Truist
Azure Senior Cybersecurity Engineer – Truist
Truist invites applications for the Azure Senior Cybersecurity Engineer position. Candidates should submit their application through our portal.
Job Overview An Azure Cybersecurity Senior Engineer is responsible for designing, implementing, and managing security solutions for cloud environments built on Microsoft Azure. With 5–7 years of professional experience, the engineer leverages deep expertise in cloud security principles and hands‑on exposure to complex Azure infrastructures, safeguarding corporate data, ensuring regulatory compliance, and proactively mitigating emerging threats.
Essential Duties and Responsibilities
Develop robust security architectures for Azure-based systems, including secure network boundaries, identity solutions, and multi-layered defense mechanisms.
Integrate security requirements into software development lifecycles and cloud migrations.
Evaluate and recommend security tools and frameworks tailored to business needs and regulatory requirements.
Monitor Azure environments for suspicious activity using native tools (Security Center, Sentinel, Log Analytics) and third‑party solutions.
Lead rapid response to security incidents, managing investigation, containment, eradication, and recovery.
Conduct root cause analysis and develop strategies to prevent recurrence of security incidents.
Administer Azure Active Directory, implementing least‑privilege principles, conditional access policies, and multi‑factor authentication.
Oversee provisioning, review, and de‑provisioning of user accounts, service principals, and managed identities.
Establish and maintain RBAC models across Azure resources.
Design and implement data encryption strategies for data at rest and in transit using Azure Key Vault and managed HSM.
Monitor compliance with regulations such as GDPR, HIPAA, and PCI‑DSS, mapping Azure services to frameworks and reporting on gaps.
Conduct regular security assessments, vulnerability scans, and penetration testing of cloud assets.
Automate security processes with Azure PowerShell, Azure CLI, and ARM/Bicep templates.
Configure, tune, and manage security monitoring and alerting systems.
Produce dashboards and reports on security posture, risk assessments, and action plans for senior stakeholders.
Educate internal teams on cloud security best practices, offering training and guidance on new threats and technologies.
Act as a liaison between IT, development, and compliance departments to embed security in all Azure initiatives.
Participate in internal and external audits, preparing documentation and evidence for review.
Required Qualifications
Bachelor’s degree and eight years of experience in systems engineering or administration, or an equivalent combination of education and work experience.
Deep specialized and/or broad functional knowledge in applied enterprise information security technologies including firewalls, intrusion detection/prevention systems, network operating systems, identity management, database activity monitoring, encryption, content filtering, and Mainframe security.
Previous experience in leading complex IT projects.
Preferred Qualifications
5–7 years of professional experience in security engineering, with at least 3 years focused on Azure cloud environments.
Strong knowledge of Azure cloud services, architecture, and best practices for securing cloud‑native workloads.
Expertise in security frameworks (NIST, CIS, ISO 27001) and regulatory compliance requirements.
Hands‑on experience with Azure Security Center, Azure Sentinel, Azure Active Directory, and other native security tools.
Proficiency in scripting languages (PowerShell, Python, Bash) and infrastructure‑as‑code tools (ARM, Bicep, Terraform).
Solid understanding of networking principles, firewalls, VPNs, and hybrid connectivity in Azure.
Demonstrated ability to manage security operations, incident response, and vulnerability management in cloud environments.
Microsoft Certified: Azure Security Engineer Associate, CISSP, CISM, or CCSP certifications are highly desirable.
Analytical thinking, communication, project management, adaptability, and teamwork skills.
Typical Duties and Projects
Design and implement secure Azure solutions for new initiatives and migrations.
Conduct periodic risk assessments and prepare recommendations to improve security posture.
Investigate and remediate security vulnerabilities in cloud infrastructure and applications.
Deploy and configure advanced monitoring solutions such as Azure Sentinel and SIEM integration.
Review and enhance policies for identity management, access control, and data governance.
Develop and maintain disaster recovery plans and business continuity procedures for Azure deployments.
Collaborate with DevOps and Application Security teams to implement secure SDLC practices in CI/CD pipelines.
Support internal audits and external compliance reviews, providing necessary documentation and remediation plans.
Career Growth Opportunities
Progression to senior security architect or cloud security manager roles.
Opportunities to lead strategic cloud transformation initiatives and mentor junior engineers.
Engagement with cutting‑edge Microsoft Azure technologies, including AI‑driven security analytics and automation.
Work Environment
Hybrid, remote, or on‑site positions depending on organizational needs.
Collaborative teams with a culture of continuous learning and professional growth.
Access to training, certifications, and conferences to foster ongoing skills development.
The annual base salary for this position is $95,000 - $115,000.
Other Job Requirements / Working Conditions
Sitting: Constantly (More than 50% of the time)
Visual / Audio / Speaking: Able to access and interpret client information received from a computer and able to hear and speak with individuals in person and on the phone.
Manual Dexterity / Keyboarding: Able to work standard office equipment, including PC keyboard and mouse, copy/fax machines, and printers.
Availability: Able to work all hours scheduled, including overtime as directed by manager/supervisor and required by business need.
Travel: Minimal and up to 10%
Benefits
Medical, dental, vision, life insurance, disability, accidental death, and dismemberment insurance.
Tax‑preferred savings accounts and a 401(k) plan.
No less than 10 days of vacation (prorated) in the first year, 10 sick days (prorated), and paid holidays.
Defined benefit pension plan, restricted stock units, and/or a deferred compensation plan may be available for eligible roles.
Additional benefits details can be accessed at the Truist Benefits site.
Truist is an Equal Opportunity Employer that does not discriminate on the basis of race, gender, color, religion, citizenship or national origin, age, sexual orientation, gender identity, disability, veteran status, or other classification protected by law. Truist is a Drug Free Workplace.
EEO is the Law. E-Verify. IER. Right to Work.
#J-18808-Ljbffr
Job Overview An Azure Cybersecurity Senior Engineer is responsible for designing, implementing, and managing security solutions for cloud environments built on Microsoft Azure. With 5–7 years of professional experience, the engineer leverages deep expertise in cloud security principles and hands‑on exposure to complex Azure infrastructures, safeguarding corporate data, ensuring regulatory compliance, and proactively mitigating emerging threats.
Essential Duties and Responsibilities
Develop robust security architectures for Azure-based systems, including secure network boundaries, identity solutions, and multi-layered defense mechanisms.
Integrate security requirements into software development lifecycles and cloud migrations.
Evaluate and recommend security tools and frameworks tailored to business needs and regulatory requirements.
Monitor Azure environments for suspicious activity using native tools (Security Center, Sentinel, Log Analytics) and third‑party solutions.
Lead rapid response to security incidents, managing investigation, containment, eradication, and recovery.
Conduct root cause analysis and develop strategies to prevent recurrence of security incidents.
Administer Azure Active Directory, implementing least‑privilege principles, conditional access policies, and multi‑factor authentication.
Oversee provisioning, review, and de‑provisioning of user accounts, service principals, and managed identities.
Establish and maintain RBAC models across Azure resources.
Design and implement data encryption strategies for data at rest and in transit using Azure Key Vault and managed HSM.
Monitor compliance with regulations such as GDPR, HIPAA, and PCI‑DSS, mapping Azure services to frameworks and reporting on gaps.
Conduct regular security assessments, vulnerability scans, and penetration testing of cloud assets.
Automate security processes with Azure PowerShell, Azure CLI, and ARM/Bicep templates.
Configure, tune, and manage security monitoring and alerting systems.
Produce dashboards and reports on security posture, risk assessments, and action plans for senior stakeholders.
Educate internal teams on cloud security best practices, offering training and guidance on new threats and technologies.
Act as a liaison between IT, development, and compliance departments to embed security in all Azure initiatives.
Participate in internal and external audits, preparing documentation and evidence for review.
Required Qualifications
Bachelor’s degree and eight years of experience in systems engineering or administration, or an equivalent combination of education and work experience.
Deep specialized and/or broad functional knowledge in applied enterprise information security technologies including firewalls, intrusion detection/prevention systems, network operating systems, identity management, database activity monitoring, encryption, content filtering, and Mainframe security.
Previous experience in leading complex IT projects.
Preferred Qualifications
5–7 years of professional experience in security engineering, with at least 3 years focused on Azure cloud environments.
Strong knowledge of Azure cloud services, architecture, and best practices for securing cloud‑native workloads.
Expertise in security frameworks (NIST, CIS, ISO 27001) and regulatory compliance requirements.
Hands‑on experience with Azure Security Center, Azure Sentinel, Azure Active Directory, and other native security tools.
Proficiency in scripting languages (PowerShell, Python, Bash) and infrastructure‑as‑code tools (ARM, Bicep, Terraform).
Solid understanding of networking principles, firewalls, VPNs, and hybrid connectivity in Azure.
Demonstrated ability to manage security operations, incident response, and vulnerability management in cloud environments.
Microsoft Certified: Azure Security Engineer Associate, CISSP, CISM, or CCSP certifications are highly desirable.
Analytical thinking, communication, project management, adaptability, and teamwork skills.
Typical Duties and Projects
Design and implement secure Azure solutions for new initiatives and migrations.
Conduct periodic risk assessments and prepare recommendations to improve security posture.
Investigate and remediate security vulnerabilities in cloud infrastructure and applications.
Deploy and configure advanced monitoring solutions such as Azure Sentinel and SIEM integration.
Review and enhance policies for identity management, access control, and data governance.
Develop and maintain disaster recovery plans and business continuity procedures for Azure deployments.
Collaborate with DevOps and Application Security teams to implement secure SDLC practices in CI/CD pipelines.
Support internal audits and external compliance reviews, providing necessary documentation and remediation plans.
Career Growth Opportunities
Progression to senior security architect or cloud security manager roles.
Opportunities to lead strategic cloud transformation initiatives and mentor junior engineers.
Engagement with cutting‑edge Microsoft Azure technologies, including AI‑driven security analytics and automation.
Work Environment
Hybrid, remote, or on‑site positions depending on organizational needs.
Collaborative teams with a culture of continuous learning and professional growth.
Access to training, certifications, and conferences to foster ongoing skills development.
The annual base salary for this position is $95,000 - $115,000.
Other Job Requirements / Working Conditions
Sitting: Constantly (More than 50% of the time)
Visual / Audio / Speaking: Able to access and interpret client information received from a computer and able to hear and speak with individuals in person and on the phone.
Manual Dexterity / Keyboarding: Able to work standard office equipment, including PC keyboard and mouse, copy/fax machines, and printers.
Availability: Able to work all hours scheduled, including overtime as directed by manager/supervisor and required by business need.
Travel: Minimal and up to 10%
Benefits
Medical, dental, vision, life insurance, disability, accidental death, and dismemberment insurance.
Tax‑preferred savings accounts and a 401(k) plan.
No less than 10 days of vacation (prorated) in the first year, 10 sick days (prorated), and paid holidays.
Defined benefit pension plan, restricted stock units, and/or a deferred compensation plan may be available for eligible roles.
Additional benefits details can be accessed at the Truist Benefits site.
Truist is an Equal Opportunity Employer that does not discriminate on the basis of race, gender, color, religion, citizenship or national origin, age, sexual orientation, gender identity, disability, veteran status, or other classification protected by law. Truist is a Drug Free Workplace.
EEO is the Law. E-Verify. IER. Right to Work.
#J-18808-Ljbffr