Senior Cloud Security Architect

Requirements

POSITION REQUIREMENTS

• Advanced mastery of Microsoft Defender suite (Endpoint, Identity, Office, Cloud Apps) and Purview Information Protection
  
• Deep knowledge of Entra ID (Azure AD) identity governance, RBAC, Conditional Access, PIM, and B2BB2C models
  
• Proven experience securing Exchange Online, SharePoint, Teams, and Power Platform (Power Apps, Automate, BI)
  
• Familiarity with Azure services (App Services, Key Vault, App Config, Storage, Virtual Network, Private Link) and Azure Policy, Blueprints, ARMBicepTerraform
  
• Strong grasp of Graph API, OAuth 2.0, OpenID Connect, and application consent governance
  
• Working knowledge of SIEMSOAR (Microsoft Sentinel preferred) and incident‑response workflows.
  
• Ability to translate security risks into concise business language for non‑technical stakeholders
  
• Ability to communicate effectively directly with clients and at times serve as primary point of client contact
  
• Ability to work successfully as a member of a team and independently with minimal supervision
  
• Ability to work under pressure and meet close deadlines
  
• Demonstrated aptitude for learning new technology and adapting to evolving requirements.
  
• Organizational skills, with the ability to manage multiple tasks simultaneously
  
• TRAVEL RELOCATION REQUIREMENTS
  

  
  

  • Up to 5%, this may include travel to any or all 50 US states
    
  • Travel is defined as physically leaving home on behalf of business activities including but not limited to client sites, meetings with other employees, meeting for business development purposes, running errands on behalf of the business, attending industry conferences, etc.
    
  • 
    

    EDUCATION EXPERIENCE REQUIREMENTS
    

    
    

    • Bachelor’s degree in IT, Information Systems, Computer Science, or related discipline
      
    • 
      

      PLUS
      

      
      

      • 8+ years of progressive IT or security experience, with 3+ years in a dedicated security‑architecture or cloud‑security engineering role
        
      • 
        

        Benefits

        Benefits
        

        DLB Associates offers a very competitive benefits package; highlights include
        

        • Choice of comprehensive medical plans (including two PPOstyle plans and a HDHP w HSA option)
          
        • Health reimbursement account (HRA), flex spending accounts (FSA)
          
        • Dental and vision plans
          
        • Comprehensive medical, dental and vision benefits extended to spouse domestic partner and dependent children up to age 26
          
        • 401k with company match and selfdirected brokerage account option
          
        • PTO including additional paid time off during the last week of the year
          
        • Company paid life insurance coverage for employees and their eligible dependents
          
        • Short and longterm disability, AD&D coverage
          
        • Professional development opportunities, tuition reimbursement and professional licensing assistance
          
        • Paid parental leave after one year of employment
          
        • DLB Associates is an EEOAffirmative Action Employer and participates in the EVerify program with the Department of Homeland Security. We encourage diversity in our workforce.
          
          Are you ready to challenge yourself and redefine standards in the AEC industry? Apply now and join our awardwinning team!​
          
          
          
          ​NOTICE TO THIRD PARTY AGENCIES:
          
          DLB does not accept unsolicited resumes from recruiters, employment agencies, or other staffing services. Unsolicited resumes include any resume or hiring document sent to DLB in the absence of a signed Service Agreement where DLB has expressly requested recruitmentstaffing services specific to the position at hand. Any unsolicited resumes, including those submitted to hiring managers or other business leaders, will become the property of DLB and DLB will have the right to hire that candidate without reservation – no fee or other compensation will be owed or paid to the recruiter, employment agency, or other staffing service.