Senior Cloud Security Consultant - Azure Security Assessment

Job Description: Senior Cloud Security Consultant - Azure Security Assessment Position Overview We are seeking experienced Cloud Security Consultants for a 10-week onsite engagement in Abu Dhabi, UAE, to conduct a comprehensive Azure Cloud Security Governance Assessment for a major enterprise client. This role requires deep technical expertise in Azure security, strong consulting skills, and the ability to work effectively in a client-facing environment. Engagement Details Position Title: Senior Cloud Security Consultant Location: Abu Dhabi, UAE (100% onsite) Duration: 10 weeks (with possibility of extension) Start Date: Immediate/Flexible Travel Required: Yes (relocation to Abu Dhabi for engagement duration) Clearance Required: UAE security clearance (assistance provided) Role Summary As a Senior Cloud Security Consultant, you will be part of a specialized team conducting an in-depth security assessment of the client’s Azure cloud environment. You will evaluate technical controls, governance frameworks, and compliance posture against UAE regulations and international standards, providing expert recommendations to enhance the organization’s cloud security maturity. Key Responsibilities Technical Assessment (60%) 1. Azure Security Architecture Review o Evaluate Azure landing zone design and implementation o Assess network segmentation and security boundaries o Review hub-spoke and virtual network architectures o Analyze traffic flow and data movement patterns o Validate defense-in-depth implementation 2. Security Configuration Assessment o Review Azure Policy and Blueprint implementations o Assess Network Security Groups (NSGs) configurations o Evaluate Azure Firewall and Web Application Firewall rules o Validate Azure Security Center/Defender configurations o Review Key Vault and encryption implementations 3. Identity & Access Management o Assess Azure AD configuration and security settings o Review Privileged Identity Management (PIM) implementation o Evaluate conditional access policies and MFA enforcement o Analyze RBAC roles and permissions o Review service principal and managed identity usage 4. Compliance & Governance o Map controls to UAE CSC National Cloud Security Policy o Assess compliance with NIST CSF, CIS Azure, and ISO 27017 o Review Azure governance framework and policies o Evaluate management group hierarchy and subscriptions o Validate regulatory compliance controls 5. Data Security & Privacy o Review data classification and labeling practices o Assess encryption at rest and in transit o Evaluate data residency and sovereignty controls o Review database security configurations o Validate data loss prevention mechanisms Consulting & Advisory (25%) 1. Stakeholder Engagement o Conduct interviews with technical and business stakeholders o Facilitate workshops and discovery sessions o Present findings to technical and executive audiences o Build relationships with client teams o Manage stakeholder expectations 2. Risk Assessment & Remediation o Identify and document security vulnerabilities o Perform risk scoring and prioritization o Develop practical remediation recommendations o Create implementation roadmaps o Provide cost-benefit analysis for recommendations 3. Knowledge Transfer o Conduct training sessions for client teams o Develop technical documentation and guides o Share best practices and industry insights o Mentor junior team members o Create reusable templates and frameworks Documentation & Reporting (15%) 1. Report Development o Document technical findings with evidence o Write clear and actionable recommendations o Develop executive summaries o Create compliance matrices and gap analyses o Produce technical remediation playbooks 2. Presentation Materials o Develop executive presentations o Create technical deep-dive materials o Design visual dashboards and heat maps o Prepare workshop materials o Document architecture diagrams Required Qualifications Education Bachelor’s degree in Computer Science, Information Security, or related field Master’s degree preferred but not required Experience Minimum 5-7 years of information security experience Minimum 3-4 years of hands-on Azure security experience Minimum 2-3 years of security consulting/assessment experience Experience with enterprise-scale Azure deployments (500+ resources) Experience working in the Middle East region (preferred) Technical Skills Azure Security (Expert Level): - Azure Security Center/Microsoft Defender for Cloud - Azure Policy and Blueprints - Azure AD and Privileged Identity Management - Azure Key Vault and encryption services - Azure Firewall and Network Security Groups - Azure Monitor and Log Analytics - Azure DevOps security and CI/CD pipelines - Azure Kubernetes Service (AKS) security - Azure SQL and Cosmos DB security Security Frameworks & Standards: - NIST Cybersecurity Framework - CIS Controls and Benchmarks - ISO 27001/27017/27018 - CSA Cloud Controls Matrix - OWASP Top 10 and API Security - Zero Trust Architecture principles - Well-Architected Framework (Security Pillar) Tools & Technologies: - PowerShell and Azure CLI - ARM Templates and Bicep - Terraform/Infrastructure as Code - Git and version control - Security scanning tools (Qualys, Nessus, etc.) - SIEM platforms (Sentinel, Splunk, QRadar) - DevSecOps tools and practices Cloud Platforms: - Microsoft Azure (Primary) - Knowledge of AWS/GCP (Advantageous) - Hybrid cloud architectures - Multi-cloud security considerations Soft Skills Consulting Excellence: - Outstanding verbal and written communication - Strong presentation and facilitation skills - Ability to explain technical concepts to non-technical audiences - Professional demeanor and appearance - Cultural sensitivity and adaptability Problem-Solving: - Strong analytical and critical thinking abilities - Creative approach to complex problems - Ability to work under pressure - Detail-oriented with quality focus - Self-motivated and proactive Collaboration: - Team player with collaborative mindset - Ability to work with diverse stakeholders - Conflict resolution skills - Mentoring and coaching abilities - Crossfunctional coordination Certifications (Preferred) Microsoft Certified: Azure Security Engineer Associate (AZ-500) Microsoft Certified: Azure Solutions Architect Expert Microsoft Certified: Cybersecurity Architect Expert Microsoft Certified: Azure DevOps Engineer Expert Certifications (Preferred) CISSP (Certified Information Systems Security Professional) CCSP (Certified Cloud Security Professional) CISA (Certified Information Systems Auditor) CEH (Certified Ethical Hacker) CompTIA Security+ AWS/GCP Security Certifications Language Requirements English: Fluent (written and spoken) - Mandatory Arabic: Basic understanding - Advantageous

Job Type: Contract