Cybersecurity Specialist Position

We are seeking an accomplished cybersecurity professional to lead the development of our security architecture. As a seasoned Cybersecurity Expert, you will be responsible for maintaining our application, data, and cybersecurity architecture to support security, scalability, resilience, and risk management requirements.

Key Responsibilities:

• Review and support the security design for new IT projects, ensuring alignment with organizational security policies and standards.
• Collaborate with project teams to identify security requirements and integrate security controls into the project lifecycle.
• Design and implement secure architecture for Azure environments, leveraging Azure security services and best practices.
• Ensure compliance with Azure security standards and manage security configurations for Azure resources.
• Develop and enforce security measures for APIs, including authentication, authorization, and threat protection.

Requirements:

• Minimum of 5-7 years of experience in solution architecture, with a focus on data management and cybersecurity.
• Demonstrated experience in architecture and design solutions using Azure Data Lake and other data analysis tools.
• Hands-on experience with security architecture for eCommerce platforms, particularly Magento.
• Experience in developing and implementing microservice architectures.
• Familiarity with cloud security, application, database, and API architecture best practices.

You should have strong knowledge of designing secure networks, applications, and cloud architecture, including understanding firewalls, VPNs, and microservice architecture. Additionally, you should have a deep understanding of IAM principles, including user provisioning, authentication, and authorization techniques.

Azure Services: Proficiency with Azure services such as Azure Virtual Machines, Azure Kubernetes Service (AKS), Azure Functions, and Azure Storage. You should also have experience with ARM templates, Bicep, or Terraform for deploying Azure resources.

Monitoring and Logging: Using Azure Monitor, Log Analytics, and Application Insights for tracking and diagnosing issues. Identity and Access Management (IAM): Deep knowledge of Azure Active Directory (AAD), including user and group management, conditional access policies, and identity protection.

Role-Based Access Control (RBAC): Implementing and managing RBAC in Azure to control access to resources. Single Sign-On (SSO): Configuring SSO for applications using AAD. Multi-Factor Authentication (MFA): Enforcing MFA for enhanced security.

Essential Skills and Competencies:

• Understanding of cybersecurity frameworks (e.g., NIST, ISO 27001) and compliance requirements (e.g., GDPR, HIPAA).
• Knowledge of designing secure networks, applications, and cloud Architecture, including understanding firewalls, VPNs, and microservice architecture.
• Understanding of IAM principles, including user provisioning, authentication, and authorization techniques.
• Familiarity with security tools, such as SIEM (Security Information and Event Management), IDS/IPS (Intrusion Detection/Prevention Systems), and endpoint protection.
• Strong design knowledge and experience working with Trend Micro Vision One, XDR platform, email security, EDR, email security, PAM, IPS, WAF and DLP technologies.

API Security:

• Understanding of API Protocols: Knowledge of REST, SOAP, and GraphQL.
• Authentication and Authorization: Familiarity with OAuth, JWT, and API keys.
• Threat Protection: Implementing rate limiting, IP whitelisting, and DDoS protection.
• Data Encryption: Ensuring data is encrypted in transit and at rest.

Azure Architecture:

• Azure Services: Proficiency with Azure services such as Azure Virtual Machines, Azure Kubernetes Service (AKS), Azure Functions, and Azure Storage.
• Networking: Understanding of Azure Virtual Networks, Subnets, and Network Security Groups.
• Security Best Practices: Implementing Azure Security Center recommendations and Azure Policy.
• Infrastructure as Code (IaC): Experience with ARM templates, Bicep, or Terraform for deploying Azure resources.
• Monitoring and Logging: Using Azure Monitor, Log Analytics, and Application Insights for tracking and diagnosing issues.

Identity and Access Management (IAM):

• Azure Active Directory (AAD): Deep knowledge of AAD, including user and group management, conditional access policies, and identity protection.
• Role-Based Access Control (RBAC): Implementing and managing RBAC in Azure to control access to resources.
• Single Sign-On (SSO): Configuring SSO for applications using AAD.
• Multi-Factor Authentication (MFA): Enforcing MFA for enhanced security.

This role requires a self-driven individual with motivation and the ability to work independently to deliver expected outcomes. Strong analytical and report writing skills are also required.