Job description

Cyber Security Engineer job at Xcelligen Inc.. Richmond, VA. Our client is seeking a skilled Cloud Security Architect with deep expertise in Microsoft Azure security to drive modernization and cybersecurity initiatives for both internal and public-facing cloud applications. This hands-on role is ideal for a security-focused professional with a strong background in cloud-native security, compliance, automation, and DevSecOps practices . You will work closely with cross-functional teams—including developers, engineers, and leadership—to secure Azure infrastructure and services, embed security best practices across the SDLC, and ensure compliance with relevant standards and frameworks. Key Responsibilities: • Architect and implement robust security controls across Azure environments using tools like Azure Defender , Microsoft Sentinel , and Azure Policy . • Configure and manage Azure Active Directory (AAD) , Multi-Factor Authentication (MFA) , Conditional Access , and Privileged Identity Management (PIM) . • Define and manage Role-Based Access Control (RBAC) across resources and subscriptions. • Ensure alignment with regulatory compliance standards such as NIST , ISO 27001 , GDPR , and other frameworks. • Secure networking infrastructure, including Network Security Groups (NSGs) , Application Security Groups (ASGs) , VPNs , and ExpressRoute for hybrid connectivity. • Automate security controls and infrastructure deployment using PowerShell , Bicep , ARM templates , or Terraform . • Integrate security checks and scans into CI/CD pipelines using GitHub Actions and Azure DevOps . • Conduct and document security risk assessments , produce mitigation plans, and generate technical documentation for audit and compliance. Primary Skills: • Azure Cloud Security : Azure Defender, Microsoft Sentinel, Azure Policy, Key Vault, Azure Security Centre • Identity & Access Management : Azure AD, RBAC, PIM, Conditional Access, MFA • Networking & Connectivity : NSG, ASG, VPN, ExpressRoute • Automation & IaC : PowerShell, Bicep, ARM Templates, Terraform • DevSecOps Integration : GitHub Actions, Azure DevOps • Compliance & Risk Management : NIST, ISO 27001, GDPR, SIEM/SOAR, vulnerability management, risk mitigation Minimum Qualifications: • 5+ years of experience in IT security , with at least 3 years focused on securing Azure cloud environments • Bachelor’s degree in Computer Science, Cybersecurity , or equivalent experience • Hands-on experience with cloud security architecture, scripting, and automation • In-depth understanding of modern DevSecOps and CI/CD security practices • Strong written and verbal communication skills Preferred Certifications (Highly Desired): • Microsoft Certified: Cybersecurity Architect Expert • Microsoft Certified: Azure Security Engineer Associate (SC-300) • CISSP , CISM , or CompTIA Security+

Requirements