Job Description / Responsibilities

• Operate and administer Azure cloud environments to agreed SLAs; ensure configurations meet performance, security, scalability, maintainability, and reliability requirements.
• Execute cloud implementation projects/pilots; produce deployment docs, runbooks and as-built artefacts.
• Codify deployments and changes via automation (Terraform/Bicep/ARM/PowerShell/Python) with “automation by default” principles.
• Engage in client ops meetings; drive process improvements and environment optimisation.
• Manage incidents/problems/changes with proper resolution, documentation and reporting.
• Audit, review and implement IT security policies.
• Security Tooling (must-have focus on Microsoft Sentinel):
• Microsoft Sentinel: onboarding, rule creation/tuning, hunting/triage, playbooks/runbooks.
• Database Activity Monitoring (DAM): policy configuration, monitoring/investigations, access reviews (Oracle/SQL Server/MySQL).
• CTVL: maintain/use threat & vulnerability library to prioritise and remediate risks.
• Nexpose (Rapid7): scanning strategy, assessments, reporting, remediation tracking, SIEM integration.

Requirements / Skills

• 3+ years in cloud operations/delivery with client-facing experience.
• Proven hands-on Microsoft Sentinel (required) and SIEM integrations.
• Practical vulnerability management with Nexpose/Rapid7 (or equivalent).
• Knowledge of DAM tools/practices and database security monitoring.
• Scripting/automation (PowerShell/Bash/Python) and IaC (Terraform/Bicep/ARM).
• Understanding of CIS/NIST/ISO 27001 controls and audit practices.
• Strong analytical skills, attention to detail, clear verbal/written communication, and teamwork.

Good to Have

• Exposure to Azure networking, identities (Entra ID), Defender suite, log analytics/KQL.
• Certifications: AZ-104, AZ-500, SC-200, SC-100, Security+, CCSP/CISSP, Rapid7 VM.