Cloud Security Architect - Microsoft Azure

We are seeking a highly skilled and experienced Senior Azure Security Architect to join our expert team. In this pivotal role youll be at the forefront of designing implementing and optimizing comprehensive security solutions across diverse Azure landscapes. Youll drive the adoption of security best practices enable digital transformation with confidence and empower our clients to mitigate risks effectively.

Qualifications :

• Security Architecture & Frameworks: Develop comprehensive security architectures based on the Azure Well-Architected Frameworks Security pillar applying design principles for confidentiality integrity and availability across workloads.

  Secure Landing Zones: Design multi-subscription Azure landing zones leveraging Azure Blueprints Management Groups Azure Policy and Infrastructure as Code (ARM/Bicep/Terraform) to embed guardrails for identity network segmentation and logging from day one.

  Threat Modeling & Risk Assessment: Lead threat-modeling workshops (e.g. using the Microsoft Threat Modeling Tool) to identify and prioritize risks then architect mitigations aligned with STRIDE and Zero Trust principles.

  Roadmaps & Reference Architectures: Craft long-term security roadmaps and reusable reference architectures that map to NIST CSF ISO 27001 and ASD Essential 8 ensuring consistent repeatable security controls across client environments.

  Azure Security Service Integration: Architect integration of core Azure security servicesMicrosoft Entra ID Azure Key Vault Azure Firewall Azure DDoS Protection NSGs Microsoft Defender for Cloud and Azure Sentinelinto cohesive automated security operations.

  Policy & Compliance Automation: Define and implement Azure Policy definitions and initiatives to enforce compliance continuously automate remediation and provide real-time compliance reporting.

  Mentorship & Enablement: Mentor engineering and DevOps teams on secure-by-design principles embedding security checks into CI/CD pipelines (e.g. Azure DevOps GitHub Actions) and promoting a shift-left security culture.

  Client Advisory & Communication: Serve as the security SME during client engagementstranslating complex security trade-offs into clear actionable guidance for both technical and executive stakeholders.

  Continuous Improvement & IP Development: Stay abreast of evolving Azure security services and threat landscapes contribute to internal communities of practice and build security accelerators and methodologies to enhance Azure security offerings.

  Related Architect Certifications:

  Microsoft Certified: Azure Solutions Architect Expert (AZ-305)

Additional Information :

Why join us: 

NCS Australia is where you can feel at home nurturing your talents and skills as we make tomorrow together one day at a time. Our benefits include paid parental leave initiatives focused on your well-being and discounted health insurance. You will also enjoy discounts on various products and services and be regularly recognised and rewarded for high performance. We are committed to your career development through our Capability Fingerprint industry and partner training programs special interest groups and an AI-driven learning platform. No matter where you are in your career we offer meaningful work and opportunities for growth.

NCS Australia is an equal-opportunity employer and we take pride in our commitment to valuing and supporting our people and the communities we are dedicated to attracting retaining and developing our people regardless of gender identity ethnicity sexual orientation disability and age. Applications are encouraged from all sectors of the community and we strongly encourage applications from the Veterans Aboriginal and/or Torres Strait Islander community.

At NCS Australia we are committed to supporting adjustments throughout the recruitment and selection process as well as during employment. We actively support and encourage people with disability to apply. 

Agencies:

Weve got this. We request that you do not contact NCS employees outside of the Talent Acquisition team. NCS exclusively accepts resumes from agencies on our preferred supplier panel through the NCS Agency Portal. Agencies that submit resumes must have a valid fee agreement and be assigned to the particular requisition by the Talent Acquisition team. Any resumes that are submitted outside of this process will become the sole property of NCS. If a candidate is hired outside of this process no fee or payment will be given.

Work rights and background checks: 

To be eligible for a position with us applicants will need to have valid work rights for Australia and be willing to undergo a comprehensive background checking process including probity and police checks

Remote Work :

No

Employment Type :

Full-time