We are seeking a highly skilled and experienced Azure Security Architect to lead the design, implementation, and management of secure cloud solutions on Microsoft Azure.

As an Azure Security Architect, you will be responsible for ensuring the security of cloud-based applications and services, implementing security best practices, and mitigating risks across the Azure environment. You will collaborate with cross-functional teams, including IT, DevOps, and development teams, to design and enforce security policies, frameworks, and solutions.

#LI-DNI

Responsibilities

• Design and implement secure cloud architectures for Microsoft Azure environments

• Define security standards, best practices, and policies to ensure cloud systems meet compliance and regulatory requirements (e.g., GDPR, HIPAA)

• Develop and maintain Azure security policies, governance frameworks, and technical security controls

• Perform security assessments, identify vulnerabilities, and lead remediation efforts to address risks and threats within the Azure environment

• Architect and implement identity and access management (IAM), encryption, and security monitoring solutions

• Collaborate with DevOps and development teams to integrate security into the CI/CD pipeline

• Conduct risk assessments, threat modeling, and security reviews for cloud-based solutions

• Stay current with Azure security technologies and industry best practices and recommend improvements or new tools as necessary

• Ensure the security of Azure-based services such as Azure AD, Azure Key Vault, Azure Security Center, and Azure Sentinel

• Provide guidance and mentorship to team members on security best practices

• Assist in incident response activities and security investigations

Requirements

• 5+ years of experience in cloud security with a focus on Azure security architecture and design

• Strong understanding of Azure services and security capabilities, including Azure AD, Azure Key Vault, Azure Policy, and Azure Security Center

• Experience with identity and access management (IAM), multi-factor authentication (MFA), and role-based access control (RBAC) in Azure

• Proficiency in implementing security tools, such as Azure Sentinel, Microsoft Defender for Cloud, and Azure Firewall

• Deep knowledge of network security, including firewalls, VPNs, and encryption protocols

• Strong understanding of compliance frameworks such as GDPR, HIPAA, PCI-DSS, and other industry-specific standards

• Excellent communication skills with the ability to articulate complex security concepts to non-technical stakeholders

• Relevant certifications such as Microsoft Certified: Azure Solutions Architect Expert, Microsoft Certified: Azure Security Engineer Associate, CISSP, or CISM are a plus

• Experience with infrastructure-as-code (IaC) tools like Terraform, ARM templates, or Azure Resource Manager

• Knowledge of scripting and automation languages such as PowerShell, Python, or Bash

• Familiarity with DevSecOps practices and integrating security into CI/CD pipelines

• Experience with hybrid cloud security and securing multi-cloud environments

We offer

• Medical, Dental and Vision Insurance (Subsidized)

• Health Savings Account

• Flexible Spending Accounts (Healthcare, Dependent Care, Commuter)

• Short-Term and Long-Term Disability (Company Provided)

• Life and AD&D Insurance (Company Provided)

• Employee Assistance Program

• Unlimited access to LinkedIn learning solutions

• Matched 401(k) Retirement Savings Plan

• Paid Time Off

• Legal Plan and Identity Theft Protection

• Accident Insurance

• Employee Discounts

• Pet Insurance

• Employee Stock Purchase Program

EPAM is a leading global provider of digital platform engineering and development services. We are committed to having a positive impact on our customers, our employees, and our communities. We embrace a dynamic and inclusive culture. Here you will collaborate with multi-national teams, contribute to a myriad of innovative projects that deliver the most creative and cutting-edge solutions, and have an opportunity to continuously learn and grow. No matter where you are located, you will join a dedicated, creative, and diverse community that will help you discover your fullest potential.

YouTube video player (https://www.youtube.com/embed/NU_mnNITn2o?si=IiCxyQ4sr1YJWxDG)

EPAM Systems, Inc. is an equal opportunity employer. We recognize the value of diversity and inclusion in creating success for our customers, business partners, shareholders, employees and communities. We are committed to recruiting, hiring, developing and promoting employees without discrimination. As a global employer, this commitment includes complying with all laws in the countries in which we operate. Nevertheless, we believe equal employment practices should not be limited to what the law requires. Equal opportunity and inclusion are essential to motivate, empower and recognize the best in everyone.

At EPAM, employment actions are based on individual qualifications, without regard to race, color, religion, creed, gender, pregnancy status, sexual orientation, gender identity, gender expression, marital or familial status, national origin, ancestry, genetics, age, disability status, veteran status, citizenship status when otherwise legally able to work, or any other characteristic protected by law.