Information Security IV

Candidates requiring visa sponsorship now or in the future are not eligible to apply for this opportunity. C2C or 1099 not available for this opportunity! Potential candidates will need to have the ability to work W2 on Prominents’ payroll. Prominent is helping our client add an Azure Cloud Security Engineer. This is an onsite contract to hire. The successful candidate will have both hands-on expertise along with architectural ability to safeguard our clients’ Azure infrastructure What You Will Do • Design Azure Cloud Security Solutions by leading architecture reviews for decision records and covering IAM (Entra ID/Azure Active Directory), posture management, workload protection, SIEM/SOAR, and application testing. • Architectural Runway and Collaboration: • Create infosec requirements for infrastructure and app development. • Collaborate with agile teams to meet security needs. • Continuous Monitoring and Compliance: • Monitor cybersecurity policies, compliance artifacts, and systems authorization. • Map security controls to compliance requirements. • Implement and integrate Azure Zero-Trust Architecture into cloud solution design. • Risk Mitigation and Vulnerability Remediation through coordinated risk reduction efforts for applications and infrastructure. • Deploy FedRAMP High hybrid cloud solutions, integrating on-premises components. • Assess vulnerabilities and provide incident support. What You Need • Azure Expertise including Microsoft Azure Cloud experience (GovCloud preferred). • Familiarity with Azure security tools/platforms (e.g., Azure AD, Sentinel, Defender, Monitor, Key Vault). • Bachelor’s degree in a technology field (Master’s degree preferred). • 5+ years of cyber-related experience in a commercial environment with Azure, focusing on technical information security and risk management. • Identity Access and Management concepts (including multifactor authentication and SSO/Federation). • Privileged Access Management. • Vulnerability testing for Azure systems. • Understanding of CI/CD pipelines and software scanning. • Cloud Security Domains including demonstrated expertise in Information Security and Risk Management across Windows and Linux. • Familiarity with key domains: • Identity, Credential, and Access Management (ICAM). • Authentication and Authorization (including SSO and Identity Federation). • Zero-Trust Model. • Defense-In-Depth. • Governance and Compliance. • Data Security. • Operating System Security. • Network Layer Protection. • Continuous Diagnostics and Mitigation, Alerting, Audit Trail, and Incident Response. • Cloud Core Platform (Compute, Storage, Networking). Preferred Skills • INFOSEC Certifications: CISSP, CCSP, CISM. • Azure/AWS/Google Training and Certification. • Microsoft Certifications/Exams (recommended): Sc-100 Cybersecurity Architect, Sc-300 Identity and Access Administration, AZ-500 Azure Security Engineer. • Crowdstrike Falcon EDR for Azure. • Managing/maintaining FISM.