Search
All Jobs
Last updated on: 6 Jun, 2025

Azure Cloud Architect

BelgiumBrussels/Berlin
1 open positions
Software Development
Medior
Contract
Full Time
Hybrid
Apply Now!

Hiring Process

Time to Answer

2 open days

Process

1 Phone Call
1 Onsite Interview

Days to get an Offer

4 Days after Interview
More Info

Overview

Azure Cloud Architect with a strong background in cloud security, architecture, and DevSecOps to design and implement secure, scalable, and compliant cloud solutions on Microsoft Azure. The ideal candidate will have 5+ years of experience in cloud security or related fields and at least 3 years of hands-on expertise architecting secure Azure environments.  This role requires deep knowledge of Azure security services (e.g., Azure Defender, Sentinel, Key Vault, Entra ID), cloud networking (VPNs, subnets, NSGs, load balancers), and security frameworks such as ISO 27001, GDPR, and NIS2. Proficiency in IAM, encryption strategies, container security (AKS, Docker), and Infrastructure as Code (Terraform, ARM, Bicep) is essential. Primary location: Brussels, with occasional travel to Berlin.

Job Responsibilities

  • Design and implement scalable, secure, and highly available cloud infrastructures that meet business needs and technical requirements, ensuring compliance with security best practices, industry standards, and regulatory requirements (e.g. ISO 27001, GDPR, NIS2 etc.).
  • Implement cloud security governance policies and ensure adherence to cloud security standards. Utilize Azure Defender, Azure Policy, Management Groups, and Azure Blueprints to enforce governance and security controls.
  • Implement and manage secure authentication and authorization policies using Azure Entra ID, Privileged Identity Management (PIM), role-based access control (RBAC), and conditional access to ensure least-privilege access for users, applications, and services.
  • Ensure that all data stored and transmitted in Azure environments is protected using encryption techniques. 
  • Architect solutions that use Azure Key Vault for secure key management and Azure Disk Encryption for data protection.
  • Utilize automation tools (e.g. ArgoCD) and DevSecOps principles to implement security into the CI/CD pipeline, ensuring that security testing, vulnerability scanning, and security checks are integrated into the entire software development lifecycle. 
  • Leverage Infrastructure as Code (IaC) tools such as Terraform, Bicep, or Azure Resource Manager (ARM) templates to automate secure resource provisioning and configuration.
  • Automate security tasks including vulnerability scanning, compliance checks, threat detection, and security monitoring using tools like Azure Sentinel, Azure Monitor, and Azure Defender. 
  • Develop and execute incident response plans for handling security breaches, including data exfiltration, DDoS attacks, or insider threats.
  • Design and implement secure disaster recovery strategies, ensuring that data, applications, and services are protected and recoverable in case of incidents.
  • Monitor cloud usage and costs, recommend optimization strategies, and help implement cost-effective cloud solutions while ensuring security and performance.
  • Conduct security risk assessments, vulnerability assessments, and penetration testing to identify weaknesses in Azure-based applications and infrastructure. 
  • Provide remediation strategies to address identified risks.
  • Collaborate with cross-functional teams (DevOps, operations, development, and security) to integrate security best practices into the design and deployment of cloud-based solutions. 
  • Provide guidance on secure cloud design, and mentor team members in security architecture and best practices.
  • Create and maintain comprehensive documentation on security architecture, security controls, cloud security policies, and risk management strategies.

Must Have Skills

  • At least 5 years of experience in cloud security, cloud architecture, DevSecOps or related roles.
  • At least 3 years of hands-on experience in architecting secure environments on Microsoft Azure.
  • Strong understanding of cloud networking, hybrid cloud, and virtual networking concepts (e.g., VPNs, subnets, NSGs, load balancing, hub-spoke).
  • Expertise in designing and implementing cloud security architectures on Azure, with strong knowledge of Azure Defender, Azure Sentinel, Azure Key Vault, Azure EntraID, Azure Firewall, and other Azure security services.
  • Strong understanding of security frameworks and compliance standards (e.g. ISO 27001, GDPR, NIS2), and the ability to implement and manage them in the Azure cloud.
  • Experience with Identity and Access Management (IAM), including Azure Entra ID, Privileged Identity Management (PIM), role-based access control (RBAC), multi-factor authentication (MFA), and Conditional Access Policies.
  • Proficient in implementing Encryption strategies, such as Azure Disk Encryption, Azure Information Protection, and SSL/TLS for securing data in transit and at rest.
  • Experience with containerization and container security using Docker, Azure Kubernetes Service (AKS), and related tools to secure containerized environments.
  • Expertise in Infrastructure as Code (IaC) tools such as Terraform, ARM templates, or Bicep to automate secure provisioning and configuration of Azure resources.
  • Experience in Azure governance and cost management using Azure Cost Management, Azure Policies, and management groups.
  • Experience with monitoring and logging tools such as Azure Monitor, Application Insights, or Log Analytics and third-party solutions like Splunk or Elastic Stack.
  • Experience in risk management, vulnerability assessment, and penetration testing, along with a strong understanding of incident response and remediation strategies in the cloud.
  • Hands-on experience with CI/CD tools (e.g., Azure DevOps, ArgoCD) and integration of security tools (e.g. SonarQube) within the pipeline.
  • Proficiency in scripting languages (e.g., PowerShell, Azure CLI, Python) to automate security tasks and infrastructure provisioning.
  • Excellent problem-solving and troubleshooting skills in cloud environments.
  • Strong communication skills with the ability to explain complex security concepts to non-technical stakeholders and to collaborate across teams.
  • Advanced proficiency in English (C1).

Nice to have

  • Microsoft Azure certifications, such as Azure Solutions Architect Expert, Azure Security Engineer Associate, or Microsoft Certified: Azure DevOps Engineer Expert.
  • Security certifications such as CISSP, CCSP (Certified Cloud Security Professional), or CISM (Certified Information Security Manager).
  • Experience with technologies including Kong, Event Hubs, and Dapr.
  • Willingness to participate in a 24/7 duty rotation.
  • Proficiency in local languages: French (B1), Dutch (B1).

What's great in the job?

  • Great team of smart people, in a friendly and open culture
  • Expand your knowledge of various business industries
  • Create content that will help our users on a daily basis
  • Real responsibilities and challenges in a fast evolving company

Work at yechte

We are an independent digital consultancy with ambitious goals and a global presence. We support a diverse range of companies, building digital teams and delivering innovative digital solutions. Our multicultural and diverse workforce, comprised of ‘Global Citizens’, reflects this inclusivity.

We care about work-life balance and meeting the expectation of a growing team, investing in people because they are our greatest asset. Our consistent growth is a testament to this commitment.

Come work at yechte, a company on the rise, offering excellent benefits, opportunities for personal development, and the chance to learn from accomplished leaders. We are always looking for exceptional professionals to join our team.

What We Offer

Each employee has a chance to see the impact of his work. You work on real digital projects and make tangible contributions to the company. We want to provide to each individual personal, professional and social growth.

benefits_icon

Attractive Benefits

We care about your comfort. At yechte we offer cost-effective and eco-friendly mobility plans, food allowances, and comprehensive healthcare support, enhancing employee satisfaction.

personal_development_icon

Personal Development

We care about your growth. At yechte we offer to boost your personal growth through tailored IT trainings and certifications, fostering a culture of agility and tech-driven expertise.

flexibility_icon

Flexibility

We care about your wellbeing. At yechte we offer flexi-hours and hybrid home/office work arrangements, enhancing employee work-life balance and productivity.

job_image_3
job_image_2
job_image_4
job_image_5
job_image_6
job_image_1
Apply for this Job