Solutions Architect

Cloud Security Leader for Azure Security Controls

About the Role

• Implement, manage, and optimize security controls across our Azure cloud environment.

Work closely with IT teams, DevOps, and cloud architects to secure infrastructure, applications, and data on Microsoft Azure.

Leverage your expertise in Azure security services and best practices to protect against cyber threats and ensure compliance with regulatory standards.

About Us

The Innovative Customer Experience (ICE) Division is a team of 350 talented professionals, including solution architects, computer systems professionals, and computer system technicians.

We provide mission-driven IT expertise to support LANL's vital work across unclassified and classified networks. Our team is responsible for optimizing information technology for maximum efficiency, ensuring seamless IT service delivery and system performance, applying configuration management best practices, and creating processes and standards for technology selection and implementation.

Minimum Job Requirements

• Experience in designing and implementing cloud-native solutions with a focus on scalability, cost efficiency, and security in Azure.
• Hands-on experience with monitoring, investigating, and responding to security incidents within Azure environments using native tools like Azure Security Center and Azure Sentinel.
• Proven experience working with Microsoft Azure services, including Virtual Machines (VMs), Azure Functions, App Services, Storage & Networking, and Azure Kubernetes Service (AKS).
• Strong understanding of network security concepts, including VPNs, Firewalls, and Load Balancers.

Education & Experience

Required: Bachelor's degree and 10 years of related experience, OR an equivalent combination of education and experience directly related to the occupation.

Desired Qualifications:

• Experience with security in multi-cloud environments (Azure AWS).
• Knowledge of DevOps security and CI/CD best practices.
• Expertise in Azure Security Center, Azure Sentinel, Azure Key Vault, and Azure Firewall.
• Experience with Azure Active Directory (Azure AD) security and access control.