Job Summary:
We are seeking a highly motivated and detail-oriented Azure Cloud Platform Risk Analyst to support our cloud risk management efforts. The successful candidate will be responsible for identifying, assessing, and mitigating risks associated with Microsoft Azure cloud services. This role bridges the gap between security, compliance, and cloud engineering to ensure a robust risk posture in our Azure environment.
Key Responsibilities:
Identify, analyze, and assess risks related to Azure cloud infrastructure, services, and workloads.
Work closely with cloud engineers, security teams, and compliance teams to ensure adherence to organizational risk frameworks and industry regulations (e.g., ISO 27001, NIST, GDPR, HIPAA).
Perform regular risk assessments, security reviews, and control gap analyses across Azure services.
Develop and maintain a cloud risk register specific to Azure, ensuring risks are logged, prioritized, and tracked to remediation.
Review Azure configurations, policies (e.g., Azure Policy, Defender for Cloud), and RBAC to identify misconfigurations or policy violations.
Provide guidance on secure cloud architecture and best practices to mitigate platform risks.
Collaborate in threat modeling and incident response planning for Azure-hosted workloads.
Assist with audits and regulatory assessments by preparing necessary documentation and evidence related to Azure cloud environments.
Stay current on Azure updates, emerging threats, and evolving cloud security standards.
We are a company committed to creating inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity employer that believes everyone matters. Qualified candidates will receive consideration for employment opportunities without regard to race, religion, sex, age, marital status, national origin, sexual orientation, citizenship status, disability, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to
Human Resources Request Form. The EEOC "Know Your Rights" Poster is available
here.
To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy:
https://insightglobal.com/workforce-privacy-policy/ .
5+ years of experience in IT risk management, information security, or cloud platform analysis.
Hands-on experience with Microsoft Azure, including Azure Security Center, Azure Monitor, and Azure Active Directory.
Solid understanding of cloud security frameworks and risk methodologies (e.g., CSA, NIST CSF, FAIR).
Knowledge of compliance requirements applicable to cloud environments (e.g., SOC 2, PCI-DSS, GDPR).
Familiarity with Azure governance tools (e.g., Blueprints, Policies, Management Groups).
Strong analytical, communication, and documentation skills.
Relevant certifications preferred (e.g., Microsoft Certified: Azure Security Engineer Associate, CRISC, CISSP, CISA, CCSK).
Experience with DevSecOps principles and integrating risk management into CI/CD pipelines.
Exposure to other cloud platforms (AWS, GCP) is a plus.
Experience with security tooling such as Sentinel, Defender for Cloud, or third-party CSPM platforms.
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.