M365 Cloud Security Architect at Leading Global Bank in London

Job type:
Start date:
12 months
Published at:
flag_no United Kingdom
Project ID:

This project has been archived and is not accepting more applications.
Browse open projects on our job board.

Top Global Bank requires an M365 Cloud Security Architect to work as part of a highly technical team of professionals who are responsible for the design, development, enablement and deployment of solutions to deliver preventative and detective security solutions on a Microsoft 365 environment, as well as supporting security solutions in Azure AD.

Good organizational skills, technical expertise, experience of best practice in Cloud security configurations (eg CIS, Cloud Security Alliance) and attention to detail are key in this role. As an M365 Cloud Security Architect, you will also need to collaborate and work within a cross functional team of other Cloud SMEs, who are working on the AWS and Azure platforms.

Required Skills & Background:

  • Strong understanding of core Cloud concepts and 4 years + experience of working in Cloud computing
  • Expert knowledge on the M365 platform, Defender Suite, Log Analytics Workspace, Azure Sentinel and AzureAD
  • Detailed knowledge on the MSFT Cloud Security products applicable to M365 (M365 Defender, Log Analytics Workspaces, Azure Sentinel including UEBA, Azure Policies, Azure RBAC/PIM, M365 Compliance and Security)
  • Expert knowledge on best practice for configuration of preventative and detective security controls as required to secure the M365 platform, M365 services (Outlook, Office 365, OneDrive, SharePoint, Teams) and Azure AD
  • Mid-level of proficiency in Terraform, PowerShell, Python, C#, Kusto Query Language desired
  • Operating Model: Good understanding of non-technical operating model aspects, such as service management (change, incident, problem)
  • Networking fundamentals: CIDRs, subnet masking, routing, proxies, reverse proxies, Firewalls, BGP
  • Security concepts: preventative controls, alerting controls, security monitoring, assurance, penetration testing
  • Understand general authN/authZ and federation concepts
  • Understand general RBAC concepts
  • Understand certificate and secrets management
  • Telemetry: understand the basics of logging, monitoring and overall telemetry, knowledge of more modern tracing patterns
  • General comfort using CI/CD tools
  • Ability to produce supporting Architectural diagrams in Visio
  • Excellent verbal and written communications skills. Ability to communicate complexity clearly. Experiencing of articulating designs and strategies at both a detailed engineering/architecture level and to senior stakeholders
  • Financial Services industry experience preferred
  • Desired Certifications/skills track: Azure Security Engineer Associate, Microsoft Information Protection Administrator, Security Operations Analyst Associate