We are looking, on behalf of our client, for a Cloud Security Operations Engineer who will play a key role in ensuring the security, reliability, and resilience of a cloud-based infrastructure.
This position works closely with the CTO and involves full ownership of the Microsoft Azure environment, in a highly regulated setting with strict security and compliance requirements specific to a licensed payment institution.
The role focuses on building a security-by-design architecture, driving automation across operations, and proactively identifying risks and vulnerabilities before they impact the business.

Role details

• Employment type: permanent
• Work model: hybrid – 2 days/week from the office
• Location: Bucharest – Pipera area
• Onboarding period: 4–5 days/week on-site during the first 3 weeks
• Budget: 14,000 – 16,000 RON net/month

Key responsibilities

• Manage, secure, and continuously optimize the Microsoft Azure environment
• Operate and maintain core Azure services such as AKS, App Services, Azure SQL, Service Bus, and Key Vault
• Implement and manage security solutions including Microsoft Defender for Cloud, Microsoft Sentinel (SIEM), and WAF
• Define and enforce Identity & Access Management policies, including MFA and Privileged Identity Management (PIM)
• Integrate security controls, automated testing, and scanning into CI/CD pipelines (Azure DevOps / GitHub Actions)
• Support compliance and audit readiness by maintaining technical documentation and coordinating vulnerability assessments and remediation
• Design and support disaster recovery and business continuity mechanisms
• Build and maintain real-time monitoring dashboards and handle incident response activities
• Proactively identify security gaps, vulnerabilities, and potential system bottlenecks

Requirements

• Hands-on experience (ideally minimum 7+ years) with Microsoft Azure – essential
• Strong background in cloud security operations
• Solid understanding of network security, encryption standards, and threat modeling
• Hands-on experience with:
  • Microsoft Sentinel and Microsoft Defender for Cloud
  • WAF, disaster recovery, and SOC-related operations
  • Identity & Access Management / Privileged Access Management
• Experience with Infrastructure as Code (Terraform, Bicep, or ARM templates)
• Scripting skills (PowerShell and/or Bash)
• Certifications such as AZ-104 and AZ-500 are a strong plus

Ideal profile

• Proactive, prevention-oriented mindset
• Ability to take ownership of cloud security end-to-end
• Strong analytical thinking and attention to detail
• Experience working in regulated environments is a plus

If this sounds relevant, feel free to reach out for more details or share your CV