Cloud Security Engineer - Azure

About the role

At Avnet, relationships matter. We are a global, FORTUNE ® 500 technology distributor and solutions company that delivers design, supply chain and logistics expertise to customers at every stage of a product's lifecycle. Our employees have a front row seat to the latest innovations shaping the world we live in and the future we share. We're driven to help our customers around the world succeed and we do so by earning the trust of some of the biggest names in technology. Working at Avnet means being a part of a global team. We work collaboratively and with integrity, doing business the right way. For more than a century, we have partnered together to help our customers, suppliers and teammates realize the transformative possibilities of technology. Experience what's next at Avnet! Job Summary Develops, maintains, and enhances secure cloud platform solutions in support of Business Cloud Services delivery. Performs hands-on security operations, automates repeatable security and governance processes, and coordinates remediation activities across Azure, GitHub Enterprise, and BCS-managed applications. Collaborates with BCS developers, architects, leadership, and Security teams to help ensure cloud solutions are designed, delivered, and operated securely. Supports shift-left security practices by providing practical, developer-friendly security guidance and helping teams identify, prioritize, and remediate security findings efficiently. Principal Responsibilities Supports the implementation, operation, and continuous improvement of security controls for BCS-managed Azure resources and cloud platform services. Monitors, reviews, triages, and coordinates remediation of security findings from Microsoft Defender for Cloud and other approved security tools. Assists with security exception and exemption requests by gathering required technical details, validating business and technical context, and supporting approval workflows. Validates remediation actions, tracks closure of security findings, and helps ensure issues are resolved in alignment with approved security requirements and timelines. Implements and maintains Microsoft Entra ID security groups, app registrations, service principals, managed identities, and related identity and access configurations. Executes RBAC assignments and access changes in accordance with approved access models, least privilege principles, and operational requirements. Supports Microsoft Entra Privileged Identity Management role assignments, activations, reviews, and related privileged access processes. Assists with access reviews, audits, and compliance activities by validating access, configurations, and supporting evidence. Supports security controls within GitHub Enterprise, including repository-level security practices, access controls, and development workflow security. Assists with CI/CD security practices, including use of GitHub Advanced Security, secure pipeline configuration, and remediation of pipeline or repository security findings. Triage and track application, repository, and software supply chain security findings using Security-provided tools such as Legit Security, ArmorCode, or similar platforms. Works directly with BCS developers, architects, and engineering teams to coordinate remediation activities and resolve vulnerabilities with minimal disruption. Tracks vulnerabilities, ownership, remediation status, recurring issues, and blockers; escalates risks and trends to BCS leadership as appropriate. Automates repeatable security, governance, access, and remediation tasks using scripting, templates, tooling, and standard processes. Develops and maintains reusable security templates, patterns, and standards for identity and access configurations, CI/CD security controls, common remediation scenarios, and cloud security operations. Supports the use of AI-enabled solutions to improve security operations, visibility, triage, prioritization, and identification of recurring risk patterns. Partners with BCS engineering, development, and Security teams to ensure AI-enabled security solutions are used securely, responsibly, and in alignment with enterprise expectations. Serves as an operational contact for BCS security issues, including investigation support, technical information gathering, log collection, and coordination with appropriate stakeholders. Escalates security incidents, operational risks, remediation blockers, and recurring issues to BCS leadership and Security teams as needed. Provides practical, developer-friendly security guidance to support shift-left security practices and improve secure development behaviors across BCS teams. Documents security processes, platform configurations, remediation procedures, templates, and operational best practices. Other duties as assigned. Job Level Specifications Applies strong working knowledge of cloud security, Azure security services, Microsoft Entra ID, RBAC, privileged access management, GitHub Enterpr

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at Avnet? Share your experience