Job Description / Responsibilities
- Operate and administer Azure cloud environments to agreed SLAs ensure configurations meet performance, security, scalability, maintainability, and reliability requirements.
- Execute cloud implementation projects/pilots produce deployment docs, runbooks and as-built artefacts.
- Codify deployments and changes via automation (Terraform/Bicep/ARM/PowerShell/Python) with automation by default principles.
- Engage in client ops meetings drive process improvements and environment optimisation.
- Manage incidents/problems/changes with proper resolution, documentation and reporting.
- Audit, review and implement IT security policies.
- Security Tooling (must-have focus on Microsoft Sentinel):
Microsoft Sentinel: onboarding, rule creation/tuning, hunting/triage, playbooks/runbooks.
Database Activity Monitoring (DAM): policy configuration, monitoring/investigations, access reviews (Oracle/SQL Server/MySQL).
CTVL: maintain/use threat & vulnerability library to prioritise and remediate risks.
Nexpose (Rapid7): scanning strategy, assessments, reporting, remediation tracking, SIEM integration.
Requirements / Skills
- 3+ years in cloud operations/delivery with client-facing experience.
- Proven hands-on Microsoft Sentinel (required) and SIEM integrations.
- Practical vulnerability management with Nexpose/Rapid7 (or equivalent).
- Knowledge of DAM tools/practices and database security monitoring.
- Scripting/automation (PowerShell/Bash/Python) and IaC (Terraform/Bicep/ARM).
- Understanding of CIS/NIST/ISO 27001 controls and audit practices.
- Strong analytical skills, attention to detail, clear verbal/written communication, and teamwork.
Good to Have
- Exposure to Azure networking, identities (Entra ID), Defender suite, log analytics/KQL.
- Certifications: AZ-104, AZ-500, SC-200, SC-100, Security+, CCSP/CISSP, Rapid7 VM.
