Azure Infrastructure Engineer

The Azure Security Engineer is responsible for the security, hardening, and monitoring of Lookers Azure environment and Microsoft Cloud services. This will involve the management of Azure Security Centre and Azure Advanced Threat Protection (ATP), investigating security alerts and incidents, monitoring user behaviour and activities, strengthening Lookers security posture, and protecting against threats. Duties & Key Responsibilities * The protection against threats and development of security policies to protect Azure infrastructure in line with industry accepted hardening practices, such as the Centre for Internet Security benchmarks. * Manage the security of Azure AD and related services * Ensure that data held within the Azure environment, such as data lakes and Azure SQL, remains secure. * Ensure that the security of the environments is appropriately monitored, and all suspicious security incidents and events are investigated * Identification and risk assessment of newly identified vulnerabilities * Support the Head of IT Security to deliver risk-based improvements, including public-facing websites and Microsoft Cloud services * Enforces and identifies exceptions to Lookers IT security policies, procedures, and standards Experience & knowledge * Deep understanding and practical experience of Microsoft Cloud Security technologies, including Azure Security Center and Azure ATP, Azure Information Protection, Azure AD and Azure AD Connect, and securing data within Azure, such as Data Lake, Data Bricks and Azure SQL * Good understanding of Microsoft Intune, Microsoft Identity Manager, and Office 365 tenant security is desirable * Experience working with cyber security standards, frameworks, and general compliance-led initiatives, including achieving Cyber Security Essentials and ISO 27001 compliance * A solid technical understanding and strong knowledge of cyber security best practice, common attack types and detection/prevention methods, including CISecurity Benchmarks, OWASP and NIST guidelines * One or more relevant cloud security qualifications from a recognised body, such as Microsoft Certified Azure Security Engineer / Azure Administrator and Cloud Security Alliance CCSK / CCSP