Job description

Tyto Athene is searching for two Senior Azure Security Engineers to join our team of cloud, security, and compliance experts. This role requires experience with ensuring the confidentiality, integrity, and availability of Azure-based applications and systems. Responsibilities: Lead the continuous monitoring, implementation and security operations of Azure cloud solutions, ensuring they meet industry best practices and comply with FedRAMP requirements. Collaborate with cross-functional teams, including security engineers, security analysts, and compliance team, to develop highly secure and scalable architectures. Architect and implement identity and access management solutions to ensure proper user authentication and authorization, adhering to FedRAMP standards. Perform risk assessments and develop strategies to address vulnerabilities, integrating security controls and monitoring mechanisms into Azure solutions. Participate in the selection and configuration of Azure services and tools, aligning them with FedRAMP compliance guidelines. Stay up-to-date with the latest Azure and FedRAMP regulatory changes and industry trends, advising teams on potential impacts and necessary adjustments. Collaborate with stakeholders to define and document system requirements and design specifications specific to FedRAMP compliance. Provide technical leadership and guidance to project teams, ensuring adherence to security and compliance standards throughout the development lifecycle. Required: US Citizenship required Excellent understanding of Microsoft Azure cloud services and infrastructure, with hands-on experience in architecting and implementing secure solutions. Experience with FedRAMP compliance requirements, including familiarity with relevant frameworks, controls, and security processes. Strong knowledge of identity and access management principles and tools, such as Azure Active Directory, Azure AD B2C, and OAuth. Demonstrated expertise in cloud security practices, including encryption, data protection, network security, and vulnerability management. Experience in conducting risk assessments and developing risk mitigation strategies within the Azure environment. Excellent communication skills with the ability to effectively collaborate with both technical and non-technical stakeholders. Relevant certifications, such as Microsoft Certified: Azure Solutions Architect Expert and Certified Information Systems Security Professional (CISSP) or equivalent, are a plus. Hands-on experience using and/or configuration of one or more of the following, are a plus: Bicep Sentinel ARM Tenable Security Center/Nessus Defender Ansible/ Powershell Terraform Office365 GCC High B2B connection Virtual Network, Virtual Machines Azure storage RHEL STIGs Secure Score Remediation Intune Experience with Kubernetes security operations is desirable. Location: Fully remote with periodic office visits for training, meetings and team building.

Requirements