Microsoft Sr Cyber Security Consultant

At Avanade, cybersecurity consultants are innovators, risk-takers, and challengers of the status quo. If you’re an experienced Microsoft Security Consultant, who can help our clients solve complex Cybersecurity business challenges, this might be the perfect opportunity for you.

• Technical Leadership: Lead pre-sales activities, including technical presentations, demonstrations, and proof-of-concept engagements to showcase the value of Microsoft Security solutions.

• Solution Design: Collaborate with sales teams and customers to understand their security needs and design tailored solutions that address their challenges.

• Customer Engagement: Build strong relationships with customers, acting as a trusted advisor and providing expert guidance on security best practices and Microsoft solutions.

• Cross-Functional Collaboration: Work closely with internal teams in the Sales organization, including Client Solutions, to support the go-to-market strategy and drive successful customer outcomes.

• Market Insights: Stay updated on industry trends, competitive landscape, and emerging security threats to provide strategic insights and inform solution development.

• Stakeholder Management: Collaborate with key stakeholders, including Microsoft sales specialist and executive teams, to support business objectives and drive joint growth.

• 8+ years of experience in cybersecurity with strong expertise in Microsoft Entra & Unified Threat protection (Defender and Sentinel Solutions)

• Lead the design, architecture, and implementation of secure Azure cloud environments, adhering to Microsoft's Cloud Adoption Framework (CAF) and Azure Well-Architected Framework (WAF) security pillars.
• Deep expertise in Azure network security (Azure Firewall, WAF, NSGs, Azure Private Link, DDoS Protection), data security (Azure Key Vault, Azure Disk Encryption, Azure Storage security), and application security (Azure App Service, Azure Kubernetes Service security).
• Proficiency in implementing and managing Azure Policy, Azure Blueprints, and security baselines to enforce organizational standards and compliance.
• Experience with Azure RBAC, Managed Identities, and Service Principals for secure resource access and automation.
• Implement and optimize secure DevOps practices within Azure environments, integrating security throughout the development lifecycle.

• Strategic Deployment & Optimization: Lead the deployment, configuration, and continuous optimization of Microsoft Defender for Cloud across Azure subscriptions, hybrid workloads, and multi-cloud environments (AWS, GCP via Azure Arc).
• Cloud Security Posture Management (CSPM): Drive improvements in Secure Score, manage security recommendations, and ensure compliance with regulatory standards (e.g., ISO 27001, PCI DSS, NIST, HIPAA) using Defender for Cloud's compliance dashboards.
• Cloud Workload Protection Platform (CWPP): Implement and fine-tune Defender plans for various workloads, including:
• Defender for Servers (Azure Arc): Securing Azure VMs and hybrid/multi-cloud servers.
• Defender for SQL: Database protection for Azure SQL and SQL Servers on VMs.
• Defender for Storage: Threat detection for Azure Storage accounts.
• Defender for Key Vault: Protection for cryptographic keys and secrets.
• Defender for App Service: Security for web applications.
• Defender for Containers: Protection for Azure Kubernetes Service (AKS) and container registries.
• Defender for DNS, Azure Cosmos DB, and open-source relational databases.
• Advanced Threat Protection: Configure and monitor advanced threat detection capabilities, just-in-time VM access, and adaptive network hardening within Defender for Cloud.

• Vulnerability Management: Utilize Defender for Cloud's integrated vulnerability assessment tools and recommendations to identify, prioritize, and remediate cloud-based vulnerabilities.

• 8+ years of progressive experience in IT and cybersecurity, with a significant portion dedicated to cloud security (specifically Azure) and security operations, including at least 4-5 years in a leadership, management, or client-facing consulting role.
• Extensive hands‑on expertise with Microsoft Azure Security services and Microsoft Defender for Cloud is mandatory.
• Proven track record of successfully designing, implementing, and managing complex cloud security solutions in diverse enterprise environments.
• Highly desirable certifications: Microsoft Certified: Azure Security Engineer Associate, Microsoft Certified: Azure Solutions Architect Expert, Microsoft Certified: Cybersecurity Architect Expert, CISSP, CISM, CCSP.
• Strong understanding of broader cybersecurity domains, network security, and hybrid/multi-cloud security architectures.
• Exceptional written and verbal communication skills, with a proven ability to articulate complex technical and business concepts clearly and persuasively to all levels of an organization.
• Demonstrated ability to lead, motivate, and develop a high‑performing team in a consulting or advisory capacity.
• Strong organizational skills and ability to manage multiple concurrent projects and priorities in a dynamic, fast‑paced environment.
• Good to have Microsoft Security certifications e.g. SC100, AZ500, AZ-305.