Job Description

Consultant, Cloud Security Architect

Avanade is seeking a Cloud Security Architect to lead the charge in securing our clients’ cloud environments. In this role, you’ll assess cloud infrastructure s, uncover vulnerabilitie s, and design tailored remediation strategies that strengthen security and ensure compliance.

You’ll combine deep technical expertise with a strategic mindset, focusing on both hands-on security controls and governance frameworks. As a trusted advisor, you’ll work directly with clients—guidin g them through security assessments, architecture reviews, and implementation roadmaps that support scalable, secure cloud operations.

Come join us

As a Cloud Security Architect, you will play an active role in transforming our clients’ approach to cloud security across both public, and hybrid cloud services. Join us and establish yourself as a Leader in the Security space. Together we do what matters. Together, let’s transform cybersecurity.

What you’ll do

• Assess the security posture of customer cloud workloads and environments to identify vulnerabilitie s and gaps.

• Recommend and design security interventions aligned with best practices and compliance requirements.

• Evaluate and strengthen configurations for Azure security services, including Microsoft Defender for Cloud, Sentinel, Key Vault, Azure AD (Entra ID), Privileged Identity Management (PIM), Azure Policy, and governance and observability tools such as Azure Monitor and Log Analytics.

• Lead and facilitate security architecture workshops, risk assessments, and governance reviews with client teams.

• Collaborate with cross-function al teams to ensure alignment between security, operations, and business objectives.

• Conduct thorough security risk assessments and ensure mitigation strategies are implemented.

• Drive continuous improvement of security processes and controls based on evolving threat landscapes and compliance frameworks.

• Ensure adherence to industry frameworks and regulations such as NIST, ISO/IEC 27001, HIPAA, GDPR, and FedRAMP.

Qualification

Skills and experiences

• 5+ years of experience in cloud security architecture and assessment, specifically within Microsoft Azure environments.
• Deep knowledge of Azure security architecture and cloud-native security resiliency patterns.
• Strong experience with security frameworks and methodologies (e.g., NIST CSF, ISO/IEC 27001).
• Proficient in vulnerability management, risk assessment, and security compliance standards.
• Ability to communicate complex security concepts clearly to both technical and non-technical stakeholders.
• Strong written and verbal communication and documentation skills.
• Hands-on experience with Azure security and governance services: Microsoft Defender for Cloud, Sentinel, Key Vault, Azure AD (Entra ID), PIM, Azure Policy, Azure Monitor, and Log Analytics.
• Familiarity with Microsoft Security Assessments, such as the Well-Architect ed Review Assessment (WARA) and Microsoft Security Assessment Frameworks.
• Experience working directly with clients in customer-facin g roles to deliver security assessments and solutions.
• Solid understanding of process governance, security incident response planning, and Major Incident Response Plan (MIRP) development.
• Must be bilingual (Engl ish/French).

Required certifications

• Microsoft Certified: Cybersecurity Architect Expert
• ITIL Foundation Certification
• Active Security Clearance

Preferred skills

• Strong consulting experience with direct client engagement and workshop facilitation.
• Bilingual proficiency is highly valued, as it enhances communication and collaboration across diverse client teams and global environments.
• Familiarity with SOC integration, security operations center workflows, and incident response coordination.
• Experience with compliance frameworks such as HIPAA, GDPR, FedRAMP, or equivalent.
• Expertise with SIEM/SOAR tools, automation, and security orchestration.
• Proven track record delivering executive-leve l security architecture reviews and recommendation s.

About you

Characteristic s that can spell success for this role:

• Consultative, collaborative, relationship builder
• Resilient, adaptable, flexible
• Intellectually curious and passionate about Microsoft Technologies (M365 Threat Protection (Defender for Cloud, Defender for Cloud Apps, Defender for endpoint, Office, Identity)
• P roblem-solver, patient and quality-driven
• Self-motivatin g
• Innovative mindset
• You have an eye on the future - you are aware of emerging technologies in the Cyber Defense space

Compensation for roles at Avanade varies depending on a wide array of factors including but not limited to the role, skill set and level of experience. As required by local law, Avanade provides a reasonable base salary range of compensation for roles that may be hired throughout Canada, as set forth below:

$84,800-$100,7 00