Azure Senior Cybersecurity Engineer

The position is described below. If you want to apply, click the Apply Now button at the top or bottom of this page. After you click Apply Now and complete your application, you'll be invited to create a profile, which will let you see your application status and any communications. If you already have a profile with us, you can log in to check status.

Need Help? ()

If you have a disability and need assistance with the application, you can request a reasonable accommodation. Send an email to Accessibility (careers@truist.com?subject=Accommodation%20request)

(accommodation requests only; other inquiries won't receive a response).

Regular or Temporary :

Regular

Language Fluency : English (Required)

Work Shift :

1st shift (United States of America)

Please review the following job description :

An Azure Cybersecurity Senior Engineer is responsible for designing, implementing, and managing security solutions for cloud environments built on Microsoft Azure.

With 5-7 years of professional experience, this engineer will leverage deep expertise in cloud security principles and hands-on exposure to complex Azure infrastructures.

The ideal candidate will safeguard corporate data, ensure regulatory compliance, and proactively mitigate emerging threats in a rapidly evolving technical landscape.

Essential Duties and Responsibilities

Security Architecture & Design

Develop and implement robust security architectures for Azure-based systems, including designing secure network boundaries, identity solutions, and multi-layered defense mechanisms.

Collaborate with cross-functional teams to integrate security requirements into software development lifecycles and cloud migrations.

Evaluate and recommend security tools and frameworks tailored to business needs and regulatory requirements.

Threat Management & Incident Response

Monitor Azure environments for suspicious activity using native tools (Azure Security Center, Sentinel, Log Analytics) and third-party solutions.

Lead rapid response to security incidents, managing investigation, containment, eradication, and recovery efforts.

Conduct root cause analysis and develop strategies to prevent recurrence of security incidents.

Identity & Access Management (IAM)

Administer Azure Active Directory, implementing least-privilege principles, conditional access policies, and multi-factor authentication.

Oversee provisioning, review, and de-provisioning of user accounts, service principals, and managed identities.

Establish and maintain RBAC (Role-Based Access Control) models across Azure resources.

Data Protection & Compliance

Design and implement data encryption strategies for data at rest and in transit, using Azure Key Vault and managed HSM.

Monitor compliance with regulations such as GDPR, HIPAA, and PCI-DSS, mapping Azure services to frameworks and reporting on gaps.

Conduct regular security assessments, vulnerability scans, and penetration testing of cloud assets.

Cloud Security Operations

Automate security processes with Azure PowerShell, Azure CLI, and ARM / Bicep templates.

Configure, tune, and manage security monitoring and alerting systems.

Produce dashboards and reports on security posture, risk assessments, and action plans for senior stakeholders.

Security Awareness & Collaboration

Educate internal teams on cloud security best practices, offering training and guidance on new threats and technologies.

Act as a key liaison between IT, development, and compliance departments to ensure security is embedded in all Azure initiatives.

Participate in internal and external audits, preparing documentation and evidence for review.

Required Qualifications :

The requirements listed below are representative of the knowledge, skill and / or ability required.? Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Bachelor's degree and eight years of experience in systems engineering or administration or an equivalent combination of education and work experience.

Deep specialized and / or broad functional knowledge in applied enterprise information security technologies including but not limited to firewalls, intrusion detection / prevention systems, network operating systems, identity management, database activity monitoring, encryption, content filtering, and Mainframe security.

Previous experience in leading complex IT projects

Preferred Qualifications :

5-7 years of professional experience in security engineering, with at least 3 years focused on Azure cloud environments.

Strong knowledge of Azure cloud services, architecture, and best practices for securing cloud-native workloads.

Expertise in security frameworks (NIST, CIS, ISO 27001) and regulatory compliance requirements.

Hands-on experience with Azure Security Center, Azure Sentinel, Azure Active Directory, and other native security tools.

Proficiency in scripting languages (PowerShell, Python, Bash) and infrastructure-as-code tools (ARM, Bicep, Terraform).

Solid understanding of networking principles, firewalls, VPNs, and hybrid connectivity in Azure.

Demonstrated ability to manage security operations, incident response, and vulnerability management in cloud environments.

Relevant certifications (e.g., Microsoft Certified : Azure Security Engineer Associate, CISSP, CISM, CCSP) are highly desirable.

Analytical Thinking : Ability to anticipate threats, analyze complex technical problems, and develop effective solutions.

Communication : Skilled in presenting technical concepts to non-technical audiences and producing clear documentation.

Project Management : Experience managing multiple security projects concurrently and delivering results on schedule.

Adaptability : Eagerness to stay current with evolving technologies and security trends within the Azure ecosystem.

Team Collaboration : Effective working both independently and in cross-functional teams, fostering a culture of security-first thinking.

Typical Duties and Projects

Design and implement secure Azure solutions for new initiatives and migrations.

Conduct periodic risk assessments and prepare recommendations for improving the security posture of Azure environments.

Investigate and remediate security vulnerabilities in cloud infrastructure and applications.

Deploy and configure advanced monitoring solutions such as Azure Sentinel and integrate with SIEM systems.

Review and enhance policies for identity management, access control, and data governance.

Develop and maintain disaster recovery plans and business continuity procedures specific to Azure deployments.

Collaborate with DevOps and Application Security teams to implement secure SDLC practices in CI / CD pipelines.

Support internal audits and external compliance reviews, providing necessary documentation and remediation plans.

Career Growth Opportunities

Progression to senior security architect or cloud security manager roles.

Opportunities to lead strategic cloud transformation initiatives and mentor junior engineers.

Engagement with cutting-edge Microsoft Azure technologies, including AI-driven security analytics and automation.

Work Environment

Hybrid, remote, or on-site positions depending on organizational needs.

Collaborative teams with a culture of continuous learning and professional growth.

Access to training, certifications, and conferences to foster ongoing skills development.

The annual base salary for this position is $95,000 - $115,000

Other Job Requirements / Working Conditions

Sitting

Constantly (More than 50% of the time)

Visual / Audio / Speaking

Able to access and interpret client information received from the computer and able to hear and speak with individuals in person and on the phone.

Manual Dexterity / Keyboarding

Able to work standard office equipment, including PC keyboard and mouse, copy / fax machines, and printers.

Availability

Able to work all hours scheduled, including overtime as directed by manager / supervisor and required by business need.

Travel

Minimal and up to 10%

General Description of Available Benefits for Eligible Employees of Truist Financial Corporation : All regular teammates (not temporary or contingent workers) working 20 hours or more per week are eligible for benefits, though eligibility for specific benefits may be determined by the division of Truist offering the position. Truist offers medical, dental, vision, life insurance, disability, accidental death and dismemberment, tax-preferred savings accounts, and a 401k plan to teammates. Teammates also receive no less than 10 days of vacation (prorated based on date of hire and by full-time or part-time status) during their first year of employment, along with 10 sick days (also prorated), and paid holidays. For more details on Truist's generous benefit plans, please visit our Benefits site ()

• . Depending on the position and division, this job may also be eligible for Truist's defined benefit pension plan, restricted stock units, and / or a deferred compensation plan. As you advance through the hiring process, you will also learn more about the specific benefits available for any non-temporary position for which you apply, based on full-time or part-time status, position, and division of work.

Truist is an Equal Opportunity Employer that does not discriminate on the basis of race, gender, color, religion, citizenship or national origin, age, sexual orientation, gender identity, disability, veteran status, or other classification protected by law. Truist is a Drug Free Workplace.

EEO is the Law ()

E-Verify ()

IER Right to Work ()