Senior Azure Cloud Security Architect, REMOTE (ONSITE- W2 ONLY)

Job Title: Senior Azure Cloud Security EngineerLocation: Berkeley Heights, NJ (Onsite)Duration: 12+ Months Contract to HireRate: Up to $95/hr on W2Work Authorization: USC/GC OnlyWe are seeking a highly skilled Senior Azure Cloud Security Engineer to join a growing enterprise security team supporting critical cloud infrastructure and application environments. This role requires deep expertise in Azure cloud security, Zero Trust Architecture, DevSecOps, IAM, and compliance-driven environments including FedRAMP/NIST.The ideal candidate will have strong hands-on experience securing Azure infrastructure, applications, CI/CD pipelines, and hybrid cloud deployments while collaborating closely with Agile and DevOps teams.Key Responsibilities:Design and implement secure Azure cloud architecture solutionsLead security architecture reviews and security design recommendationsImplement and manage Azure security tools including Microsoft Sentinel, Defender for Cloud, Azure Monitor, Key Vault, and Application GatewayBuild and maintain Zero Trust security models across cloud environmentsSecure Azure DevOps and CI/CD pipelines using DevSecOps best practicesImplement IAM controls including MFA, SSO, Conditional Access, RBAC, PAM/PIM, and Identity FederationSupport FedRAMP High and NIST 800-53 compliance initiativesPerform vulnerability assessments, remediation, and security hardeningCollaborate with infrastructure, application, and DevOps teams to integrate security into SDLCSupport incident response, monitoring, threat detection, and continuous compliance activitiesAssist with hybrid cloud security deployments integrating on-prem and cloud environmentsRequired Skills:5+ years of hands-on Azure Cloud Security experienceStrong experience with Microsoft Azure security servicesExperience with Azure Sentinel (SIEM/SOAR)Experience with Microsoft Defender for CloudStrong understanding of Zero Trust ArchitectureExperience securing Azure DevOps / CI/CD environmentsExpertise in Entra ID / Azure AD, IAM, MFA, SSO, Conditional Access, PAM/PIMExperience supporting FedRAMP, NIST 800-53, RMF, or similar compliance frameworksExperience with vulnerability management and cloud security posture managementStrong understanding of Windows/Linux security in cloud environmentsExperience working in enterprise or regulated environmentsPreferred Qualifications:CISSP, CCSP, CISM certificationsMicrosoft certifications such as AZ-500, SC-100, SC-300Experience with CrowdStrike Falcon EDRExperience with GovCloud or highly regulated cloud environmentsExperience with hybrid cloud and enterprise-scale deploymentsThis is an excellent opportunity to work on enterprise-level cloud security initiatives within a highly technical and security-focused environment.