Azure Security Engineer (Remote - North America)

Responsibilities

Hexagon's Asset Lifecycle Intelligence division(Hexagon) is seeking an experienced Azure Security Engineer to join our small team of highly skilled engineers in a fast-paced, rapidly evolving environment. We want to keep security & reliability at the heart of everything we do by integrating security practices seamlessly into our daily development activities, fostering a culture of security awareness and promoting best practices on the platform. You and your team will be central to the success of our new cloud SaaS platform and stakeholders will rely on your knowledge and expertise.

• Help design and implement secure system architectures, ensuring compliance with regulations and standards to meet customer needs while managing business and security risks.

• Develop, test and deliver security policy as code using public container platform services.

• Collaborate closely with development teams to implement secure, efficient code and deployment strategies on the platform.

• Continuously monitor logs and telemetry to spot potential security issues, weaknesses or incidents.

• Identify areas for improvement and implement appropriate optimizations within your own team or with partner teams.

• Understand industry standard controls such as CIS/NIST/GDPR/ISO/CSA CCM to deliver compliance on the platform through appropriate adoption and configuration of security controls.

• Stay up-to-date with the latest industry trends, standards, practices and tools related to DevSecOps, compliance & application security.

Qualifications

• A minimum of 8 years of relevant Security experience

• 4+ years of experience with Cloud specific technologies such as Azure and Kubernetes

• Proven experience in a Cloud Infrastructure Engineering/platform Engineer/Security Engineer role, deploying and maintaining large scale public cloud services.

• Good knowledge of Azure security infrastructure - Az Policy, Defender, Sentinel, Firewall, Front Door DDoS protection and rules, Monitor/LogAnalytics.

• Experience in provisioning Security policy as Code (IAC) tools such as Terraform to enforce secure code practices and guidelines.

• In-depth knowledge of application security principles, secure coding practices, and common security frameworks (OWASP, NIST, etc.).

• Proficiency in working with SIEM tools to monitor and analyze security events and incidents.

• Deep understanding of container security in platforms such as Kubernetes.

• Sound knowledge of Identity and Access Management techniques (Azure AD, RBAC, Identity Protection, PIM, SSO)

• Good networking knowledge (next-gen firewalls, Layer 3 - 7 security, edge security, TLS/mTLS).

• Strong communication skills, both verbal and written, with the ability to convey complex technical concepts to non-technical stakeholders.

• Relevant certifications such as Azure Security Engineer, Certified Kubernetes Administrator (CKA), or equivalent, are a plus.

Hexagon will not sponsor applicants for a work visa for this position.

#LI-EW1 #LI-REMOTE