Job Description

About Neudesic

Passion for technology drives us, but it’s innovation that defines us . From design to development and support to management, Neudesic offers decades of experience, proven frameworks and a disciplined approach to quickly deliver reliable, quality solutions that help our customers go to market faster.

Neudesic, an IBM Company, is a trusted technology partner in business innovation, delivering impactful business results to clients through digital modernization and evolution. We specialize in providing services and solutions that drive digital transformation, leveraging our expertise in cloud, data, and AI technologies.

What sets us apart from the rest, is an amazing collection of people who live and lead with our core values. We believe that everyone should be Passionate about what they do, disciplined to the core, innovative by nature, committed to a Team and conduct themselves with Integrity. If these attributes mean something to you - we'd like to hear from you.

Position Overview:

We are hiring a Senior Cloud Security Consultant to deliver cloud security engineering and advisory engagements focused on securing modern workloads in Microsoft Azure and hybrid cloud environments. This mid-level, client-facing role requires expertise across Microsoft security tooling, DevSecOps integration, threat modeling, application security, and security engineering for enterprise-scale deployments.

The ideal candidate will bridge the gap between security design and implementation by translating requirements into configurations, code, and controls within regulated and complex enterprise environments.

Key Responsibilities

• Lead or support cloud security projects across identity, infrastructure, data, application, and DevOps layers.
• Engineer and implement security controls using:
• Microsoft Defender for Cloud, Defender XDR suite, Microsoft Sentinel
• Microsoft Entra ID
• Azure-native security services (NSGs, Azure Firewall, Private Link, Policy, Purview)
• Conduct cloud architecture reviews, threat modeling, and architecture risk assessments (ARA) across IaaS, PaaS, and SaaS workloads.
• Perform security control design and implementation across:
• Network segmentation and firewalling
• IAM & Role-based access controls (RBAC, JIT, PIM)
• Logging & monitoring pipelines using Azure Monitor & Sentinel
• Data classification and protection (MIP, Purview, Key Vault)
• Integrate security into DevOps pipelines by implementing IaC security scanning, secrets management, and secure image validation.
• Evaluate and secure Infrastructure-as-Code (IaC) templates (Terraform, Bicep, ARM).
• Provide application and DevSecOps security consulting , including API security, dependency scanning, and container security best practices.
• Author technical documentation including security configuration guides, playbooks, and client deliverables.

Required Skills & Experience

• 5–8 years cybersecurity experience, with 3+ years in hands-on cloud security roles.
• Demonstrable experience with Microsoft cloud security tooling , including:
• Microsoft Defender for Cloud, Microsoft Sentinel, Defender for Cloud Apps
• Defender XDR components : Endpoint, Identity, Office 365, Cloud Apps
• Microsoft Entra ID : Conditional Access, MFA, RBAC, Identity Protection
• Hands-on engineering experience in:
• Network security configurations : NSGs, Azure Firewall, UDRs, private endpoints
• Azure Policy , Defender for Cloud recommendations, and remediation at scale
• Azure Key Vault integration for secrets and certificates
• Ability to conduct Threat Modeling using STRIDE, DFDs, OWASP methodologies.
• Experience delivering Architecture Risk Assessments with remediation recommendations.
• Familiarity with IaC frameworks (Terraform, Bicep, ARM) and CI/CD integration.
• Knowledge of application security practices : OWASP Top 10, SBOM, SAST/DAST, container security.

Preferred Qualifications

• Microsoft Certifications (preferred):
• AZ-500, SC-200, SC-300, SC-100, MS-500
• Additional tools exposure (bonus):
• GitHub Actions, Azure DevOps, or GitLab CI for DevSecOps integration
• Security testing tools: Checkov, Snyk, Trivy, Burp Suite, OWASP ZAP
• SIEM tuning and incident response playbooks with Sentinel
• Experience in regulated environments (e.g., HIPAA, PCI-DSS, CMMC, FedRAMP )

Soft Skills & Consulting Attributes

• Strong client communication skills (verbal and written)
• Ability to work across security, cloud, application, and DevOps teams
• Self-starter with ability to independently deliver in complex environments
• Structured problem-solving and analytical thinking
• Comfort with multi-client or multi-project delivery environments

Accommodations currently remain in effect for Neudesic employees to work remotely, provided that remote work is consistent with the work patterns and requirements of their team’s management and client obligations. Subject to business needs, employees may be required to perform work or attend meetings on-site at a client or Neudesic location.

Please be aware of phishing scams involving fraudulent career recruiting and fictitious job postings; visit our Phishing Scams page to learn more.

Neudesic is an Equal Employment Opportunity Employer

Neudesic provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws

Neudesic is an IBM subsidiary which has been acquired by IBM and will be integrated into the IBM organization. Neudesic will be the hiring entity. By proceeding with this application, you understand that Neudesic will share your personal information with other IBM companies involved in your recruitment process, wherever these are located. More Information on how IBM protects your personal information, including the safeguards in case of cross-border data transfer, are available here:

Job Tags

Similar Jobs