{bc}
linkedin

Azure Cloud Security Engineer

Dautom
Sharjah, UAE
Full Time
Mid
2 weeks ago
Azure FirewallWAFDDoS ProtectionNSGsAzure NetworkingExpressRoute
Free

Job Fit Check

Base Career helps you apply smarter for this job.

?%
Ready to Scan

Key skills for this role

Azure FirewallWAFDDoS Protection
Smart Apply

Full Job Posting

Role Overview

  • We are looking for a hands on Azure Cloud Security Engineer who can both run day to day operations and make infrastructure level changes in an Azure and hybrid environment.
  • The focus is on securing the Azure platform itself – firewall, WAF, DDoS, networking, VMs, data platforms and AI workloads – and using Microsoft Sentinel for monitoring, incident handling and basic automation.
  • A genuine, hands on Azure infrastructure security background is essential.

Key Responsibilities

  • Build, configure and harden Azure platform security controls: Azure Firewall, Application Gateway / Web Application Firewall (WAF), DDoS Protection, NSGs, User Defined Routes and Private Endpoints.
  • Make infrastructure level changes in Azure – secure VNets, hub and spoke networking and hybrid connectivity (ExpressRoute, Site to Site / Point to Site VPN).
  • Support and maintain Azure Landing Zone security architecture – Azure Policy, Management Groups, RBAC and governance guardrails.
  • Operate Microsoft Defender for Cloud – cloud security posture management (CSPM), Secure Score, remediation and regulatory compliance.
  • Secure VMs, data platforms (Azure SQL / Storage) and AI workloads (e.g. Azure OpenAI) from build through to runtime.
  • Manage identity security – Microsoft Entra ID, Conditional Access, MFA, PIM and RBAC.
  • Run Microsoft Sentinel for log onboarding, monitoring, incident handling and basic automation / playbooks (a supporting part of the role, not the core).
  • Continuously improve detection rules and reduce false positives across cloud and endpoint.

Must Have Skills & Experience

  • 5–7 years in cloud / security, with a strong, hands on Azure infrastructure focus.
  • Demonstrable hands on configuration (not just monitoring) of Azure Firewall, WAF, DDoS Protection, NSGs and Azure networking.
  • Hybrid connectivity: ExpressRoute and Site to Site / Point to Site VPN.
  • Azure Landing Zone, Azure Policy and governance (Management Groups, RBAC).
  • Microsoft Defender for Cloud (CSPM / Secure Score).
  • Microsoft Sentinel with working KQL for monitoring and incident handling.
  • Identity security: Entra ID, Conditional Access, MFA, PIM.
  • Based in the UAE and available locally.

Preferred Certifications & Nice to Have

  • AZ 500 (Microsoft Azure Security Engineer) – strongly preferred.
  • AZ 104 / AZ 305 and / or SC 200.
  • Infrastructure as Code (Terraform / Bicep).
  • Banking or government sector exposure in the GCC.

Apply for this job in 1 click

Skip the repetitive application forms

Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.

Sarah M.James T.Maya R.

Trusted by over 500,000 job seekers on Base Career

Start Free Today

More from this employer

More jobs at Dautom