Principal Cloud Security Engineer – Azure

Job Title: Principal Cloud Security Engineer – Azure

Location: US Remote
 

Overview:

Blue Yonder is a global leader in digital supply chain software solutions. We empower businesses to optimize their supply chains with AI-driven insights and innovative solutions. Join us to shape the future of global cyber security.

The Principal Cloud Security Engineer is responsible for securing the organization’s multi-cloud environment spanning on-premises infrastructure and public cloud platforms. This role emphasizes the implementation of cloud-native security practices, leveraging infrastructure as code (IaC) to enforce consistent, scalable controls; applying zero trust principles to minimize risk and enforce least privilege; and modernizing identity and access management (IAM) to ensure secure, adaptive authentication and authorization across hybrid environments. The engineer collaborates closely with Product Development, Cloud Platform, and Infrastructure teams across the organization to embed security into every layer of the cloud lifecycle, driving resilience, visibility, and governance across our enterprise.

What You’ll Be Doing/Scope

• Design and implement secure cloud architectures following best practices and security frameworks (e.g., NIST, CIS Benchmarks, Zero Trust).
• Deploy and manage Azure-native security services such as Microsoft Defender for Cloud, Sentinel, Key Vault, Azure Firewall, and Azure Policy.
• Develop and enforce cloud-native security controls aligning to industry best practices (Infrastructure as Code) and organizational standards.
• Lead the adoption and execution of Zero Trust principles, including network segmentation, continuous verification, and least privilege access across all environments.
• Drive modernization of Identity and Access Management (IAM) systems, integrating with cloud-native identity providers and enforcing strong authentication policies (e.g., MFA, conditional access).
• Conduct threat modeling and security risk assessments for new and existing cloud services, applications, and infrastructure.
• Build and maintain automated security monitoring and alerting systems, leveraging cloud-native tools to ensure comprehensive visibility.
• Collaborate with cross functional teams to integrate security into CI/CD pipelines and ensure secure code deployment practices.
• Respond to and investigate security incidents across cloud and hybrid environments, providing root cause analysis and driving remediation efforts.
• Stay current with emerging threats and cloud security technologies, influencing security strategy and architecture with industry best practices and innovations.
• Support continuous compliance efforts (e.g., PCI-DSS, ISO 27001, SOC 2) by implementing monitoring and reporting capabilities to adhere to global regulations.
• Provide guidance on engineering decisions for Azure PaaS/IaaS/SaaS deployments.

What We Are Looking For:

Required Qualifications:

• 10+ years of experience in cloud and/or infrastructure security, with 3+ years focused on Microsoft Azure or multi-cloud environments.
• Strong expertise in cloud-native security engineering tooling, and identity and access management.
• Experience with scripting or automation (e.g., PowerShell, Python, Azure CLI, Terraform).
• Hands-on experience with SIEM, CSPM (cloud security posture management), cloud workload protection platforms (CWPP), and/or cloud native application protection platforms (CNAPP).
• Familiarity with Zero Trust, least privilege, and cloud security governance models.

Preferred Qualifications:

• Experience integrating security into CI/CD pipelines and DevOps workflows.
• Familiarity with hybrid cloud environments and secure connectivity (e.g., Security Service Edge/Secure Access Service Edge).
• Background in incident response and security monitoring in cloud ecosystems.
• Strong understanding of regulatory requirements (e.g., GDPR, HIPAA, FedRAMP) in a cloud context at a global scale.

#LI-MH1

#LI-Remote

-------------------------------------------

The salary range for this position is: $167,076.00 - $192,000.00 USD

The salary range information provided, reflects the anticipated base salary range for this position based on current national data.  Minimums and maximums may vary based on location.  Individual salary will be commensurate with skills, experience, certifications or licenses and other relevant factors.  In addition, this role will be eligible to participate in either the annual performance bonus or commission program, determined by the nature of the position.

At Blue Yonder, we care about the wellbeing of our employees and those most important to them. This is reflected in our robust benefits package and options that includes: 

• Comprehensive Medical, Dental and Vision 

• 401K with Matching 

• Flexible Time Off 

• Corporate Fitness Program 

• A variety of voluntary benefits such as; Legal Plans, Accident and Hospital Indemnity, Pet Insurance and much more

At Blue Yonder, we are committed to a workplace that genuinely fosters inclusion and belonging in which everyone can share their unique voices and talents in a safe space. We continue to be guided by our core values and are proud of our diverse culture as an equal opportunity employer. We understand that your career search may look different than others, and embrace the professional, personal, educational, and volunteer opportunities through which people gain experience.

Our Values

If you want to know the heart of a company, take a look at their values. Ours unite us. They are what drive our success – and the success of our customers. Does your heart beat like ours? Find out here: Core Values

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status.