This role acts as a technical security enabler for the platform, working closely with the Information Security Officer to ensure that security requirements are translated into scalable, reliable, and auditable technical controls across cloud infrastructure, CI/CD pipelines, and identity platforms.
Design and operate secure-by-default cloud platform components on Azure, including network, computer, Kubernetes, and storage security.
Implement platform-level security guardrails and baseline configurations using Infrastructure as Code (e.g., Terraform).
Define and enforce strong identity, access, and privilege management (RBAC, least privilege, JIT/privileged access).
Embed security controls into CI/CD pipelines (secure builds, secrets management, dependency and artifact integrity) following DevSecOps best practices.
Enable security monitoring, logging, and SIEM integration; facilitate incident result and platform-level threat detection.
Build vulnerability management, secure patching, and compliance with security frameworks (e.g., ISO 27001, TISAX).
Partner with engineering teams to build, operate, and continuously improve a reliable, scalable Azure/Kubernetes platform, including developer self-service and operational support
