SC Cleared Azure Security Architect - Cloud Azure & Data Fabric
Responsibilities:
- Azure Security Architecture
- Develop end-to-end security models for Azure (IaaS, PaaS, SaaS)
- Design secure landing zones, network segmentation, and identity/access management (Azure AD, RBAC, Privileged Identity Management)
- Implement Azure-native security controls: Defender for Cloud, Sentinel, Key Vault, managed identities, encryption-at-rest/in-transit
- Oversee secure integration of Azure services (Data Lake, Synapse, Databricks, Cosmos DB, API Management)
- Data Fabric Security
- Define security patterns for distributed data platforms (Data Fabric, Data Mesh, MDM, DQ, ETL/ELT)
- Implement data lineage, classification, and access controls across hybrid/multi-cloud
- Design and enforce data privacy, retention, and compliance frameworks (GDPR, ISO 27001, NIST)
- Integrate security controls with data pipelines, cataloging, and governance tools
- Risk & Compliance
- Conduct risk assessments, threat modelling, and gap analysis for cloud/data platforms
- Align architecture with regulatory requirements and enterprise policies
- Lead security reviews, audits, and remediation for Azure and Data Fabric solutions
- DevSecOps & Automation
- Embed security in CI/CD pipelines, IaC templates (ARM, Bicep, Terraform)
- Automate security monitoring, alerting, and incident response (SIEM, SOAR)
- Drive adoption of secure coding, vulnerability management, and patching practices
- Stakeholder Engagement
- Advise business, IT, and data teams on secure solution design and risk mitigation
- Provide architectural guidance for cloud migration, data modernization, and integration projects
- Typical Deliverables:
- Azure Security Reference Architecture
- Data Fabric Security Blueprint
- Security controls Matrix (cloud/data)
- Risk assessment and mitigation plan
- Compliance mapping (GDPR, ISO, NIST)
- Security runbooks and operational procedures
Preferred Skills & Experience
- 11+ years in security architecture, cloud security, or data platform security roles
- Hands-on experience with Azure security tools and services
- Strong knowledge of data governance, privacy, and compliance frameworks
- Experience with Data Fabric, Data Mesh, MDM, and distributed data platforms
- Familiarity with DevSecOps, automation, and CI/CD security integration
- Excellent communication, stakeholder management, and documentation skills
- Any of the following certifications is advantageous: Microsoft Certified: Azure Solutions Architect Expert (AZ-305), Microsoft Certified: Cybersecurity Architect Expert (SC-100), Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Cloud Security Professional (CCSP), ISO 27001 Lead Auditor/Lead Implementer
Please note candidates must hold or be eligible to undergo SC Clearance. This role is mainly remote, however occasional UK travel may be required.