Cybsersecutiry Engineer - Azure Cloud Environments

France

Infos sur l'emploi

Date de publication :09 décembre 2025
Taux d'activité :100%
Type de contrat :Durée indéterminée
Lieu de travail :-, 75000 France

Experis SA, the IT branch of ManpowerGroup, is a leading company in the recruitment of specialized IT professionals. We provide flexible solutions, including temporary assignments, permanent placements, project management, and professional training. Our expertise covers digital transformation, cybersecurity, cloud, infrastructure, and more. With our global reach combined with a pragmatic and personalized approach, we effectively support both professionals and organizations in achieving their goals.

Cybersecurity Engineer - Azure Cloud Environment

Technical Role for Azure Security Engineering (France - Full Remote)
Position Overview

We are seeking a technically proficient Cybersecurity Engineer to join our client security team, with a focus on securing and optimising our end-to-end Azure cloud infrastructure. The successful candidate will deliver advanced security architecture and engineering solutions, provide in-depth technical security assessments, and establish best-in-class protection strategies for our Azure environment. This position is based in Spain and is fully remote.

Main Responsibilities

Design, implement, and validate advanced security controls across all components of the Azure cloud infrastructure, ensuring alignment with industry frameworks (such as CIS Benchmarks, NIST, ISO 27001) and regulatory requirements.
Deliver security architecture recommendations for Entra ID (Azure Active Directory), focusing on identity protection, privileged access strategies (e.g., Conditional Access, Privileged Identity Management), and risk assessment. Operational management of Entra ID and Office 365 are handled by a dedicated team; this role is strictly focused on providing security guidance and validating configurations.
Configure, monitor, and tune Azure Firewall to enforce segmentation, encrypted traffic inspection, and integration with threat intelligence to mitigate evolving threats.
Deploy, manage, and continuously enhance Defender for Cloud to ensure real-time threat detection, security posture management, and automated threat response.
Leverage Sentinel for SIEM/SOAR capabilities: design detection rules, threat hunting queries (KQL), analytic playbooks, and automate incident response workflows.
Conduct advanced vulnerability management, penetration testing, and comprehensive risk analysis across the cloud estate. Remediate findings and document improvements.
Collaborate with cloud architects, DevOps, and platform teams to integrate security-by-design into Azure Landing Zones, leveraging automation (e.g., ARM templates, Bicep, Terraform) to enforce security baselines and guardrails.
Will be the main point of contact for the external SOC.
Produce technical documentation, security standards, and runbooks for incident response, secure deployment, and operational resilience in the Azure cloud.
Stay current with emerging threats, attack vectors, and Azure-native security features; proactively recommend and implement enhancements to the security stack.
Lead or participate in security incident investigations, conduct forensic analysis, and coordinate with relevant internal stakeholders for resolution and lessons learned.

Required Education, Skills and Experience

Master's degree in computer science, preferably with a specialisation in cybersecurity.
Demonstrable hands-on experience with core Azure security services (Azure Firewall, Defender for Cloud, Sentinel, Key Vault, Security Center, Policy, and RBAC).
Expertise in cloud security architecture, threat modelling, and secure configuration of Azure Landing Zones.
Strong background in identity and access security principles, with emphasis on making technical recommendations for Entra ID (Azure AD) and associated privileged access controls.
Advanced proficiency in scripting and IaC (Infrastructure as Code) tools (PowerShell, Azure CLI, ARM, Terraform, Bicep) for automating security deployments and compliance monitoring.
Practical experience with SIEM/SOAR technologies (preferably Sentinel): custom analytic rules, KQL queries, automation of incident response, and threat intelligence integration.
Deep understanding of regulatory frameworks and standards: CIS, NIST, ISO 27001, GDPR.
Fluent English is required (written and spoken). Proficiency in French is considered an asset.
Relevant certifications such as Azure Security Engineer Associate are expected; CISSP or equivalent is a strong plus.

Desirable Attributes

Ability to work independently in a globally distributed, fully remote team.
Strong analytical mindset, with a proactive approach to anticipating and mitigating risks.
Continuous learner, keeping pace with Azure platform evolution and the latest cyber threat landscape.
Experience with automation of compliance checks, cloud security posture management, and security monitoring at scale.

Working Conditions

Position based in France - Remote.

Collaborative, international team culture with cutting-edge Azure cloud technologies.

On-call or out-of-hours incident response may occasionally be required.
Skills: Azure Security, Cloud Security Architecture, Microsoft Defender for Cloud, Microsoft Sentinel, Infrastructure as Code, Identity and Access Management
Work preferences: Remote
Budget: to be discussed
Start date: 2 to 4 weeks