Azure Security Engineer (no c2c)

JOB TITLE: Audit / Azure Security engineer (no c2c)LOCATION: Berkeley Heights, NJ (onsite)INDUSTRY: FinancialJOB SUMMARY: This is a heavy audit-focused Azure Security Engineer role within an established cloud environment, responsible for maintaining compliance, refining the organization’s security posture, and implementing new security requirements. The role supports the migration of Treasury applications to the Azure cloud while operating within FedRAMP-aligned, Zero Trust architecture environments, with a strong focus on Azure security, Identity and Access Management (IAM), and overall audit readiness. RESPONSIBILITIES:Maintain and enhance Azure cloud security compliance and audit readinessPerform architecture reviews and guide security-related design decisionsImplement and manage: IAM (Entra ID / Azure AD)Posture management and workload protectionSIEM/SOAR (e.g., Azure Sentinel)Application security testingMonitor cybersecurity policies, compliance artifacts, and system authorizationMap security controls to regulatory/compliance requirements (FedRAMP, etc.)Integrate Zero Trust architecture into cloud solutionsAssess vulnerabilities and provide incident response supportSupport SOC audits and collaborate with auditors to ensure complianceConfigure and manage security tools (Defender, Sentinel, Application Gateway, etc.)Implement privileged access controls, payment security controls, and audit trails REQUIREMENTS:5+ years of Azure security engineering experienceStrong expertise in Azure security tools: Azure AD (Entra ID), Azure Sentinel, Defender, Monitor, Key VaultDeep knowledge of: IAM, MFA, SSO/Federation, Privileged Access Management (PAM), ICAMAuthentication & authorization frameworksVulnerability assessment/testing in AzureContinuous diagnostics, monitoring, alerting, and incident responseExperience maintaining compliance in cloud security environmentsHands-on experience implementing Zero Trust architectureFamiliarity with FedRAMP or similar regulated environmentsExperience securing Azure DevOps and application/infrastructure stacksBachelor’s degree in a technical field (Master’s preferred) PREFERRED:Security certifications: CISSP, CISM, CCSPMicrosoft certifications: SC-100, SC-300, AZ-500Experience with CrowdStrike Falcon (EDR for Azure)Knowledge of FISMA complianceMulti-cloud certifications (AWS/GCP)About Theoris: Our goal is to Fuel Your Career! As a Theoris team member, you join a culture based on people-centered values and an environment that fosters both personal and professional growth. We build long-term relationships with our clients and our consultants. With over 30 years of building strong relationships in the industry, we’re uniquely positioned to make the right connections. This knowledge is used to find the right job placement. Our recruiting teams are experts dedicated to the information technology and engineering staffing space and are highly respected by our client base.