Cloud Security Architect at ELITS designing secure cloud environments and managing cloud security policies for business objectives and compliance requirements.
Responsibilities
Cloud Security Architecture - Design and implement secure cloud infrastructures using Microsoft Azure and Microsoft 365 services, ensuring they meet security, compliance, and business requirements.
Identity and Access Management - Architect and manage secure Azure Active Directory (AAD) solutions, including multi-factor authentication (MFA), conditional access, and identity protection policies to secure user identities and access.
Cloud Security Best Practices - Leverage Azure Security Center, Microsoft Defender, and other tools to establish best practices for securing cloud environments, including vulnerability management, threat detection, and incident response.
Compliance & Governance: Ensure that all cloud architectures comply with industry regulations and internal security policies, including frameworks like GDPR, ISO 27001, SOC 2, HIPAA, and more. Auditing for compliance.
Risk Management: Identify potential security risks in cloud services and design mitigation strategies. Collaborate with risk management teams to assess threats, vulnerabilities, and implement corrective actions.
Cloud Security Tools, Automation, Scripting, and Reporting: Implement cloud security tools such as Azure Sentinel, Microsoft Defender for Identity, and Cloud App Security to monitor and automate threat detection and response. Develop automation solutions using tools such as PowerShell and Azure CLI, or Power BI to streamline cloud resource deployment and management.
Encryption & Secure Data Practices: Ensure the encryption of data at rest and in transit across all cloud environments. Establish secure data storage practices and advocate for zero-trust models within cloud services.
Collaboration & Consultation - Work closely with internal stakeholders, external clients, and vendors to ensure cloud environments are designed with a focus on security and meet business objectives.
Security Incident Response: Provide leadership in identifying, responding to, and remediating security incidents or vulnerabilities within cloud services.
Vulnerability Management: Participation in day-to-day vulnerability management activities and keep improving vulnerability management process.
Security Awareness & Training: Educate teams on cloud security best practices, DLP policies, and compliance requirements, fostering a culture of security awareness across the organization.
Business Continuity Management: Define and agree, together with stakeholders, the BCM process and plans, disaster recovery plans and metrics and goals.
Requirements
Bachelor's Degree or higher in Computer Science or equivalent
5+ years of prior work experience experience in cloud architecture or solution design with a focus on Microsoft Azure and Microsoft 365 security
Proven expertise in cloud security best practices, with strong knowledge of Azure Security Center, Microsoft Defender, and other security tools.
Hands-on experience with Azure Active Directory (AAD)/Entra ID, Conditional Access, Identity Protection, and security policies.
In-depth knowledge of Data Loss Prevention (DLP) strategies and tools within Microsoft 365 and Azure.
Understanding of compliance frameworks and regulatory requirements (e.g., GDPR, SOC 2, ISO 27001, HIPAA).
Strong background in encryption, identity and access management (IAM), and security monitoring tools such as Azure Sentinel, Cloud App Security, Microsoft Defender for Identity, and CrowdStrike Falcon and CS dashboard.
Experience implementing security features such as Zero Trust architecture, threat detection, and vulnerability management.
Familiarity with PowerShell scripting, Azure CLI, and other automation tools for managing cloud resources securely.
Knowledge of Azure Firewall, Azure Front Door, Web Application Firewall (WAF), and other Azure security solutions.
Experience in developing or maintaining security operations centers (SOC) or managing security incident response processes.
Strong analytical and problem-solving skills, with the ability to identify and address security vulnerabilities.
Hiring a Threat Modeler / Security Architect with development background for hybrid full - time role in Canada, focusing on application security, threat modeling, and DevSecOps.
Network and Perimeter Security IT Specialist I at Enbridge overseeing enterprise security architecture and leading large - scale security initiatives. Collaborating across teams to ensure secure solutions and compliance.
Network & Perimeter Security Specialist II - Firewall at Enbridge enhancing security architectures. Providing technical leadership and driving enterprise standards for firewall and network security.
Lead critical cybersecurity transformation programmes at Hewlett Packard Enterprise, ensuring alignment with enterprise priorities and delivering complex initiatives. Collaborate with IT, cybersecurity, and business leaders.
Staff Engineer responsible for designing scalable security solutions and collaborating with engineering at Twilio. Empowering security partnerships across products and platforms while mitigating risks.
Head of Infrastructure & Security responsible for cloud infrastructure on GCP and security programs. Leading SaaS development and technical teams at Rebus and Longbow Advantage.
Information Security Lead responsible for managing security programs at Dentons Canada. Overseeing security architecture, operations, incident response, and data protection initiatives.
Cybersecurity expert overseeing information defense, threat detection, and incident response at Investissement Québec. Leading security operations and leveraging AI for effective asset protection.
Lead cybersecurity initiatives and develop strategy for public broadcaster CBC/Radio - Canada. Shape technology road map, collaborate on enterprise architecture, and ensure policy compliance.