Azure Cloud Security Engineer

We are seeking a skilled and experienced Azure Cloud Security Engineer to join our dynamic team.

The ideal candidate will have a strong background in cloud security, particularly within the Azure ecosystem, and be proficient in using Microsoft Sentinel as a SIEM (Security Information and Event Management) and SOAR (Security Orchestration, Automation, and Response) tool. Additionally, expertise in Microsoft Defender for Endpoint, Microsoft Defender for Cloud, and experience as a SOC (Security Operations Center) Analyst is essential.

As a technical engineer, you will work with vendors, architectural teams and department management to continually improve information technology infrastructure as well as drive the adoption of the latest technologies.

You will work closely with the IT Leadership team and Cyber security team to deliver transformation aligned to a “Cloud First” strategy.

Provide mentoring and training to others both within and outside of the IT Services department.

• Review, recommend and implement security solutions within an Azure cloud environment to meet industry best practice
• Utilise Microsoft Defender for Endpoint to protect and secure endpoints. Perform forensic investigation and analysis and remediation
• Implement and manage security measures using Microsoft Defender for Cloud
• Monitor and respond to security incidents using Microsoft Sentinel
• Develop and maintain security policies, procedures, and standards
• Implement and manage security measures using Azure Policy
• Writing appropriate technical documentation, ensuring documents can be easily understood for auditing and operational purposes
• Perform SOC Analyst duties, including threat detection, incident response, and vulnerability management
• Conduct regular security assessments and audits to ensure compliance with industry standards and best practices
• Collaborate with other IT teams to ensure secure integration of cloud services
• Provide guidance and support for security-related issues and incidents.
• Stay up-to-date with the latest security trends, threats, and technology solutions.
• Generates and presents ideas for improvements to management teams and other team members
• Analyse, detect, identify and correct technical problems and deficiencies, troubleshoot complex security incidents
• Service request completion. Including updating and communicating to customers and stakeholders
• Process automation, procedure creation and implementation
• Provide subject matter expertise to architectural departments to assist in design and implementation of new technologies
• Build and maintain a strong relationship with vendor account and technical teams as well as peers from other General Dynamics Business units

Full details of role found here

Requirements

Technical knowledge in three or more of the following areas:

• Proven expertise in utilising Microsoft Sentinel for SIEM and SOAR for operations
• Strong understanding of Microsoft Defender suite of products and capabilities
• Strong understanding of Azure security services and features (e.g., Azure Security Center, Entra ID, Azure Key Vault, MFA)
• Experience with Microsoft Defender for Endpoint and Microsoft Defender for Cloud
• Experience as a SOC Analyst, including threat detection, incident response, and vulnerability management
• Knowledge of security frameworks and compliance standards (e.g., ISO 27001, NIST, GDPR, NCSC and Secure by Design)
• Understanding of network security, identity and access management, and data protection
• Familiarity with scripting and automation tools (e.g., PowerShell, Python)
• Typically requires a minimum of 2 - 3 years of related experience

Personal Attributes:

• Ability to lead
• Ability to multi-task
• Team worker
• Clear communicator
• Analytical mind, with a problem-solving ethic.
• Enthusiastic and keen to learn
• Customer service focus
• Ability to develop and adhere to best practice/process/policy.
• Can set own priorities
• Can work independently
• Organize/plan tasks and activities
• SC Clearance (required/or obtain as part of the on-boarding)