesLinuxNode.jsSQLVaultAKSLogic AppsAzure ADEntra IDCI/CDCommunicationNetwork SecurityCloud SecurityWAFFirewall
About this role
Role Overview
- Lead vulnerability remediation across a wide set of Azure and hybrid platforms including: o Azure VMs (Windows/Linux) o AKS clusters, node pools, and container registries o App Services, Function Apps, Logic Apps o Storage Accounts, Databases, Key Vaults, Networking o Container images (ACR) and CI/CD pipelines
- Review and guide fixes code-related vulnerabilities (SAST/DAST results, secrets, insecure dependencies).
- Build detailed hardening guides covering OS, Azure services, Kubernetes, networks, and identity layers.
- Work closely with infra, DevOps, SRE, and app teams to implement hardening recommendations in a structured, repeatable way.
- Drive large-scale backlog remediation—prioritize issues, define workflows, and ensure real progress week over week.
- Provide industry-standard best practices to uplift the client’s overall security maturity, including cloud posture management, workload isolation, network security, identity hygiene, and governance.
- Host daily client calls to walk through status, blockers, upcoming remediation tasks, and architectural considerations.
- Document architecture gaps, remediation approaches, compliance alignment, and long-term improvement plans.
- Act as senior advisor and escalation point for all security remediation streams.
- Coach and mentor teams executing remediation to ensure consistency and quality.
Requirements
- 12–15+ years of combined experience in security architecture, cloud security, infrastructure security, or application security.
- Deep hands-on experience with Azure security across: o Compute (VMs, VMSS) o Containers (AKS, ACR) o PaaS services (App Services, Function Apps, API Management) o Identity & Access (Azure AD/Entra ID, Managed Identities, RBAC) o Networking security (NSGs, ASGs, WAF, Private Endpoints, Firewall) o Data security (Key Vault, Storage, SQL, CosmosDB) o Defender for Cloud and Azure Policy
- Strong exposure to Windows and Linux hardening.
- Ability to drive remediation across infrastructure, application layers, and cloud-native services.
- Strong architectural understanding of how vulnerabilities originate, how they propagate across cloud resources, and how to design long-term fixes.
- Experience resolving complex remediation backlogs in enterprise-scale environments.
- Excellent communication skills and confidence to lead daily discussions with senior client stakeholders.
- Strong documentation skills—ability to create clear hardening guides, runbooks, architectural diagrams, and remediation plans.
Tech Stack
- Azure
- Cloud
- Kubernetes
- Linux
- Node.js
- SQL
- Vault