Cloud Security SME

The Cloud Security SME serves as a hands-on Azure security expert embedded within the platform operations team, working alongside the NOC team to implement security controls, respond to security incidents, and provide deep technical Azure security expertise. This role bridges the gap between security architecture and operational execution, ensuring that security standards defined by the Security Management Lead are properly implemented across the Azure environment. The position requires extensive hands-on experience with Azure security services, strong incident response capabilities, and the ability to work collaboratively with multiple stakeholders and vendors in a fast-paced operational environment. This is a tactical, execution-focused role that complements the strategic security leadership. DUTIES & RESPONSIBILITIESImplement Azure security controls, policies, and configurations based on security architecture and standardsWork day-to-day alongside NOC team providing Azure security expertise and hands-on technical supportConfigure and maintain Azure security services including Defender for Cloud, Azure Sentinel, and Azure MonitorRespond to daily security alerts, investigate incidents, and perform technical security troubleshootingImplement security patches, updates, and vulnerability remediation across Azure infrastructureMonitor Azure Policy compliance, identify violations, and coordinate remediation activities with technical teamsConfigure and manage network security groups, access control lists, and Azure firewall rulesImplement data encryption controls for data at rest and in transit across platform servicesCoordinate security activities between NOC, SOC, Microsoft and other vendorsProvide technical support during security incidents and assist SOC team with Azure-specific investigationsExecute security incident response procedures and document findings for reviewImplement identity and access management controls, manage privileged accounts, and review access permissionsSupport smart solution onboarding by implementing security requirements and validating configurationsPerform daily security monitoring tasks and review security logs for anomaliesFill technical capability gaps that Use Case / Service Providers may have in Azure security implementationTest and validate security controls, backup encryption, and disaster recovery security measuresDocument security configurations, procedures, SOPs, and technical implementationsReceive technical direction from Security Management Lead on security implementation prioritiesSupport Operations Manager with technical oversight of Tasmu Platform & Use Cases security deliverablesSKILLS & ABILITIESExpert-level hands-on experience with Azure security services and cloud security implementationDeep technical knowledge of Azure Defender for Cloud, Azure Sentinel, and Azure Monitor configurationStrong experience with security incident investigation, response, and forensic analysis in Azure environmentsProficiency in implementing network security controls, encryption, and access management in AzureHands-on experience with Azure Policy implementation and compliance monitoringStrong troubleshooting skills and ability to work under pressure during security incidents and onboarding of Use CasesExperience working alongside or with managed service providers and external contractorsExcellent collaboration skills to coordinate security across multiple vendor teamsAbility to translate security architecture into technical implementationProficiency in PowerShell and Azure CLI for security automation and configurationStrong understanding of security compliance frameworks and data privacy requirementsExperience with vulnerability assessment tools and security remediation processesAbility to document technical security procedures clearly and comprehensivelyKnowledge of SIEM operations and security event analysisRequired CertificationsIndustry Security Certifications (minimum 1 required):CISSP (Certified Information Systems Security Professional)CEH (Certified Ethical Hacker)GIAC Security Essentials (GSEC)CompTIA Security+ or CASP+Cloud & Technology Certifications (minimum 1 required):Microsoft Certified: Azure Security Engineer Associate (AZ-500) [Mandatory]Microsoft Certified: Security Operations Analyst Associate (SC-200)Microsoft Certified: Azure Administrator Associate (AZ-104)Palo Alto Networks Certified Network Security Administrator (PCNSA)Palo Alto Networks Certified Network Security Engineer (PCNSE)Preferred Additional CertificationsGIAC Certified Incident Handler (GCIH)Microsoft Certified: Azure Solutions Architect Expert (AZ-305)Palo Alto Networks Accredited Configuration Engineer (ACE)