Security Engineer

Role: Azure Security Engineer

Experience: 2-6 Years

Location: Jaipur

Job Description

Azure Security Engineer

Cloud Security & Governance:

• Design, implement, and manage security controls within the Azure ecosystem.
• Configure and maintain

  Azure Security Center (Defender for Cloud)

  ,

  Azure Policy

  ,

  Firewall

  ,

  WAF

  ,

  NSGs

  ,

  ASGs

  , and DDoS protection.
• Develop and implement

  Zero Trust Architecture

  within Azure environments.

Threat Detection & Incident Response:

• Operate and fine-tune

  Microsoft Sentinel

  or equivalent SIEM.
• Develop custom detection rules, analytic queries (KQL), and threat-hunting scenarios.
• Design and implement

  SOAR playbooks

  using

  Logic Apps

  to automate response to incidents.
• Lead the triage, investigation, and remediation of security alerts and incidents.

Identity & Access Management:

• Secure identities using

  Azure Entra ID

  ,

  PIM

  ,

  MFA

  , and

  Conditional Access

  .
• Implement least-privilege access and Just-in-Time (JIT) administration.
• Integrate SSO and federated identity for SaaS and on-prem workloads.

Office 365 Security & Compliance:

• Manage and monitor

  Defender for Office 365

  for email, SharePoint, and Teams protection.
• Configure DLP, Safe Attachments, Safe Links, and anti-phishing policies.
• Implement auditing, eDiscovery, and data retention policies.

Vulnerability & Risk Management:

• Use

  Microsoft Defender Vulnerability Management

  or equivalent tools to assess risks in Azure VMs, containers, and PaaS services.
• Collaborate with infrastructure and app teams to resolve security findings.
• Participate in red/blue team exercises, tabletop simulations, and threat modeling.

Compliance & Risk Governance:

• Map security configurations to regulatory standards like

  ISO 27001, NIST, CIS, GDPR, HIPAA

  .
• Maintain documentation for compliance audits.
• Support internal and external security assessments.

Key Skills & Requirements:

• Strong hands-on experience with:

• Microsoft Sentinel

  or other SIEM tools.

• SOAR automation

  with Logic Apps or similar.

• Defender for Cloud

  ,

  Firewall

  ,

  NSG/ASG

  ,

  WAF

  , and

  DDoS

  protection.

• Azure Entra ID

  ,

  PIM

  ,

  MFA

  , and Conditional Access.

• Office 365 Security and Compliance

  tools.
• Proficiency in

  Kusto Query Language (KQL)

  for threat hunting and analytics.
• Scripting knowledge (

  PowerShell

  ,

  JSON

  , or

  ARM/Bicep/Terraform

  ).
• Good understanding of

  Zero Trust

  ,

  Defense in Depth

  , and identity security.
• Familiarity with API integrations for security tools and automation.