The Security Management Lead serves as the senior technical security expert and architect within the MVO (Minimum viable Operations) framework, providing strategic security leadership across the cloud platform. This role defines security architecture, establishes security standards, and provides technical direction to internal teams and external security contractors (SOC, Firewall). Working under the Digital Infrastructure Architect, this position focuses on technical security excellence, architectural design, and cross-functional security coordination. The role requires deep expertise in cloud security architecture, threat management, and the ability to provide expert technical guidance in a multi stakeholder environment.

DUTIES & RESPONSIBILITIES

• Define and maintain comprehensive security architecture for Azure cloud platform and smart city infrastructure
• Establish security standards, best practices, and technical security policies aligned with platform requirements
• Provide technical security direction and expert guidance to SOC on threat detection, incident response, and SIEM operations
• Define technical requirements and security specifications for Firewall and WAF, firewall rules, and traffic protection
• Lead technical security incident response activities and provide expert analysis during major security events
• Conduct security architecture reviews, threat modeling, and security assessments across all platform components
• Design security controls framework including encryption strategies, access management, and network security architecture
• Collaborate with Network Engineer on network security architecture, segmentation design, and traffic protection strategies
• Provide technical directions to Cloud Security SME on Azure security implementation and best practices
• Interface with Operations Manager on technical security aspects of contractor performance and deliverables
• Coordinate with Compliance Manager to ensure security controls meet regulatory and compliance requirements
• Review and validate security configurations, incident reports, and recommendations from SOC and Firewall SMEs
• Make strategic security technology decisions and evaluate new security tools and capabilities
• Lead security roadmap planning and align security initiatives with technology strategy
• Conduct security training and awareness sessions for internal technical teams
• Participate in capacity planning for security infrastructure and ensure scalability of security architecture

SKILLS & ABILITIES

• Extensive experience designing and implementing enterprise security architectures in Azure cloud environments
• Deep expertise in security frameworks, standards (ISO 27001, NIST), and cloud security best practices
• Strong knowledge of SIEM platforms, threat intelligence frameworks, and security automation technologies
• Expert understanding of network security architecture, firewalls, WAF, and DDoS protection strategies
• Proven ability to provide technical leadership and mentor security professionals
• Strong experience working with security service providers and providing technical direction to external teams
• Excellent analytical and problem-solving skills for security architecture challenges and incident analysis
• Advanced knowledge of Azure security services including Defender for Cloud, Sentinel, and Azure Monitor
• Experience with Palo Alto Networks firewall technologies and web application firewalls
• Strong communication skills with ability to articulate security concepts to technical and business audiences
• Ability to balance security requirements with operational and business needs
• Experience in Services Integrator or multi-vendor environments
• Proficiency in security risk assessment and threat modeling methodologies

Required Certifications

Industry Security Certifications (minimum 2 required):

• CISSP (Certified Information Systems Security Professional)
• CISM (Certified Information Security Manager)
• CISA (Certified Information Systems Auditor)
• CEH (Certified Ethical Hacker)

Cloud & Technology Certifications (minimum 1 required):

• Microsoft Certified: Azure Security Engineer Associate (AZ-500)
• Microsoft Certified: Security Operations Analyst Associate (SC-200)
• Palo Alto Networks Certified Network Security Engineer (PCNSE)
• Palo Alto Networks Certified Security Automation Engineer (PCSAE)

Preferred Additional Certifications

• GIAC Security Essentials (GSEC) or GIAC Certified Incident Handler (GCIH)
• ISO 27001 Lead Auditor/Implementer
• Microsoft Certified: Azure Solutions Architect Expert (AZ-305)