Cyber Security Architect
Role details
Job location
Tech stack
Job description
Position Overview: This person will be a security architect that will help provide security assessments and threat models for Applications going to the Azure cloud as well as local data centers., To strengthen regional cybersecurity posture, seeking a Cyber Security Architect to deploy, operationalize, and mature application level security capabilities in alignment with the global Architecture & Engineering (AE) strategy. This role serves as a senior technical authority responsible for identifying, assessing, and remediating application security risks while partnering closely with development teams, cloud engineers, and business stakeholders to ensure secure, scalable, and compliant solutions., * Deploy, operate, and mature application security tools, capabilities, and standardized requirements across the region.
- Identify, analyze, and document application level vulnerabilities using structured and repeatable approaches.
- Provide hands on support for secure application design, remediation efforts, and secure SDLC practices.
- Support the deployment, security, and monitoring of applications hosted in Microsoft Azure.
- Secure Azure workloads including App Services, Azure Functions, AKS, and Virtual Machines.
- Architect and review secure network configurations, including NSGs, private endpoints, and firewalls.
- Implement secrets management using Azure Key Vault.
- Leverage Defender for Cloud, Azure Policy, Log Analytics, and Microsoft Sentinel for governance, monitoring, and continuous improvement.
Threat Modeling, Risk Management & Secure Design
- Perform secure profiling and threat modeling using STRIDE, C4 modeling, and MITRE methodologies.
- Develop data flow diagrams and comprehensive threat models for critical applications.
- Translate identified threats into actionable, prioritized security recommendations.
- Track, coordinate, and report on remediation activities and overall application risk posture.
- Communicate risks, mitigation strategies, and compliance readiness to both technical and non technical stakeholders.
Identity, Access & Security Enablement
- Design and guide secure authentication and authorization architectures using:
- OAuth 2.0
- OpenID Connect (OIDC)
- SAML 2.0
- Implement and support integrations with Microsoft Entra ID (Azure AD).
- Advise teams on JWT validation, managed identities, service to service authentication, RBAC, Conditional Access, and secure API authorization. Deliver targeted application security training and awareness sessions to development and engineering teams.
- Apolis2024
Requirements
CISSP is a MUST Azure Certifications or working on completing Azure Certification
Benefits & conditions
$60 - $70 an hour - Full-time, Contract