GeekSoft Consulting logo

Azure Security Engineer

GeekSoft Consulting
5 days ago
Contract
On-site
Barcelona, Barcelona, Spain
Engineering and Data
  • Help design, build and continuously improve the clients online platform.
  • Research, suggest and implement new technology solutions following best practices/standards.
  • Take responsibility for the resiliency and availability of different products.
  • Be a productive member of the team.



Requirements

  • Minimum 3 years of experience in cloud security, security operations, or cloud governance.
  • Configure, manage, and continuously improve cloud security platforms and tooling to maintain a strong security posture across Azure environments.
  • Translate security requirements, threat models, and risk assessments into effective security configurations, policies, and monitoring controls.
  • Work closely with security architects to ensure cloud security implementations align with enterprise security standards and best practices.
  • Investigate security alerts and findings generated by cloud security tools and monitoring platforms.
  • Analyze findings to distinguish true positives from false positives and determine appropriate actions.
  • Drive remediation efforts by collaborating with engineering and application teams to address validated security risks.
  • Track and follow up on remediation activities to ensure timely resolution of security findings.
  • Contribute insights and recommendations to improve security policies, controls, and detection mechanisms.
  • Review and approve firewall requests, network access requirements, and security policy exceptions.
  • Conduct risk-based assessments for security exemptions and deviations from established controls.
  • Ensure all approvals align with security governance standards and defense-in-depth principles.
  • Support the implementation and ongoing management of security policies and compliance requirements.
  • Contribute to the development and refinement of cloud security processes, standards, and operational procedures.
  • Document security operations, remediation activities, decisions, and lessons learned.
  • Identify opportunities to improve security maturity, operational efficiency, and platform scalability.
  • Participate actively in a multidisciplinary DevOps/SecOps environment, supporting both operational and strategic security initiatives.
  • Bachelor’s or Master’s degree in Computer Science, Information Technology, Electronics, Cybersecurity, or a related field.
  • Hands-on experience creating, assigning, and managing Azure Policies.
  • Strong proficiency in Kusto Query Language (KQL).
  • Experience working with cloud security platforms, preferably including Wiz.
  • Proven experience investigating security findings and coordinating remediation activities with engineering teams.
  • Strong understanding of cloud security principles and best practices.
  • Knowledge of network security concepts, including Private Endpoints, Routing, Network Security Groups (NSGs), and firewall controls.
  • Experience with security governance, policies, controls, risk assessments, and exception management.
  • Hands-on experience automating security and operational processes using Infrastructure-as-Code and scripting tools such as Terraform, Bicep, PowerShell, or Python.
  • Familiarity with Azure services and cloud-native monitoring and security solutions.
  • Experience working in large-scale, global enterprise environments.
  • Strong security-focused mindset with practical, risk-based decision-making abilities.
  • Comfortable working independently in evolving and ambiguous environments.
  • Proactive, hands-on, and results-oriented approach.
  • Strong ownership, accountability, and problem-solving skills.
  • Excellent communication skills with the ability to engage technical and non-technical stakeholders.
  • Collaborative team player capable of working effectively across security, platform, and engineering teams.
  • Key Skills: Azure Security, Azure Policy Management, KQL (Kusto Query Language), Cloud Security Operations, Security Incident Investigation & Remediation, Wiz Security Platform, Network Security & Firewall Management, Infrastructure as Code (Terraform, Bicep), PowerShell & Python Scripting, Risk Assessment & Security Governance, DevOps / SecOps Practices




Benefits

  • A challenging, innovating environment.
  • Opportunities for learning where needed.