This role is responsible for leading application security operations, strengthening Azure cloud security posture, and driving vulnerability remediation efforts across cloud and hybrid environments.
Job Duties
Work with application security tools (SAST, DAST,)
Integrate security testing into CI/CD pipelines alongside Development and DevOps teams
Triage, prioritize, and drive remediation of application security vulnerabilities
Oversee container security by maintaining and updating secure base images
Work on Microsoft Defender for Cloud, Entra ID, and SIEM/SOAR solutions
Assess and harden Azure IaaS and PaaS environments and network configurations
Define and enforce infrastructure security policies using Terraform, ARM templates, and Bicep
Conduct ongoing vulnerability assessments and lead remediation efforts across infrastructure
Skills & Experience
Required
5+ years of experience in application security and/or infrastructure security
SAST, DAST, and SCA tools
Strong expertise in Microsoft Azure security services (Defender for Cloud, Entra ID, SIEM/SOAR)
Terraform, ARM templates, or Bicep
Proven experience in vulnerability assessment and remediation processes
Knowledge of secure CI/CD pipeline integration practices
Experience with identity and access management (IAM)
ISO security framework experience or certification
Desired
CISSP (Certified Information Systems Security Professional)
