Key skills
Azure security engineeringAzure AD (Entra ID)Azure SentinelAzure DefenderAzure MonitorAzure Key VaultIdentity and Access Management (IAM)Multi-Factor Authentication (MFA)Single Sign-On (SSO)FederationPrivileged Access Management (PAM)ICAMAuthentication and authorization frameworksVulnerability assessment in AzureIncident responseCloud security complianceZero Trust architectureFedRAMP complianceAzure DevOps securityCISSPCISMCCSPMicrosoft SC-100Microsoft SC-300Microsoft AZ-500CrowdStrike FalconFISMA complianceAWS certificationsGCP certificationsAWSAzureGCPVaultIAMAzure DevOpsAzure ADEntra IDSSOCloud SecurityZero Trust
About this role
Theoris is a company focused on fostering personal and professional growth, and they are seeking an Azure Security Engineer to maintain compliance and enhance security posture in a cloud environment. This role involves supporting the migration of Treasury applications to Azure while ensuring adherence to FedRAMP and Zero Trust architecture.
Responsibilities:
- Maintain and enhance Azure cloud security compliance and audit readiness
- Perform architecture reviews and guide security-related design decisions
- Implement and manage:
- IAM (Entra ID / Azure AD)
- Posture management and workload protection
- SIEM/SOAR (e.g., Azure Sentinel)
- Application security testing
- Monitor cybersecurity policies, compliance artifacts, and system authorization
- Map security controls to regulatory/compliance requirements (FedRAMP, etc.)
- Integrate Zero Trust architecture into cloud solutions
- Assess vulnerabilities and provide incident response support
- Support SOC audits and collaborate with auditors to ensure compliance
- Configure and manage security tools (Defender, Sentinel, Application Gateway, etc.)
- Implement privileged access controls, payment security controls, and audit trails
Requirements:
- 5+ years of Azure security engineering experience
- Strong expertise in Azure security tools: Azure AD (Entra ID), Azure Sentinel, Defender, Monitor, Key Vault
- Deep knowledge of: IAM, MFA, SSO/Federation, Privileged Access Management (PAM), ICAM
- Authentication & authorization frameworks
- Vulnerability assessment/testing in Azure
- Continuous diagnostics, monitoring, alerting, and incident response
- Experience maintaining compliance in cloud security environments
- Hands-on experience implementing Zero Trust architecture
- Familiarity with FedRAMP or similar regulated environments
- Experience securing Azure DevOps and application/infrastructure stacks
- Bachelor's degree in a technical field (Master's preferred)
- Security certifications: CISSP, CISM, CCSP
- Microsoft certifications: SC-100, SC-300, AZ-500
- Experience with CrowdStrike Falcon (EDR for Azure)
- Knowledge of FISMA compliance
- Multi-cloud certifications (AWS/GCP)