Principal Azure Security Architect at Remote, Remote, USA |
Email: [email protected] |
Hi Recruiters, I hope you are doing well!!! We have an urgent requirement for the position of Principal Azure Security Architect . Please go through the JD & share your updated resume if you find it interesting. PP no is mandatory for H1B. GC not workable. So please dont share GC candidate Principal Azure Security Architect Hybrid 3 days - Chicago, IL BGV must be cleared Client Kit What are the top 3 skills required for this role 1. Azure AD/ MFA/ SSO 2. CISSP, CSSP, or Cloud security certification preferred 3. Certifications on Azure, AWS security will be preferred Job Description/ Responsibilities Job Description We are seeking a highly skilled Identity, Authentication and Authorization Architect(IAA) with deeper expertise in various security products, authentication, authorization, access management, governance, controls, regulatory requirements etc. As a key member of Workforce Identity, Authentication and Authorization(IAA) you will play a vital role in ensuring the secure and compliant implementation of various solutions (Hybrid and Cloud). Requirements/Responsibilities- Design Identity centric Workforce Security solutions to ensure secure and efficient authentication and access management aligned with the industry frameworks and standards (NIST CSF, COBIT, SOC, GDPR etc) Guides the architectural development of identity solutions, access patterns, modern security protocols, practicing Zero trust, least privileged, defense in depth principles Review and provide feedback on Identity, Authentication and Access management related security solutions proposed by stakeholders and can provide consultation to the partners and IT Management Acts as cybersecurity expert to participate in solutions from IAA perspective spanning end user computing, proxy solutions, MFA, SSO, conditional accesses, device based authentication, VPN solutions, Desktop virtualization solutions, Passwordless, Yubikey, bio-metric solutions, identity and governance scenarios, network segmentations, Secrets Management, Certificates Management, Automation, role based access control, Privileged identity management, end user computing, Just in time accesses, data protection solutions etc. Thoroughly understands and provides solutions considering Security technology choices, such as design, protocols support, secrets management, data security, client server communication, token handling, Session management, credential vaulting, OIDC/ OAuth flows, authorization patterns, identity federation, cloud architectures, cryptograpgy, cloud native services, cloud security etc. Good understanding of Cloud Infrastructure Entitlement Management solution (CIEM) to ensure continuous improvement in Security Posture by providing consultations to application teams Design target architectures and roadmaps considering IAM security control frameworks and audit requirements Awareness of Cyber Security Risk management principles and frameworks, supply chain risk and third party risk assessment controls Understanding and application of threat modeling concepts and methodologies Displays a balanced, cross-functional perspective under information security, liaising with other towers and business to help improve Security centric designs In-depth knowledge and experience on Entra ID, EPM, Sentinel, Azure, M365, AWS Security Knowledge on Okta, PingFederate, Entitlement management solutions In-depth knowledge of various cybersecurity frameworks, standards, and identity governance and administration Strong knowledge on Identities management on Azure AD with OAuth, OIDC, SAML, SSO, MFA, Conditional access policies, MFA, Kerberos, LDAP, Identity Federations etc. Experience in providing security solutions for Java based Micro services, React based frontends and Android/iOS based mobile applications on the Azure Hands-of experience in JWT, session handling, Code signing, Certificate authentication, TLS/SSL, API Security, Application registration, application integration scenarios etc. Exposure to API Management, Firewalls, DLP, VPNs, DNS, Azure Defender, MCAS, Sentinel, WAFs, Application Gateways, NSGs, App Proxy, Radius clusters, CDN etc. Deeper understanding of Applications security, OWASP standards, security best practices, browser compatibilities/storages/cookies Deeper understanding on Cloud Security areas such as Policies, RBAC, activities, identities, privileged access management etc Authentication/Authorization/Auditing/Accounting frameworks and hands-on experience, Privilege Identity/access management on the cloud Ability to support operations in troubleshooting complex identity scenarios with hands-on experience on Sentinel/KQL/Audit logs etc. Understanding of IaC, CI/CD pipeline, automation, and vulnerability scanning tools, Terraform, Powershell, bash script, Azure CLI Very good understanding of concepts related to docker Security, container orchestartions/Kubernetes, mTLS, Dapper, Service Mesh and security scenarios Thanks and regards, Rishabh Singh E: [email protected] 2N Market St,Suite # 400, San Jose, CA-95113 USA | CANADA | UK | SINGAPORE | MALAYSIA | INDIA www.e-solutionsinc.com Disclaimer: E-Solutions Inc. provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation,gender identity or expression, national origin, age, disability, genetic information, marital status, amnesty, or status as a covered veteran in accordance with applicable federal, state and local laws. We especially invite women, minorities, veterans, and individuals with disabilities to apply. EEO/AA/M/F/Vet/Disability. -- Keywords: continuous integration continuous deployment active directory information technology golang green card California Idaho Illinois Principal Azure Security Architect [email protected] |
[email protected] View all |
Fri Jun 28 20:18:00 UTC 2024 |