Truist is hiring: Azure Cybersecurity Engineer in Charlotte

Overview

The Azure Cybersecurity Engineer is responsible for designing, implementing, and managing security solutions for cloud environments built on Microsoft Azure. With 5–7 years of professional experience, this engineer will leverage deep expertise in cloud security principles and hands-on exposure to complex Azure infrastructures. The ideal candidate will safeguard corporate data, ensure regulatory compliance, and proactively mitigate emerging threats in a rapidly evolving technical landscape.

Base pay range

$95,000.00/yr - $115,000.00/yr

Essential Duties And Responsibilities

• Security Architecture & Design: Develop and implement robust security architectures for Azure-based systems, including designing secure network boundaries, identity solutions, and multi-layered defense mechanisms.
• Collaborate with cross-functional teams to integrate security requirements into software development lifecycles and cloud migrations.
• Evaluate and recommend security tools and frameworks tailored to business needs and regulatory requirements.

Threat Management & Incident Response

• Monitor Azure environments for suspicious activity using native tools (Azure Security Center, Sentinel, Log Analytics) and third-party solutions.
• Lead rapid response to security incidents, managing investigation, containment, eradication, and recovery efforts.
• Conduct root cause analysis and develop strategies to prevent recurrence of security incidents.

Identity & Access Management (IAM)

• Administer Azure Active Directory, implementing least-privilege principles, conditional access policies, and multi-factor authentication.
• Oversee provisioning, review, and de-provisioning of user accounts, service principals, and managed identities.
• Establish and maintain RBAC (Role-Based Access Control) models across Azure resources.

Data Protection & Compliance

• Design and implement data encryption strategies for data at rest and in transit, using Azure Key Vault and managed HSM.
• Monitor compliance with regulations such as GDPR, HIPAA, and PCI-DSS, mapping Azure services to frameworks and reporting on gaps.
• Conduct regular security assessments, vulnerability scans, and penetration testing of cloud assets.

Cloud Security Operations

• Automate security processes with Azure PowerShell, Azure CLI, and ARM/Bicep templates.
• Configure, tune, and manage security monitoring and alerting systems.
• Produce dashboards and reports on security posture, risk assessments, and action plans for senior stakeholders.

Security Awareness & Collaboration

• Educate internal teams on cloud security best practices, offering training and guidance on new threats and technologies.
• Act as a key liaison between IT, development, and compliance departments to ensure security is embedded in all Azure initiatives.
• Participate in internal and external audits, preparing documentation and evidence for review.

Qualifications

Required Qualifications: The requirements listed below are representative of the knowledge, skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

• Bachelor’s degree and five years of experience in systems engineering or administration or an equivalent combination of education and work experience
• In-depth knowledge in applied enterprise information security technologies including but not limited to firewalls, intrusion detection/prevention systems, network operating systems, identity management, database activity monitoring, encryption, content filtering, and Mainframe security
• Previous experience in planning and managing IT projects

Preferred Qualifications:

• 5–7 years of professional experience in security engineering, with at least 3 years focused on Azure cloud environments.
• Strong knowledge of Azure cloud services, architecture, and best practices for securing cloud-native workloads.
• Expertise in security frameworks (NIST, CIS, ISO 27001) and regulatory compliance requirements.
• Hands-on experience with Azure Security Center, Azure Sentinel, Azure Active Directory, and other native security tools.
• Proficiency in scripting languages (PowerShell, Python, Bash) and infrastructure-as-code tools (ARM, Bicep, Terraform).
• Solid understanding of networking principles, firewalls, VPNs, and hybrid connectivity in Azure.
• Demonstrated ability to manage security operations, incident response, and vulnerability management in cloud environments.
• Relevant certifications (e.g., Microsoft Certified: Azure Security Engineer Associate, CISSP, CISM, CCSP) are highly desirable.
• Analytical Thinking: Ability to anticipate threats, analyze complex technical problems, and develop effective solutions.
• Communication: Skilled in presenting technical concepts to non-technical audiences and producing clear documentation.
• Project Management: Experience managing multiple security projects concurrently and delivering results on schedule.
• Adaptability: Eagerness to stay current with evolving technologies and security trends within the Azure ecosystem.
• Team Collaboration: Effective working both independently and in cross-functional teams, fostering a culture of security-first thinking.

Typical Duties and Projects

• Design and implement secure Azure solutions for new initiatives and migrations.
• Conduct periodic risk assessments and prepare recommendations for improving the security posture of Azure environments.
• Investigate and remediate security vulnerabilities in cloud infrastructure and applications.
• Deploy and configure advanced monitoring solutions such as Azure Sentinel and integrate with SIEM systems.
• Review and enhance policies for identity management, access control, and data governance.
• Develop and maintain disaster recovery plans and business continuity procedures specific to Azure deployments.
• Collaborate with DevOps and Application Security teams to implement secure SDLC practices in CI/CD pipelines.
• Support internal audits and external compliance reviews, providing necessary documentation and remediation plans.

Career Growth Opportunities

• Progression to senior security architect or cloud security manager roles.
• Opportunities to lead strategic cloud transformation initiatives and mentor junior engineers.
• Engagement with cutting-edge Microsoft Azure technologies, including AI-driven security analytics and automation.

Work Environment

• Hybrid, remote, or on-site positions depending on organizational needs.
• Collaborative teams with a culture of continuous learning and professional growth.
• Access to training, certifications, and conferences to foster ongoing skills development.

The annual base salary for this position is $95,000 - $115,000

Other Job Requirements / Working Conditions

• Sitting: Constantly (More than 50% of the time)
• Visual / Audio / Speaking: Able to access and interpret client information received from the computer and able to hear and speak with individuals in person and on the phone.
• Manual Dexterity / Keyboarding: Able to work standard office equipment, including PC keyboard and mouse, copy/fax machines, and printers.
• Availability: Able to work all hours scheduled, including overtime as directed by manager/supervisor and required by business need.
• Travel: Minimal and up to 10%

Equal Opportunity Employer: Truist is an Equal Opportunity Employer that does not discriminate on the basis of race, gender, color, religion, citizenship or national origin, age, sexual orientation, gender identity, disability, veteran status, or other classification protected by law. Truist is a Drug Free Workplace.

EEO is the Law; Pay Transparency Nondiscrimination Provision; E-Verify

Referral information and related postings are provided for context.