Senior Azure Consultant

Senior Azure Consultant – Azure Firewall Migration

We’re looking for a Senior Azure Consultant to lead a major global migration from FortiGate virtual firewalls to Azure Firewall across multiple Azure regions.

This is a senior design authority role, owning the end-to-end architecture, migration strategy, routing/security patterns, governance model, Infrastructure-as-Code delivery, cutover planning, and operational handover.

You’ll be responsible for leading discovery, translating FortiGate rules into Azure Firewall Policy, defining global and regional firewall policy models, and ensuring the migration aligns with SOC, logging, routing, and security governance requirements.

Key responsibilities:

  • Lead the design and delivery of a global FortiGate to Azure Firewall migration
  • Act as the technical authority for Azure Firewall architecture, using Azure Virtual WAN hub/spoke
  • Own discovery across firewall policies, NAT, UDRs, BGP, ExpressRoute, traffic flows, and regional dependencies
  • Define and implement global base firewall policies and regional child policies
  • Translate and rationalise FortiGate rules into Azure Firewall Policy
  • Lead routing design across UDRs, vWAN, BGP and ExpressRoute
  • Own SKU sizing, SNAT capacity planning, public IP planning, and inspection requirements
  • Define logging, monitoring, and SOC integration using Log Analytics and Microsoft Sentinel
  • Support integration with Zscaler, Azure Front Door and Application Gateway
  • Deliver reusable Terraform / Infrastructure-as-Code modules and Git-based change control
  • Build migration runbooks, rollback plans, validation criteria, and regional cutover strategies
  • Lead migration execution, hypercare, troubleshooting, and BAU handover

Key skills required:

  • Strong hands-on experience with Azure Firewall
  • Deep knowledge of Azure Virtual WAN, hub/spoke networking, routing and segmentation
  • Previous experience migrating from FortiGate / Fortinet firewall environments
  • Strong understanding of NAT, DNAT/SNAT, UDRs, BGP, ExpressRoute and traffic inspection
  • Experience with Terraform and Infrastructure-as-Code delivery
  • Strong security governance, firewall policy, and rule lifecycle experience
  • Experience with Microsoft Sentinel, Log Analytics, SOC integration and operational dashboards
  • Exposure to Zscaler, Azure Front Door and Application Gateway would be highly beneficial
  • Ability to lead workshops, own architecture decisions, mentor engineers, and drive technical delivery across global teams

Contract Details:

  • £575 - £625 Per Day (Inside I35)
  • Remote (Besides 1st Month, 2 Days Per Week)
  • Initial 3-Month Contract + Extension

Please apply for immediate consideration.

Apply Now
Apply Now

Job Details

Company
Experis UK
Location
England, United Kingdom
Posted