Azure Security Specialist-Pittsburgh, PA - Georgia IT Inc.

Job Description - Azure Security Specialist -Job No.4054995

Client - ServiceLink

Location-Pittsburgh, PA

Visa- any visa

Duration- 10 + months

Rate- $65-70/hr.-flexible for ROCK STAR

Roles and Responsibilities:

1. Demonstrate deep experience with securing mission critical cloud applications in Microsoft Azure
2. Orchestrate the security layer across custom developed and Commercial products deployed on Azure as an integrated solution
3. Deliver security layer as code using Azure CLI, ARM templates, Shell Scripts and not just as Visio Diagrams
4. PAAS Security:
   1. Drive the security architecture and implementation for APIs and Microservices deployed on Azure Kubernetes Services, Azure App Services, Logic Apps and Functions
   2. Implement best practices for application secrets management using Azure Key Vault or Hashicorp Vault, with the ability to recommend one versus the other based on use cases
5. Container Security:
   1. Demonstrate understanding of container security concepts, Kubernetes architecture, service to service communication
   2. Design Ingress control and Kubernetes security policies with nginx, Azure Application Gateway
6. Data security:
   1. Create blueprint for data security in transit and at rest including the ability to recommend Azure database offerings and storage services based on the security requirements
   2. Demonstrate deep understanding on topics like Data Exfiltration, Data Loss Prevention and Data Redaction
7. Network and Platform Security:
   1. Design and implement the best practices as code using Azure CLI and/or ARM Templates for virtual network security, user defined routing and network security groups
   2. Design isolation of applications, data and other PAAS services using Service Endpoints, ASE and other techniques
8. Identity Management:
   1. Design identity management solutions with Azure AD, Azure AD B2C, Okta, Ping Identity and other modern identity solutions for internal users and customer identities
   2. Integrate OAuth into applications, APIs, Microservices
   3. Work with Azure Managed Service Identities for Application to Application or Application to Azure Services scenarios
9. Azure DevOps:
   1. Ability to work with Azure DevOps Pipelines and Releases to deliver security-as-code in the CI/CD environment

Certifications:

1. AZ-500

Primary Skills:

1. Azure CLI and Powershell
2. Container platforms and tools - Kubernetes, Docker, Azure Kubernetes Service, Azure Container Service
3. Azure Networking Azure Virtual Networks, ExpressRoute, Site-to-Site VPN, NSG, App Service Environment
4. Azure PAAS Services Security and Provisioning Azure API Management Policies, Azure App Service, Event Hubs, Service Bus, Cosmos DB, Azure SQL
5. Identity Management Azure Managed Service Identities, Azure AD, Azure AD B2C, Open ID Connect
6. Cloud Security Azure Key Vault, HSTS, SSL/TLS Ingress Control, Certificate management, Azure Security Center, Threat Detection, Container Security tools e.g. Twistlock
7. Cloud monitoring Experience with Azure Log Analytics, Operations Management Suite (OMS), SysDig, Application Insights

Thanks and Regards
sandy | IT Recruiter
email:sandy@georgiait.com

www.us.sogeti.com

Sogeti USA | 10100 Innovation Drive, Suite 200 | Dayton, Ohio 45342