Azure Cloud Security Engineer
Job Fit Check
Base Career helps you apply smarter for this job.
Key skills for this role
About the Role
We are looking for a hands-on Azure Cloud Security Engineer with 5-7 years of experience to secure Azure platform infrastructure and run day-to-day operations. You will configure Azure Firewall, WAF, DDoS protection, networking, and use Microsoft Sentinel for monitoring and incident handling.
Key Skills for This Role
Responsibilities
- Build, configure and harden Azure platform security controls: Azure Firewall, Application Gateway / WAF, DDoS Protection, NSGs, User Defined Routes and Private Endpoints
- Make infrastructure level changes in Azure – secure VNets, hub and spoke networking and hybrid connectivity (ExpressRoute, Site to Site / Point to Site VPN)
- Support and maintain Azure Landing Zone security architecture – Azure Policy, Management Groups, RBAC and governance guardrails
- Operate Microsoft Defender for Cloud – CSPM, Secure Score, remediation and regulatory compliance
- Secure VMs, data platforms (Azure SQL / Storage) and AI workloads (e.g. Azure OpenAI) from build through to runtime
- Manage identity security – Microsoft Entra ID, Conditional Access, MFA, PIM and RBAC
- Run Microsoft Sentinel for log onboarding, monitoring, incident handling and basic automation / playbooks
- Continuously improve detection rules and reduce false positives across cloud and endpoint
Requirements
- 5–7 years in cloud / security, with a strong, hands on Azure infrastructure focus
- Demonstrable hands on configuration of Azure Firewall, WAF, DDoS Protection, NSGs and Azure networking
- Hybrid connectivity: ExpressRoute and Site to Site / Point to Site VPN
- Azure Landing Zone, Azure Policy and governance (Management Groups, RBAC)
- Microsoft Defender for Cloud (CSPM / Secure Score)
- Microsoft Sentinel with working KQL for monitoring and incident handling
- Identity security: Entra ID, Conditional Access, MFA, PIM
- Based in the UAE and available locally
Full Job Posting
Role Overview
- We are looking for a hands on Azure Cloud Security Engineer who can both run day to day operations and make infrastructure level changes in an Azure and hybrid environment.
- The focus is on securing the Azure platform itself – firewall, WAF, DDoS, networking, VMs, data platforms and AI workloads – and using Microsoft Sentinel for monitoring, incident handling and basic automation.
- A genuine, hands on Azure infrastructure security background is essential.
Key Responsibilities
- Build, configure and harden Azure platform security controls: Azure Firewall, Application Gateway / Web Application Firewall (WAF), DDoS Protection, NSGs, User Defined Routes and Private Endpoints.
- Make infrastructure level changes in Azure – secure VNets, hub and spoke networking and hybrid connectivity (ExpressRoute, Site to Site / Point to Site VPN).
- Support and maintain Azure Landing Zone security architecture – Azure Policy, Management Groups, RBAC and governance guardrails.
- Operate Microsoft Defender for Cloud – cloud security posture management (CSPM), Secure Score, remediation and regulatory compliance.
- Secure VMs, data platforms (Azure SQL / Storage) and AI workloads (e.g. Azure OpenAI) from build through to runtime.
- Manage identity security – Microsoft Entra ID, Conditional Access, MFA, PIM and RBAC.
- Run Microsoft Sentinel for log onboarding, monitoring, incident handling and basic automation / playbooks (a supporting part of the role, not the core).
- Continuously improve detection rules and reduce false positives across cloud and endpoint.
Must Have Skills & Experience
- 5–7 years in cloud / security, with a strong, hands on Azure infrastructure focus.
- Demonstrable hands on configuration (not just monitoring) of Azure Firewall, WAF, DDoS Protection, NSGs and Azure networking.
- Hybrid connectivity: ExpressRoute and Site to Site / Point to Site VPN.
- Azure Landing Zone, Azure Policy and governance (Management Groups, RBAC).
- Microsoft Defender for Cloud (CSPM / Secure Score).
- Microsoft Sentinel with working KQL for monitoring and incident handling.
- Identity security: Entra ID, Conditional Access, MFA, PIM.
- Based in the UAE and available locally.
Preferred Certifications & Nice to Have
- AZ 500 (Microsoft Azure Security Engineer) – strongly preferred.
- AZ 104 / AZ 305 and / or SC 200.
- Infrastructure as Code (Terraform / Bicep).
- Banking or government sector exposure in the GCC.
Apply for this job in 1 click
Skip the repetitive application forms
Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.
Trusted by over 500,000 job seekers on Base Career
More from this employer
More jobs at Dautom
Data Engineer
Abu Dhabi Emirate, UAE
Dautom is seeking a Data Engineer for a 3-month contract in Abu Dhabi. The role requires strong SQL skills, data engineering foundation including medallion architecture and SCDs, and experience with cloud platforms. Idea
Senior Software Asset Management (SAM)
Sharjah Emirate, UAE
Dautom seeks a Senior Software Asset Manager for a contract role with a global client. You will lead SAM, licensing, and FinOps initiatives, requiring deep vendor licensing expertise and ServiceNow SAM Pro certification.
Lead Generation Executive
Dubai, UAE
Dautom is hiring a Lead Generation Executive in Dubai to identify and generate qualified B2B leads, primarily targeting the Saudi Arabian market. The role involves outbound prospecting, CRM management, and collaborating
Full Stack Engineer
Dubai, UAE
Dautom is hiring a Full Stack Developer for a 3-month extendable contract in Dubai. The role involves developing scalable web applications, building RESTful APIs, optimizing MS SQL databases, and integrating AI/LLM capab
Senior Java Software Engineer
Sharjah, UAE
Dautom is hiring a Senior Java Software Engineer for a contract role with the Sharjah Digital Department. The position involves designing, developing, and maintaining Java-based applications using Spring Boot and Oracle.
Relationship Manager – Financial Institutions
Dubai, UAE
Dautom seeks a Relationship Manager to build and maintain relationships with correspondent banks, manage nostro/vostro accounts, and support KYC processes. Ideal candidates have 2-3 years of experience in financial insti
Dotnet Developer
Dubai, UAE
Dautom is looking for an experienced Dotnet Developer with 6+ years of experience to analyze requirements, design databases, develop applications and Web APIs independently. Requires strong skills in C#, ASP.NET, SQL Ser
Data Modeler
Abu Dhabi, UAE
Dautom is hiring a Data Modeler for a contract role in Abu Dhabi. You will design enterprise data models, build ETL pipelines, and implement data quality measures using the Informatica stack and cloud technologies.
Data Engineer
Abu Dhabi Emirate, UAE
Senior Software Asset Management (SAM)
Sharjah Emirate, UAE
Lead Generation Executive
Dubai, UAE
Full Stack Engineer
Dubai, UAE
Senior Java Software Engineer
Sharjah, UAE
Relationship Manager – Financial Institutions
Dubai, UAE
Dotnet Developer
Dubai, UAE
Data Modeler
Abu Dhabi, UAE