Strong expertise in Azure-native networking components:
Virtual Networks (VNets)
Network Security Groups (NSGs)
Azure Firewall
Application Gateway
Load Balancers
VPN Gateway and ExpressRoute
Ability to secure and segment these components effectively in a cloud-native environment.
Understanding of key frameworks and principles:
CIS Benchmarks
Zero Trust Architecture
Shared Responsibility Model
Experience securing:
Identity and Access Management (IAM)
Storage accounts, databases, and application services in Azure.
Proven ability to:
Conduct penetration tests on Azure-hosted resources.
Identify, exploit, and remediate cloud-specific vulnerabilities.
Familiar with tools such as:
Microsoft Defender for Cloud
Azure Security Center
Burp Suite, Metasploit, or other relevant toolsets.
Microsoft Certified: Azure Security Engineer Associate
Certified Information Systems Security Professional (CISSP)
Additional cloud security certifications are a plus (e.g., CCSP, CompTIA Cloud+, OSCP for cloud)
Hands-on experience with:
Azure Sentinel
Azure Monitor
Capable of configuring and managing SIEM/SOAR solutions, logs, alerts, and security automation for rapid detection and response.
Experience with:
Azure Resource Manager (ARM) templates
PowerShell, Python, or Bash
Ability to automate security controls and infrastructure configurations for consistency and scalability.
Understanding of regulatory and compliance requirements in cloud environments:
GDPR, HIPAA, PCI DSS, etc.
Experience aligning architecture with security policies, audit controls, and governance frameworks.
Hourly based
Sacramento County,California,United States
Sacramento County,California,United States