Azure Cloud Security

Skills and capabilities needed to succeed in the role Azure DevOps Pipelines Terraform managing repos and access debugging deployments DevSecOps

Networks and integrations Virtual networks routing IPAM peering NSGASG private links

Azure landing zone architecture Wellarchitected frameworkbased best practices scaling design troubleshooting and implementation

Entra ID Access management roles PIM Conditional Access policies logging troubleshooting access IAM IGA

Azure Key Vault access configuration architecture

Sentinel 2nd line incident support troubleshooting and reports SecOps

Defender for Cloud Incident management alerts CSPM regulatory compliance Zero Trust Defender for Servers security posture

Azure Virtual Desktop Access management monitoring encryption and compliance logging Windows 11 security EDR

Azure Firewall FrontDoor Application Gateway Managing monitoring implementing

Microsoft 365 Access configuration monitoring compliance

Defender XDR Incidents and alerts work Defender for Endpoint configuration and monitoring compliance reporting and implementation eg Purviewrelated workloads

Azure SQL and Cosmos DB security and management

In addition on nonproduct specific experience

Sitetosite VPNs and ExpressRoute experience

Integration security such as SFTP connectivity and API management

Securing Containerbased workloads

Authentication and authorization using enterprise identity providers and IAM such as IIQ the solution

Leading new initiatives such as building a new Azure landing zone or enrolling new platform capabilities into Azure and Microsoft 365

Documenting and presenting on existing architecture and change advisories

Supporting design area architects on security related issues and initiatives