Enable job alerts via email!

Cloud Security Engineer

Flexstaf IT

Toronto

Hybrid

CAD 100,000 - 120,000

Full time

Today
Be an early applicant

Generate a tailored resume in minutes

Land an interview and earn more. Learn more

Job summary

A leading IT staffing agency in Toronto is seeking an experienced Cloud Security Engineer with 7+ years in cloud security. The role involves managing Microsoft cloud solutions M365 and Azure, implementing security measures, and enhancing compliance. You will work in a hybrid model, with 3 days onsite and 2 days remote. Candidates should have strong hands-on experience with Azure security services, Intune, and incident response. Certifications in Azure security technologies are preferred.

Qualifications

  • 5+ years in Cloud Security Engineering roles.
  • Hands-on experience with Microsoft Intune, Azure Security services, and compliance frameworks.
  • Experience in vulnerability management and incident response.

Responsibilities

  • Design and deploy security architectures for Azure and Microsoft 365.
  • Implement identity and access management using Microsoft Entra.
  • Support audit and compliance reporting.

Skills

Cloud Security Engineering
Microsoft Intune
Azure Security Suite
Compliance Frameworks
Incident Response
Problem Solving

Education

Microsoft Certified: Azure Security Technologies (AZ-500)
Microsoft Certified: Endpoint Administrator / Intune Specialist
Microsoft Security Operations Analyst (SC-200)
Microsoft Cybersecurity Architect (SC-100, Preferred)

Tools

Azure Active Directory
PowerShell
Azure CLI
Terraform
Python
Job description

Job Description

Job Description

Location : Toronto (Bathurst and St Clair)

Hybrid : 3 days ONSITE (Mandatory); 2 Days REMOTE

We are seeking an experienced Cloud Security Engineer with 7+ years in cloud security to strengthen our enterprise environments. The role centers on managing, maintaining and supporting Microsoft cloud solutions M365 and Azure. ie Intune, Co-Pilot, Azure Security services, and Microsoft Defender for Cloud and Endpoint along with other capabilities. You will be responsible for securing cloud infrastructure, enhancing threat detection and response and driving Zero Trust and compliance across the cloud environment. Key Responsibilities

  • Design, deploy, and refine Zero Trust security architectures for Azure and Microsoft 365 environments.
  • Implement and manage identities and Access using Microsoft Entra (MFA, SSO, PIM, etc.)
  • Implement and manage Microsoft Intune for device management, including endpoint security, compliance polices, and secure device management.
  • Implement and manage Microsoft Co-Pilot to enhance AI and automation capabilities for operational and integration work.
  • Deploy, configure, and maintain Azure Security services (Azure Security Center, Azure Policy, Key Vault, Privileged Identity Management, Conditional Access, MFA, etc...).
  • Manage and optimize Defender for Cloud (CSPM).
  • Develop, test and support security baselines, RBAC policies and compliance policies through security posture assessments across Azure workloads and endpoints aligned with compliance frameworks (CIS, NIST, ISO, etc..)
  • Support threat modeling, risk assessments, and incident response activities to reduce risk exposure.
  • Support audit, governance, and compliance reporting using Microsoft security and compliance solutions.
  • Familiarity and support of WAFs and Firewalls.
  • Provide technical guidance, security automation, and mentoring to colleagues.
Preferred Qualifications
  • 5+ years in Cloud Security Engineering roles.
  • Hands on experience with :
    • Microsoft Intune (endpoint / device security, compliance, app protection).
    • Co-Pilot for automation
    • Defender suite (Cloud, Endpoint, Identity)
    • Azure AD, Conditional Access, MFA, RBAC, Key Vault
    • Strong Background in Azure Policy, Blueprints and Security Baselines
    • Support VPNs, Firewalls, WAF's, within the Azure enviornment
    • Support Sentinel SIEM / SOAR (analytics, rules, automated playbooks)
    • PIM (Privileged Identity Management)
    • Experience in vulnerability management, systems hardening, orchestration / automation (PowerShell, Azure CLI, Terraform, Python)
    • Support Incident Response in M365 and Azure framework
    • Good Knowledge of compliance frameworks (CIS, NSIT, ISO27001, GDPR, etc.)
    • Excellent problem solving, written and communication skills
    • Bonus : Familiarity with Qualys, LanSweeper, Global Secure Access, Purview
  • Certifications :
    • AZ-500 : Microsoft Azure Security Technologies
    • SC-200 : Microsoft Security Operations Analyst
    • SC-100 : Microsoft Cybersecurity Architect (Preferred)
    • Microsoft Certified : Endpoint Administrator / Intune Specialist
    • Experience with cloud-native security across multi-cloud (Azure, AES, GCP).
    • Familiarity with Zero Trust Architecture and modern endpoint management

FSIN

Get your free, confidential resume review.
or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.
TrustpilotImage showing a rating of 4.5 out of 5 stars on Trustpilot for JobLeads, indicating a high level of customer satisfaction.
Rated “Excellent” based on 18,956 reviews