Job Description
This role will be responsible for developing and enforcing network security strategies, architecture standards, and technical solutions that align with business and compliance requirements.
Key Responsibilities:
- Design, implement, and maintain secure network architectures across Azure cloud and on-premise environments.
- Lead the development of network segmentation, firewall policies, virtual networks (VNets), and Azure network security groups (NSGs).
- Define and enforce secure connectivity between Azure services, on-premises environments, and third-party partners using VPNs, ExpressRoute, and Azure Virtual WAN.
- Develop security architecture blueprints, roadmaps, and technical documentation.
- Collaborate with cloud engineers, DevOps teams, and security operations to integrate security controls into CI/CD pipelines.
- Conduct risk assessments and threat modeling for network security controls, including zero trust architecture and micro-segmentation strategies.
- Evaluate and recommend tools and services to enhance network security (e.g., Azure Firewall, Azure DDoS Protection, Azure Private Link).
- Monitor emerging threats, vulnerabilities, and best practices; maintain compliance with industry regulations such as NIST, ISO 27001, or CIS Benchmarks.
- Support incident response and forensic investigations related to network activity.
- Serve as a technical mentor and security advocate across IT teams.
Required Qualifications:
- Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or a related field.
- 5+ years of experience in network security, with at least 2+ years in cloud security architecture with Azure.
- Expert knowledge of Azure networking (VNets, NSGs, Azure Firewall, Application Gateway, Load Balancers, ExpressRoute, VPN Gateway).
- Familiarity with Microsoft Defender for Cloud, Azure Policy, and Azure Security Center.
- Strong understanding of zero trust, SASE, and cloud-native security architectures.
- Experience designing and implementing secure hybrid cloud solutions.
- Proficiency in TCP/IP, DNS, VPNs, BGP, IPSec, and SSL/TLS.
- Excellent communication and documentation skills.
Preferred Qualifications:
- Microsoft Certified: Azure Solutions Architect Expert or Azure Security Engineer Associate
- Certifications such as CISSP, CCSP, or GIAC Cloud Security (GCLD, GPCS)
- Familiarity with other cloud providers (AWS, GCP)
- Scripting or automation experience (e.g., PowerShell, Terraform, ARM templates, Bicep)
Opportunity 100% remote living in Mexico, for Mexican citizens or forigners with work permit VISA
Availability to work in EST hrs
English proficiency
Only resumes in English will be considered