Microsoft Security Architect

Microsoft Security Architect

Department: Azure

Employment Type: Full Time

Location: Belfast

We are seeking a highly skilled and experienced Microsoft Security Architect to join our dynamic team!

The ideal candidate will be a subject matter expert in Microsoft's security ecosystem, with a strong focus on Azure, Entra, and the Microsoft Security Solutions suite. This role involves designing and implementing robust, secure, and compliant cloud solutions for our customers.

You will be a key player in client-facing engagements, responsible for gathering requirements, architecting solutions, and outlining implementation plans.

• Client Consultation: Meet with customers to understand their business needs, security challenges, and technical requirements.
• Solution Design & Architecture: Design comprehensive security solutions utilizing Microsoft technologies such as Azure, Entra , Entra Private Access, and the Defender suite (Defender for Endpoint, Defender for Cloud).
• Proposal Development: Create detailed solution proposals, including technical architecture diagrams, cost estimations, and implementation timelines.
• Governance & Compliance: Ensure all solutions adhere to best practices for security and governance, incorporating principles like Azure Locks, tags, and robust disaster recovery (DR) strategies. Knowledge of relevant regulatory and data protection standards (e.g., GDPR, ISO 27001) is a significant advantage.
• Technical Leadership: Act as the technical authority on Microsoft security, providing guidance and expertise to both clients and internal teams.
• Documentation: Produce high-quality documentation for all architectural designs, implementation plans, and security standards.

• Expertise in Microsoft Azure: Deep understanding of Azure infrastructure, networking, and security services.
• Identity & Access Management: Strong proficiency with Entra  (formerly Azure AD), including Entra Private Access and advanced identity security principles.
• Microsoft Security Suite: Hands‑on experience with Microsoft Defender services (Defender for Endpoint, Defender for Cloud) and Microsoft Sentinel (or similar SIEM solutions) for advanced threat monitoring and response.
• Network Security: Proven experience with Azure networking components such as Azure Firewall, Network Security Groups (NSGs), and familiarity with third‑party Network Virtual Appliances (NVAs) like Barracuda.
• Endpoint Management: Knowledge of Microsoft Intune for managing and securing endpoints.
• Communication & Interpersonal
  
  Skills:
  
  Fluent in English with exceptional verbal and written communication skills, capable of effectively presenting complex technical concepts to diverse audiences.
• Strong Documentation
  
  Skills:
  
  Meticulous attention to detail in creating clear and comprehensive technical documentation.

• Relevant Microsoft certifications (e.g., AZ‑500, SC‑100).
• Knowledge of secure development lifecycle (SDLC) processes.
• Experience with data protection and privacy regulations.
• Project management experience or familiarity with project delivery methodologies.