Your role and responsibilities
- Ability to develop and implement threat management strategies and processes.
- Design, implement, and maintain secure Microsoft Azure environments using Microsoft Defender suite and Sentinel.
- Collaborate with development teams to integrate security into CI/CD pipelines and automate security processes.
- Manage and secure Kubernetes clusters and containerized applications.
- Utilize infrastructure as code tools (e.g., Terraform, Azure Resource Manager) for secure deployment and configuration of cloud environments.
- Develop and maintain security scripts using PowerShell, Python, or Bash for automation and security tooling integration.
- Stay up-to-date with the latest security trends, threats, and best practices in Microsoft Azure and Kubernetes.
- Provide guidance and support to junior team members and collaborate with cross-functional teams about his/her main competences
- Experience in identifying, analyzing, and mitigating security threats
- Knowledge of threat intelligence feeds, indicators of compromise (IoCs), TTPs and security best practices.
- Familiarity with threat hunting techniques and tools. Mitre framework.
Required education
Bachelor's Degree
Preferred education
Master's Degree
Required technical and professional expertise
- Bachelor's degree in Computer Science, Information Technology, or a related field.
- Proven experience (7+ years) in Threat Management Domain.
- Proven experience (5+ years) in Microsoft Azure security services, including Microsoft Defender suite and Sentinel.
- Strong experience (3+ years) with DevSecOps practices, CI/CD pipeline integration, and security automation.
- Hands-on experience (3+ years) with Kubernetes , including managing Kubernetes clusters and containerized applications.
- Proficiency in infrastructure as code tools (e.g., Terraform, Azure Resource Manager).
- Familiarity with scripting languages such as PowerShell, Python, or Bash.
- Strong problem-solving skills and attention to detail.
- Excellent communication and collaboration skills.
- Ability to work independently and manage multiple projects simultaneously.
Preferred technical and professional experience
- Certifications in Microsoft Azure security (e.g., Microsoft Certified: Security, Compliance, and Identity Fundamentals) and Kubernetes: SC-200, SC-900
- Experience with security information and event management (SIEM) systems, such as Microsoft Sentinel, Palo Cortex, Google Chronicle, Splunk, or ELK Stack.
- Familiarity with security orchestration, automation, and response (SOAR) solutions, such as Cortex, Phantom, or Swimlane
- Experience with endpoint detection and response (EDR) tools, such as Microsoft Defender for Endpoint, Cortex or CrowdStrike.
- Knowledge of incident response processes and procedures and experience with vulnerability management and penetration testing.
