At afarax, we connect top freelance IT professionals with high-impact projects. We are currently seeking an experienced Azure Cloud Architect with Security Expertise. If you’re looking for your next challenge, we want to hear from you!

The project

Our client in the utilities sector is searching for a freelance Azure Cloud Architect with strong Security expertise to reinforce their team.

Key responsibilities

• Cloud Architecture:
  Design and implement scalable, secure, and highly available Azure cloud infrastructures aligned with business requirements and compliant with security standards (ISO 27001, GDPR, NIS2…).

• Cloud Governance:
  Implement cloud security governance using Azure Defender, Azure Policy, Management Groups, and Azure Blueprints.

• Identity & Access Management (IAM):
  Configure and manage Azure Entra ID, PIM, RBAC, conditional access, and least-privilege security models.

• Encryption & Data Protection:
  Secure data at rest and in transit, leveraging Azure Key Vault and Azure Disk Encryption.

• Automation & Security Tools:
  Apply DevSecOps principles and use tools such as ArgoCD, Terraform, Bicep, or ARM templates to automate secure infrastructure provisioning.

• Security Monitoring & Incident Response:
  Automate vulnerability scanning, detect threats, and monitor environments with Azure Sentinel, Azure Monitor, and Azure Defender. Develop incident response plans.

• Disaster Recovery & Business Continuity:
  Design and implement secure DR strategies across cloud environments.

• Cost Management & Optimization:
  Monitor usage and implement cost-effective cloud solutions without compromising on security.

• Risk Assessment & Management:
  Perform security risk assessments, vulnerability analysis, penetration testing, and propose remediation.

• Collaboration & Leadership:
  Work closely with DevOps, development, operations, and security teams. Provide best-practice guidance and mentoring.

• Documentation:
  Produce up-to-date documentation on cloud and security architectures, policies, and strategies.

Is this you?

• 5+ years experience in cloud security / cloud architecture / DevSecOps.

• 3+ years hands-on experience designing secure environments on Microsoft Azure.

• Expertise with Azure security tools: Azure Defender, Azure Sentinel, Azure Key Vault, Azure Entra ID, Azure Firewall, etc.

• Strong knowledge of security frameworks (ISO 27001, GDPR, NIS2).

• Experience with IAM and identity governance (PIM, RBAC, MFA, Conditional Access).

• Skilled in encryption technologies: Azure Disk Encryption, SSL/TLS, Azure Information Protection.

• Experience with containerization security (Docker, AKS).

• Strong experience with IaC (Terraform, ARM, Bicep).

• Azure governance and cost-management knowledge.

• Experience with monitoring/logging (Azure Monitor, App Insights, Log Analytics, Splunk, Elastic Stack).

• Solid background in risk management, vulnerability assessments, and incident response.

• Experience integrating security into CI/CD with tools like Azure DevOps, ArgoCD, SonarQube.

• Proficiency in PowerShell, Azure CLI, Python.

• Excellent communication and problem-solving skills.

• Language: English (C1).

Nice-to-have

• Microsoft Azure certifications (Architect Expert, Security Engineer Associate, DevOps Engineer Expert).

• Security certifications: CISSP, CCSP, CISM, etc.

• Experience with Kong, Event Hubs, Dapr.

• Availability for a 24/7 duty role.

• Additional languages: French (B1) or Dutch (B1).

How afarax supports you

• You benefit from our extensive network

• You gain access to projects aligned with your expertise

• We support you throughout your mission

• We offer the possibility to build a valuable and long-term partnership

• Discover more freelance opportunities here: afarax.be/jobs