Enterprise Security Architect - Azure Infrastructure
Description:
Position: Enterprise Security Architect - Azure Infrastructure
Duration of Project: 3 weeks
Location/Address: 100% Remote
Interview: Video
Requirements:
The Enterprise Security Architect is a senior technical resource responsible for designing, assessing, and improving the security posture of our Azure-based infrastructure. This role leads vulnerability assessment activities, evaluates current and target-state architecture, and develops a prioritized remediation roadmap that aligns with business risk, compliance requirements, and operational realities.
Key Responsibilities:
Lead and coordinate enterprise-wide vulnerability assessments focused on Azure infrastructure and related services.
Analyze existing cloud and hybrid architecture to identify security gaps, misconfigurations, and control weaknesses.
Evaluate, design, and recommend infrastructure security controls (network segmentation, identity and access management, encryption, monitoring, logging, etc.).
Develop a prioritized, risk-based remediation roadmap and work with engineering and operations teams to drive execution.
Establish security architecture standards, patterns, and reference designs for Azure workloads.
Partner with infrastructure, application, and DevOps teams to embed security into solution design and cloud migrations.
Provide subject-matter expertise on Azure security capabilities (e.g., Defender for Cloud, Sentinel, Key Vault, NSGs, firewalls, policies).
Monitor emerging threats and best practices; continuously improve security architecture and processes.
Communicate findings and recommendations to technical and non-technical stakeholders, including leadership. Qualifications:
Bachelor's degree in Computer Science, Information Security, Engineering, or related field; equivalent experience considered.
8+ years of IT/security experience with at least 4+ years focused on cloud security, including Azure.
Deep expertise in Azure infrastructure security, including:
Identity and access management (AAD/Entra ID, RBAC, PIM)
Network security (NSGs, ASGs, Azure Firewall, VPN/ExpressRoute, WAF)
Data protection (encryption at rest/in transit, Key Vault, secrets management)
Security monitoring and incident detection (Defender for Cloud, Sentinel, logging, SIEM integration).
Proven experience conducting vulnerability assessments and translating findings into actionable, prioritized remediation plans.
Strong understanding of security frameworks and standards (e.g., NIST, ISO 27001, CIS Benchmarks) and how to apply them in Azure.
Demonstrated ability to design secure architectures for cloud and hybrid environments, including governance and policy enforcement.
Excellent analytical, documentation, and communication skills, with the ability to influence and lead across teams.
Relevant certifications strongly preferred (e.g., AZ-500, SC-100, CISSP, CCSP, or equivalent).
#TB_EN
#ZR
#Linkd
Why TalentBurst?
At TalentBurst, we deliver more than talent, we deliver outcomes. We partner with you to move quickly and connect you to opportunities aligned with your skills and long term growth.
Backed by precision, transparency, and results, we connect top talent with leading organizations through trusted partnerships.
We offer competitive compensation and comprehensive benefits, including medical, dental, vision, and retirement options.
TalentBurst is an equal opportunity employer committed to an inclusive and diverse workforce.