**What You’ll Do In The Role** Participate in security design, proof-of-concept testing, certification and onboarding of Armis Centrix IoT/OT security solution + Ensure vendors and contractors meet SLAs and delivery targets + Collaborate with cross-functional teams to discuss, review and design the solution and integration + Present designs/solutions to wider audience for input and review, including senior management or security teams + Create network diagrams and related documentation to propose solutions + Create new operational procedures/runbooks, as required + Identify opportunities to develop tools and automation of managed products + Diagnosis and troubleshooting of systems, networks, and applications as required + Collaborating with project managers and members of the enterprise networking, enterprise computing, end-user computing, and/or tech risk organizations + Provide expert level support for junior level operation teams on IoT/OT security solution + Liaise, manage and govern vendor of IoT/OT security solution to provide world-class level of services + On-call shift is required. {D Part 2: Scope of Role What you'll bring pre-set content based on tier framework + role-specific bullets} **What You’ll Bring To The Role** Overall 10 years of total professional experience. + At least 5 years relevant experience would generally be expected to find the skills required for this role. + Hands-on experience with IoT/OT security solution (e.g. Armis Centrix, Forescout, Darktrace, Claroty) + Experience with UNIX/Linux administration & containers + Experience with Network Access Control (NAC) technologies, with particular focus on 802.1x and MAC Authentication Bypass (MAB), including Cisco ISE (or similar vendor solutions) + Experience working with automation and scripting (e.g. Python, Ansible, third-party vendor APIs) + Experience with networking fundamentals (e.g. VLANs, MPLS, BGP, Proxying) + Experience in deploying observability tools (e.g. Graphana, Prometheus) + Experience with large-scale network security design and documentation + Experience with threat detection and mitigation process for OT/IoT product + Experience supporting delivery of high profile projects to strict deadlines **Role Summary** We are seeking a highly skilled **Azure Cloud Engineer with strong DevOps expertise** to design, implement, secure, and optimize cloud solutions on Microsoft Azure. The ideal candidate will have hands-on experience with Azure Services, Kubernetes, Networking, Landing Zones, Security, and modern DevOps practices. **Key Responsibilities** **Azure Cloud Engineering** + Design, deploy, and manage scalable cloud architectures using **Azure Services** (App Services, AKS, Storage, Key Vault, VNets, Azure Firewall, Load Balancers, API Management, etc.). + Build and manage **Azure Landing Zones** aligned with Cloud Adoption Framework (CAF). + Implement and maintain **Azure Networking** components, including VNets, subnets, NSGs, WAF, VPN/ExpressRoute, Traffic Manager, and Private Endpoints. + Configure and optimize cloud security controls such as **Azure Security Center, Defender, IAM, RBAC, Policies, and Blueprints** . **Kubernetes & Containerization** + Deploy, manage, and operate **Azure Kubernetes Service (AKS)** clusters. + Build containerized applications using Docker and manage CI/CD pipelines for AKS. + Implement workload scaling, monitoring, security hardening, and auto‑repair mechanisms. **DevOps & Automation** + Build and maintain CI/CD pipelines using **Azure DevOps / GitHub Actions / Jenkins** . + Implement Infrastructure as Code (IaC) using **Terraform / Bicep / ARM templates** . + Automate deployments, environment provisioning, and configuration management. + Integrate monitoring tools such as Azure Monitor, Log Analytics, Grafana, and Prometheus. **Security & Governance** + Ensure cloud solutions adhere to compliance standards and security best practices. + Implement identity and access control, threat detection, data encryption, and network security. + Perform continuous risk assessments and recommend mitigation strategies. **Operations & Support** + Troubleshoot cloud, networking, and DevOps-related issues. + Optimize performance, scalability, and cost across Azure resources. + Provide on-call support and collaborate with cross-functional teams. **Required Skills & Experience** + 8–12 years of overall experience with at least **5+ years in Azure Cloud Engineering** . + Strong expertise in: + **Azure Services & Architecture** + **Azure Landing Zones & Governance** + **Kubernetes / AKS** + **Azure Networking** (VNet, Load Balancers, Firewalls, DNS, VPN/ExpressRoute) + **DevOps Tools** (Azure DevOps, GitHub, Jenkins) + **IaC** (Terraform, Bicep, ARM) + **Security & Compliance** + Strong scripting experience in **PowerShell** , **Bash** , or **Python** . + Hands-on experience with cloud monitoring and logging solutions. **Good to Have** + Azure Certifications (AZ‑104, AZ‑400, AZ‑305, or equivalent). + Experience with microservices and distributed systems. + Knowledge of hybrid cloud or on-prem migration strategies. + Experience with Service Mesh (Istio/Linkerd). **Soft Skills** + Excellent communication and stakeholder management. + Ability to lead cloud and DevOps initiatives independently. + Strong analytical and troubleshooting skills.