We are seeking an experienced Azure Infrastructure & Security Engineer to design, implement, and maintain secure, scalable, and highly available cloud infrastructure solutions on Microsoft Azure. The role requires deep expertise in Azure infrastructure services, cloud security best practices, and operational excellence to support our enterprise applications and data platforms.

Key Responsibilities:

Azure Infrastructure Design & Deployment:

• Architect, deploy, and manage Azure resources such as VNets, subnets, firewalls, VPN gateways, load balancers, and storage accounts.
• Implement and manage Azure Compute resources including Virtual Machines, App Services, and Azure Kubernetes Service (AKS).
• Configure Azure networking, routing, and peering (Hub-Spoke, ExpressRoute, P2S/S2S VPN).

Security & Compliance:

• Implement Azure security controls including NSGs, ASGs, Azure Firewall, WAF, Defender for Cloud, and Microsoft Sentinel.
• Manage Identity & Access Management (IAM) with Azure Active Directory, Conditional Access Policies, and Privileged Identity Management (PIM).
• Perform security audits, vulnerability assessments, and remediation.
• Ensure compliance with industry standards (ISO 27001, SOC 2, GDPR, etc.).

Automation & Monitoring

• Develop Infrastructure-as-Code (IaC) using Bicep, ARM templates, or terraform.
• Automate deployments and configurations with Azure DevOps CI/CD pipelines.
• Configure Azure Monitor, Log Analytics, and Application Insights for proactive monitoring.

Operations & Support

• Provide L3 support for Azure infrastructure and security-related issues.
• Troubleshoot networking, performance, and security incidents.
• Maintain documentation of architecture, configurations, and procedures.

Required Skills & Qualifications

• Strong understanding of Azure networking, compute, storage, and security services.
• Hands-on experience with Azure security tools (Defender for Cloud, Sentinel, Key Vault).
• Proficiency in scripting/automation (PowerShell, Azure CLI, or Python).
• Experience with IaC tools (Bicep, ARM, Terraform).
• Knowledge of security best practices and compliance frameworks.
• Familiarity with DevOps concepts and CI/CD pipelines.