Azure Security Architect

Wedbush Securities is one of the largest securities firms and investment banks in the nation. We provide innovative financial solutions through our Wealth Management, Capital Markets, Futures and Advanced Clearing & Prime Services divisions. Headquartered in Los Angeles, California with over 100 offices and more than 80 correspondent offices, our commitment to providing relentless, customized service is the foundation of our consistent growth.

Our team is looking for an Azure Security Architect to be responsible for designing, implementing, and managing security solutions within Microsoft Azure cloud environments and Web Application Firewalls (WAF). focuses on protecting cloud-based applications and infrastructure from cyber threats, ensuring compliance with security standards, and maintaining robust security postures for organizational assets.

Responsibilities include, but are not limited to:

Configure and manage Azure security features including Security Center, Sentinel, and Active Directory

Implement and monitor network security controls such as NSGs, Azure Firewall, and virtual network settings

Conduct risk assessments and vulnerability scans across Azure infrastructure and applications

Design and enforce access policies, encryption standards, and key management using Azure Key Vault

Deploy and maintain WAF solutions to protect web applications from threats like XSS, SQL injection, and DDoS

Develop and fine-tune WAF rules to balance protection and minimize false positives

Investigate and respond to security incidents using Azure Sentinel, WAF logs, and telemetry data

Ensure compliance with regulations such as GDPR, HIPAA, PCI-DSS, and implement governance via Azure Policy

Collaborate with DevOps and IT teams to embed security into CI/CD pipelines and development workflows

Maintain documentation of security procedures, incident responses, and lessons learned

Perform other tasks and duties as required and assigned Experience and Skills

Bachelor's Degree from an accredited university

5+ years of experience in cloud security

2+ years of experience in Microsoft Azure and WAF technologies

Strong analytical and problem-solving skills with a high level of attention to detail

Hands-on experience with WAF solutions, such as Azure Application Gateway, Azure Front Door, or third-party WAF platforms (e.g., F5, Imperva, Cloudflare)

Proficiency in network security concepts, including firewalls, VPNs, and intrusion detection/prevention systems (IDS/IPS).

Familiarity with scripting and automation tools (e.g., PowerShell, Python, or Azure CLI) for security configuration and monitoring

Experience with containerization and orchestration tools (e.g., Docker, Kubernetes)

Ability to prioritize daily work flow and multi-task to meet tight deadlines in a fast-paced environment Job Benefits

As part of our overall compensation package, Wedbush Securities offers an array of diverse benefits to all our colleagues. We believe that providing competitive benefit options yields the advantageous reward of establishing a healthy and inclusive foundational work culture.

Comprehensive medical, dental, and vision coverage with multiple health plan options for you and your family

Health Savings Account with company-sponsored contributions

Flexible Spending Accounts (FSA) traditional and dependent care

Pre-Tax Commuter Benefits

401(k) plan with discretionary, competitive company matching and profit-sharing contributions

Tuition reimbursement up to $5,250/year

3 weeks of Paid Time Off

2 weeks of Paid Sick Time (may vary by location)

10 Paid Holidays

Charitable Donation Matching Contributions

Paid Leave (Parental Bonding, Military, Jury Duty, Volunteer Time Off, Disability, etc.)

FINRA License Sponsorship

Travel & Employee Assistance and Employee Discount Programs

The reasonable estimate of the compensation range for this role has not been adjusted for the applicable geographic location. A reasonable estimate of the current hiring range is $130,000- $160,000. Colleagues may be eligible for additional, discretionary incentive compensation based on the colleague's and the firm's performance. Decisions regarding compensation are determined on a case-by-case basis and are dependent on a variety of factors including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs.

Wedbush Securities (WS) is proud to be an Equal Employment Opportunity employer. WS does not discriminate based on race, religion, color, creed, sex, sexual orientation, gender, gender identity or expression, national origin, ancestry, citizenship status, registered domestic partner status, uniform service member status, marital status, pregnancy, age, medical condition, disability, genetic information, family care or medical leave status, or any other consideration made unlawful by applicable federal, state, or local laws, or on the basis that an applicant or Colleague is perceived to have these characteristics or is associated with someone who is perceived to have these characteristics. WS aims to foster a culture of inclusion where all Colleagues are valued for their unique contributions to the firm as well as provided equal opportunities to succeed.

Wedbush uses E-Verify, an Internet-based system, to confirm the eligibility of all newly hired employees to work in the United States. Learn more about E-Verify, including your rights and responsibilities here

This position is subject to various laws or regulations that impose restrictions or prohibitions for employment with Wedbush due to criminal history. Those laws or regulations include but are not limited to, the following: Securities Exchange Act of 1934 (SEA) Rule 17a-3, et. seq,, Financial Industry Regulatory Authority (FINRA) Rules 3110(e), Rule 4530(a), etc., and FINRA Regulatory Notice 07-55.