Position Summary:
The Cloud & Security Operations Engineer plays a critical role in protecting and optimizing the company's hybrid infrastructure across on-premise and cloud environments. This role combines hands-on cloud engineering with cybersecurity operations, ensuring our systems remain secure, compliant, and scalable. The position supports enterprise cloud initiatives, security monitoring, incident response, and infrastructure-as-code deployment while collaborating cross-functionally to improve the overall technology posture. This role requires a high level of integrity, technical depth, and the ability to work independently.
Essential Functions:
· Administer and optimize cloud infrastructure (Azure, Microsoft 365), including resource provisioning, cost management, and performance tuning.
· Own the configuration and monitoring of security tools such as Microsoft Defender, Rapid7, Sentinel One, Rubrik, Fortinet, Proofpoint and Entra ID.
· Monitor and respond to security alerts, potential incidents, and vulnerabilities in real time.
· Maintain and evolve security baselines across hybrid infrastructure using frameworks such as NIST or CIS Controls.
· Deploy infrastructure and security configurations using automation tools like Terraform, Bicep, or PowerShell.
· Manage conditional access policies, identity governance, and secure authentication (MFA, SSO, Entra ID).
· Perform regular vulnerability scans and coordinate remediation with system administrators and development teams.
· Conduct internal security audits, maintain documentation, and assist with external compliance efforts.
· Support hybrid integration projects, including secure API endpoints, cloud-based applications, and DevSecOps tools.
· Participate in disaster recovery planning and periodic testing of security incident response procedures.
· Provide guidance on security best practices during system rollouts or third-party integrations.
· Maintain detailed documentation of configurations, policies, and procedures.
· Provide after-hours support as needed for business-critical issues.
Required Knowledge, Skills, and Abilities:
· Strong working knowledge of Azure and Microsoft 365 infrastructure, including identity and security components.
· Experience with SIEM tools, vulnerability scanning platforms, and cloud security posture management (CSPM).
· Expertise in conditional access, role-based access control (RBAC), and zero trust architecture principles.
· Solid scripting skills for automation (PowerShell, Python, or equivalent).
· Familiarity with modern DevOps and IaC tooling (Terraform, ARM/Bicep templates, GitHub Actions).
· Working knowledge of security and compliance frameworks such as NIST and CIS Controls; experience supporting regulated environments (e.g., PCI, SOC-type controls) is preferred.
· Ability to troubleshoot complex technical issues across cloud, network, and security layers.
· Excellent documentation, project coordination, and cross-functional communication skills
Required Experience and Education:
· Minimum of 4 years of experience in IT operations, including at least 2 years in cloud or security-focused roles.
· Bachelor’s degree in Information Technology, Cybersecurity, Computer Science, or related field (or equivalent experience).
· Experience managing Microsoft Defender, Entra ID, Rapid7, Sentinel One, Fortinet or similar tools in an enterprise setting.
· Hands-on experience with Azure administration and Microsoft 365 security hardening.
· Prior involvement in incident response, cloud security configuration, and identity management.