Azure Security Engineer

**About the Company** TrueMed LIS is a cloud\-based Laboratory Information System (LIS) platform focused on automating and optimizing medical diagnostic laboratory operations. The platform supports laboratories with digital workflows, analytics, specimen tracking, patient and physician portals, and secure healthcare data management. **Position Summary** We are seeking a highly skilled Azure Security Engineer to secure, monitor, and optimize our Microsoft Azure cloud infrastructure and healthcare technology ecosystem. The ideal candidate will be responsible for implementing enterprise\-grade cloud security controls, protecting sensitive healthcare and laboratory data, ensuring HIPAA\-compliant cloud operations, and strengthening the organization’s cybersecurity posture across all Azure environments. The Azure Security Engineer will work closely with DevOps, Infrastructure, Engineering, and Compliance teams to secure cloud\-native applications, APIs, databases, and integrations supporting healthcare and laboratory operations. **Key Responsibilities** **Azure Cloud Security** * Design and implement secure Azure cloud architectures and environments. * Secure Azure Virtual Machines, Storage Accounts, Azure SQL Databases, App Services, and Kubernetes workloads. * Configure and manage Azure networking security including: * Azure Firewall * Network Security Groups (NSGs) * Web Application Firewall (WAF) * VPN Gateways * Application Gateway * Implement Zero Trust security architecture across cloud services. **Identity \& Access Management (IAM)** * Manage Microsoft Entra ID (Azure Active Directory). * Configure and maintain: * Multi\-Factor Authentication (MFA) * Conditional Access Policies * Role\-Based Access Control (RBAC) * Single Sign\-On (SSO) * Privileged Identity Management (PIM) * Monitor privileged accounts and enforce least\-privilege access principles. **Security Monitoring \& Threat Detection** * Configure and manage Microsoft Defender for Cloud. * Implement SIEM monitoring using Microsoft Sentinel. * Investigate cloud security alerts, incidents, and suspicious activities. * Develop and maintain incident response procedures. * Perform root cause analysis for security incidents and breaches. **Compliance \& Healthcare Security** * Ensure Azure environments comply with healthcare security standards including: * HIPAA * SOC 2 * ISO 27001 * GDPR (where applicable) * Conduct regular vulnerability assessments and security audits. * Maintain audit logs, compliance documentation, and risk reports. * Support regulatory and client security assessments. **Application \& DevSecOps Security** * Integrate security controls into CI/CD pipelines. * Secure APIs, integrations, and healthcare data flows. * Implement secrets management using Azure Key Vault. * Review Infrastructure as Code (IaC) deployments for security best practices. * Collaborate with software engineering teams to remediate vulnerabilities. **Data Protection \& Risk Management** * Protect patient, physician, and laboratory data against unauthorized access. * Implement encryption standards for data at rest and in transit. * Configure backup security, disaster recovery, and business continuity controls. * Monitor cloud environments for vulnerabilities and misconfigurations. **Operational Support** * Provide Level 2/Level 3 support for cloud security operations. * Collaborate with infrastructure and engineering teams on security initiatives. * Maintain cloud security documentation and SOPs. * Stay updated on evolving cybersecurity threats and Azure security technologies. **Required Qualifications** * Bachelor’s degree in Computer Science, Information Security, Cybersecurity, or related field. * 3\+ years of hands\-on experience in Azure cloud security or cybersecurity engineering. * Strong understanding of cloud\-native security principles. * Experience securing SaaS or healthcare technology platforms preferred. * Experience with compliance\-driven environments is highly desirable. **Technical Skills Required** **Microsoft Azure** * Microsoft Entra ID (Azure AD) * Microsoft Defender for Cloud * Microsoft Sentinel * Azure Firewall * Azure Policy * Azure Monitor \& Log Analytics * Azure Key Vault * Azure Networking **Security \& Compliance** * SIEM/SOC Operations * Incident Response * Vulnerability Management * HIPAA Compliance * Identity Governance * Endpoint \& Workload Protection **DevOps \& Automation** * PowerShell * Azure CLI * ARM Templates / Terraform * CI/CD Security Practices **Infrastructure \& Networking** * TCP/IP Networking * VPN \& Firewalls * DNS \& Routing * Linux \& Windows Administration **Preferred Certifications** * Microsoft Certified: Azure Security Engineer Associate (AZ\-500\) * Microsoft Certified: Azure Fundamentals (AZ\-900\) * SC\-200: Microsoft Security Operations Analyst * SC\-900: Security, Compliance, and Identity Fundamentals * CompTIA Security\+ * CISSP (preferred) **Preferred Experience** * Experience working with healthcare or laboratory systems. * Experience securing APIs and cloud\-native healthcare applications. * Familiarity with HIPAA and healthcare data privacy requirements. Experience with SaaS product environments and multi\-tenant architectures.