Job Description
We are looking for a Cloud Security Engineer with strong expertise in Microsoft cloud security technologies, specifically focused on:
*Cloud Access Security Broker (CASB). Required skill.
*Cloud Security Posture Management (CSPM). Required skill.
*AI Security (Microsoft Foundry and related AI services) this is a desired skill, but not mandatory
The role will be responsible for securing cloud applications, improving visibility, and implementing risk based governance across the Azure environment.
Required Skills & Experience:
Core Technical Skills:
Hands on experience with:
*Microsoft Defender for Cloud Apps (CASB).
*Microsoft Defender for Cloud (CSPM).
*Strong understanding of cloud native risks (misconfiguration, identity, data exposure)
Experience with:
*Cloud app governance (Shadow IT, SaaS risk management).
*Policy based enforcement and automation.
*Cloud Security Knowledge
*CASB (Cloud Access Security Broker) concepts.
*CSPM (Cloud Security Posture Management).
*SaaS / IaaS / PaaS security models.
Activities:
CASB / SaaS Security (Defender for Cloud Apps):
*Design and operate Microsoft Defender for Cloud Apps (MCAS).
*Manage Shadow IT discovery, classification, and governance.
*Implement:
-App risk scoring and categorization.
-Automated governance policies (sanction / unsanctioned).
-Usage based prioritization of cloud applications.
*Integrate CASB findings into operational workflows (e.g., ServiceNow where required)
CSPM / Azure Security (Defender for Cloud):
*Define and manage Azure security posture (CSPM scope).
*Key focus areas:
-Misconfiguration detection and remediation.
-Risk based prioritization.
-Asset discovery and posture tracking.
-Compliance mapping and reporting.
Security Governance & Metrics (Cloud-focused):
*Contribute to cloud security metrics:
-Cloud application inventory and risk trends.
-CSPM posture improvements.
*Provide input for executive level visibility of cloud risk posture.
Required Languages
English Fluent advanced 90-100%