CSRS SecOps Head

Azure Subject Matter Expert (SME) The Azure Subject Matter Expert (SME) will lead the design, deployment, and optimization of secure cloud architectures using Microsoft Azure. This role demands extensive expertise in SIEM/SOAR, Defender services, endpoint protection, cloud security posture management (CSPM), threat intelligence, perimeter security, and coding capabilities to ensure robust defense across hybrid and cloud-native environments. The SME must possess a deep understanding of the Well-Architected Framework, Microsoft Security Adoption Framework (SAF), and CIS/CSA controls to ensure alignment with industry standards and best practices. Key Responsibilities Architect and Implement Azure Solutions • Integrate and optimize: • Microsoft Sentinel for SIEM/SOAR capabilities. • Defender for Servers for antivirus (AV), endpoint detection and response (EDR), and file integrity monitoring (FIM). • Defender for Cloud for CSPM and workload protection. • Defender Threat Intelligence for proactive threat hunting and enrichment. • Azure Firewall and Network Security Groups (NSGs) for perimeter security. • Design secure Landing Zones and enforce security baselines. • Develop and implement incident response playbooks and automation workflows in Microsoft Sentinel. • Integrate Defender solutions with Log Analytics and Azure Monitor for enhanced visibility and monitoring. Security Operations and Threat Management • Conduct threat modeling, vulnerability assessments, and compliance audits to identify and mitigate risks. • Implement and manage perimeter security controls, including firewalls, web application firewalls (WAFs), and DDoS protection. • Collaborate with SOC, DevOps, and infrastructure teams to embed security into CI/CD pipelines and operational workflows. • Perform proactive threat hunting and incident analysis using threat intelligence and advanced analytics. Frameworks and Best Practices