Azure Security Architect

What's On Offer:

Job Type: 1 Year Contract (Highly Renewable)

Industry: Consulting

Environment Location: Singapore

The Azure Security Architect is responsible for evaluating and strengthening the security posture of client cloud environments. This role blends deep technical expertise with governance best practices to identify vulnerabilities, recommend mitigation strategies, and design secure, compliant, and resilient cloud architectures.

The ideal candidate will work closely with clients to deliver security assessments, conduct architecture reviews, and guide implementation of security enhancements across cloud platforms.


Key Responsibilities:

• Assess the security posture of customer cloud environments to identify vulnerabilities, misconfigurations, and compliance gaps
• Design and recommend security controls aligned with cloud security best practices and industry standards
• Evaluate and enhance Azure security configurations across services like Microsoft Defender for Cloud, Sentinel, Key Vault, Azure AD (Entra ID), Privileged Identity Management (PIM), Azure Policy, and observability tools such as Azure Monitor and Log Analytics
• Lead security architecture workshops, risk assessments, and governance reviews with client stakeholders
• Collaborate with engineering, operations, and compliance teams to ensure cohesive security strategy and implementation
• Conduct in-depth risk assessments and oversee the application of mitigation plans
• Drive continuous improvement of security operations and governance processes in response to evolving threats and regulatory changes
• Ensure compliance with relevant frameworks and standards such as NIST, ISO/IEC 27001, HIPAA, GDPR, and FedRAMP
  
  

Required Qualifications:

• Minimum 5 years of experience in cloud security architecture and assessments, with a focus on Microsoft Azure
• Deep expertise in Azure security architecture and cloud-native resiliency patterns
• Strong understanding of security frameworks such as NIST CSF and ISO/IEC 27001
• Proficient in vulnerability management, risk assessment, and compliance standards
• Excellent communication skills with the ability to convey complex security concepts to both technical and non-technical audiences
• Hands-on experience with Azure security tools, including:
  
  
  • Microsoft Defender for Cloud, Sentinel, Key Vault
  • Azure AD (Entra ID), PIM, Azure Policy
  • Azure Monitor, Log Analytics
• Familiarity with Microsoft assessment methodologies, including the Well-Architected Review Assessment (WARA) and Microsoft Security Assessment Frameworks
• Demonstrated experience in customer-facing roles, delivering security reviews and architectural recommendations
• Solid knowledge of process governance, incident response planning, and MIRP (Major Incident Response Plan) development

Preferred Qualifications:

• Proven consulting experience, including direct client engagement and workshop facilitation
• Familiarity with SOC integration, security operations workflows, and incident response coordination
• Experience working with compliance frameworks such as HIPAA, GDPR, FedRAMP, or similar
• Hands-on expertise with SIEM/SOAR platforms, including security automation and orchestration
• Demonstrated ability to deliver executive-level security architecture reviews and present actionable recommendations

Certifications:

Required:

• Microsoft Certified: Cybersecurity Architect Expert
• ITIL Foundation Certification

Preferred:

• Microsoft Certified: Azure Security Engineer Associate
• CISSP (Certified Information Systems Security Professional)
• Microsoft Certified:
  
  
  • Security Operations Analyst Associate
  • Identity and Access Administrator Associate
  • Azure Administrator Associate
• BC/DR certifications such as CBCP, MBCI, ISO 22301, or other industry-recognised equivalents