JOB SUMMARY:

We are seeking an individual experienced in the implementation and monitoring of security controls within our corporate Azure tenant.  The individual will help grow and mature our cyber security capabilities as an integrated member of a larger Cyber Security and Investigations team.  This position is located in Regina, Saskatchewan.

You will play a critical role in working with business areas to improve our Azure and Microsoft Secure Score, ensuring our cloud environment is robust and resilient against threats. By leveraging automation, you will enhance our cybersecurity posture, streamlining threat detection and response processes, and maintaining compliance across our Azure and M365 infrastructure. As a subject-matter expert, you will provide expert guidance on identifying and mitigating cybersecurity risks within Azure and Microsoft 365, helping our teams implement best practices to secure our cloud operations.

KEY ACCOUNTABILITIES:

• Understanding how each business area uses Azure and design, implement, and manage security controls and policies within the Azure cloud environment
• Defining Azure security requirements as they map to Corporate Policies and Standards, and contribute back to ensure the documents remain current
• Proactively identify gaps or conflicts in existing processes and help develop solutions with the stakeholders
• Developing metrics visible to senior management
• As part of the Cyber Security and Investigations team, the candidate works closely with other team members to enable monitoring, alerting, automation and response
• Support the expert-level use of automation, including the tools within Power Platform, Microsoft Defender and Sentinel
• Work and contribute as an independent contributor to a larger team
• Integrate security alerting and metrics into Log Analytics and/or Microsoft Sentinel as part of Azure workflow automation
• Collaborate with Technology, Security Architecture and Development teams to integrate security best practices into cloud-based applications and services
• Assist business owners and Security Architecture in quantifying security risks and provide input on requested exceptions.
• Work with Security and Enterprise Architecture teams to develop and maintain documentation for security policies, procedures, and configurations.
• Continuously learn and participate in professional training opportunities to enhance skills.
• Assist other business areas or projects in understanding and implementing secure Azure compliance and monitoring.

KNOWLEDGE/SKILLS/ABILITIES:

• Bachelor’s degree in Computer Science, Engineering, Computer Security, Information Systems, or a related field, OR equivalent professional experience.
• Proven experience with Azure Cloud services in a Microsoft E3 or E5 corporate environment, including EntraID and Graph API.
• Proficiency in PowerShell, JSON, Kusto Query (KQL), Logic Apps, or a similar language.
• Strong knowledge of attack vectors (malware, web application, social engineering, etc.) and the differences between on-premise and cloud-based attack surfaces (e.g., ports, firewalls, misconfigurations).
• Experience creating and implementing security practices across an enterprise.
• Ability to articulate current threat vectors targeting cloud, network, email, and desktop environments, and contribute to cybersecurity solutions.
• Proficient in analyzing system data, including security and network event logs, web, anti-virus, Data Loss Prevention (DLP), syslog, IPS, and firewall logs.
• Experience enabling Azure workflow automation.
• Identify key security-related Azure Insights to enhance cybersecurity monitoring, alerting, automation, and response.

DESIRED EXPERIENCE:

• Proven knowledge through attainment of a professional Security certifications such as: SANS GIAC certifications, CCSP (Certified Cloud Security Professional), CISSP (Certified Information Systems Security Professional), SSCP (Systems Security Certified Practitioner), Microsoft Azure Security Engineer Associate, or equivalent Relevant training considered: AZ-500: Microsoft Certified: Azure Security Engineer Associate AZ-900: Microsoft Certified: Azure Fundamentals SC-900: Microsoft Certified: Security, Compliance, and Identity Fundamentals AZ-104: Microsoft Azure Administrator, SC200: Microsoft Certified: Security Operations Analyst Associate, or equivalent
• Experience with access control and identity management for on-premise and cloud environments.
• Ability to document and articulate cyber-security risk, and present reports to senior management