📍 Job Overview

• Job Title: Cloud Security Engineer (Azure)
• Company: Cresteo
• Location: Remote - Latam
• Job Type: Full-Time
• Category: DevOps, Infrastructure
• Date Posted: 2025-07-31
• Experience Level: Mid-Level (2-5 years)
• Remote Status: Remote (100%)

🚀 Role Summary

• Secure Azure Environments: Protect and secure Azure environments by implementing and managing security tools and services.
• Compliance Expertise: Demonstrate strong knowledge of compliance frameworks such as HIPAA, NIST 800-53, and SOC 2 to ensure secure and compliant cloud infrastructure.
• Risk Assessment & Mitigation: Identify and mitigate security risks in cloud-native environments using best practices and tools.
• Collaborative Approach: Work cross-functionally with development teams to integrate security into the software development lifecycle.

📝 Enhancement Note: This role requires a balance of technical depth in Azure security and a collaborative mindset to work effectively with development teams.

💻 Primary Responsibilities

• Azure Security Management: Manage and configure Azure security tools and services to protect cloud environments.
• Compliance Mapping: Map and ensure compliance with relevant standards and regulations such as HIPAA, NIST 800-53, and SOC 2.
• Risk Assessment & Mitigation: Identify, assess, and mitigate security risks in Azure environments using best practices and tools.
• Security Tool Implementation: Implement and manage security tools such as Microsoft Defender for Cloud, Microsoft Sentinel, and Azure Key Vault.
• Collaboration & Communication: Work closely with development teams to integrate security into the software development lifecycle and provide security guidance.

📝 Enhancement Note: This role involves a mix of hands-on security tasks and collaborative work with development teams to ensure secure software development processes.

🎓 Skills & Qualifications

Education: Bachelor's degree in Computer Science, Information Security, or a related field. Relevant certifications such as Microsoft Certified: Azure Security Engineer Associate are a plus.

Experience: 2-5 years of experience in cloud security, with a focus on Azure. Experience in secure DevOps and cloud security governance is preferred.

Required Skills:

• Proven experience with Microsoft Defender for Cloud and improving secure score.
• Strong knowledge of Microsoft Sentinel, including analytic rule creation and SOAR playbooks using Logic Apps.
• Experience managing Azure Key Vault with Customer-Managed Keys (CMK) and Managed HSM.
• Deep understanding of HIPAA, NIST 800-53, NIST Cybersecurity Framework (CSF), and SOC 2 compliance mapping.
• Experience with container image scanning and static code analysis using CodeQL.
• Familiarity with External Attack Surface Management (EASM) tools and practices.
• Hands-on experience handling Protected Health Information (PHI) and implementing HIPAA-compliant encryption.
• Ability to assess and mitigate security risks in cloud-native environments.

Preferred Skills:

• Experience with other cloud providers (AWS, GCP) and multi-cloud environments.
• Knowledge of Infrastructure as Code (IaC) tools such as Terraform or Azure Resource Manager (ARM).
• Familiarity with cloud security architecture and design principles.

📝 Enhancement Note: While the required skills focus on Azure security, having experience with other cloud providers and IaC tools can be beneficial for working in multi-cloud environments.

📊 Web Portfolio & Project Requirements

Portfolio Essentials:

• Specific examples of Azure security implementations and their impact on secure score.
• Case studies demonstrating risk assessment, mitigation, and compliance mapping in Azure environments.
• Documentation of security tools implementation and management, including Microsoft Defender for Cloud, Microsoft Sentinel, and Azure Key Vault.

Technical Documentation:

• Detailed documentation of security processes, including risk assessment methodologies, compliance mapping, and incident response plans.
• Code samples and scripts demonstrating security tool implementation and management.
• Documentation of security training and certifications.

📝 Enhancement Note: This role requires a strong focus on documentation to ensure consistent security practices and easy onboarding of new team members.

💵 Compensation & Benefits

Salary Range: $80,000 - $120,000 USD per year (Based on market research for mid-level cloud security roles in Latin America)

Benefits:

• Profit Sharing Policy
• Unlimited PTOs after the first year (20 PTOs the first year)
• Equipment for your setup
• Great work/life balance
• Honest, simple, and transparent culture
• US-based clients and international teams

Working Hours: 40 hours per week, with flexible scheduling to accommodate different time zones and project deadlines.

📝 Enhancement Note: The salary range is based on market research for mid-level cloud security roles in Latin America, with consideration for the remote nature of the position and the company's profit-sharing policy.

🎯 Team & Company Context

🏢 Company Culture

Industry: Tech Services, focusing on nearshore software development and security services for global clients.

Company Size: Medium-sized, with a strong focus on growth and expansion.

Founded: Cresteo was founded with a mission to be the world leader in people-first and honest nearshore tech services.

Team Structure:

• Cross-functional teams consisting of developers, QA engineers, DevOps engineers, and security engineers.
• Flat hierarchy with a focus on collaboration and open communication.
• Remote-first work environment with team members across Latin America and the United States.

Development Methodology:

• Agile development processes, with a focus on iterative development and continuous improvement.
• Regular code reviews, pair programming, and knowledge-sharing sessions.
• Strong emphasis on security integration into the software development lifecycle.

Company Website: Cresteo

📝 Enhancement Note: Cresteo's company culture is defined by its people-first approach, transparency, and commitment to honest business practices. This is reflected in its remote work policy, profit-sharing policy, and focus on work/life balance.

📈 Career & Growth Analysis

Cloud Security Engineer Career Level: This role is at the mid-level, focusing on hands-on security implementation and management, as well as collaboration with development teams.

Reporting Structure: This role reports directly to the Head of Security or a similar position, depending on the company's organizational structure.

Technical Impact: The Cloud Security Engineer has a significant impact on the security of cloud environments and the overall security posture of the company. They work closely with development teams to ensure secure software development processes and integrate security into the software development lifecycle.

Growth Opportunities:

• Senior Cloud Security Engineer: After 2-3 years of experience, there is an opportunity to advance to a senior role, focusing on more complex security challenges and leading junior team members.
• Security Architecture: With experience and demonstrated expertise, there is potential to move into a security architecture role, focusing on designing secure systems and infrastructure.
• Team Leadership: As the company grows, there may be opportunities to lead security teams or become a security manager, focusing on team management and strategic decision-making.

📝 Enhancement Note: Cresteo's growth opportunities are tied to the company's expansion and the individual's demonstrated expertise and leadership potential. The company encourages internal promotions and career progression.

🌐 Work Environment

Office Type: Remote, with no physical office location. Team members work from home or co-working spaces.

Office Location(s): Remote - Latam, with team members across Latin America and the United States.

Workspace Context:

• Remote Work: Team members have the flexibility to work from home or co-working spaces, with the company providing equipment for their setup.
• Collaboration Tools: Cresteo uses collaboration tools such as Slack, Microsoft Teams, and Google Workspace to facilitate communication and teamwork.
• Cross-Functional Collaboration: Team members work closely with other departments, including development, QA, and project management, to ensure efficient and effective project delivery.

Work Schedule: Cresteo offers a flexible work schedule, with core hours between 10:00 AM and 4:00 PM EST. Team members are expected to be available during these hours for meetings and collaboration but have the flexibility to manage their time outside of these hours.

📝 Enhancement Note: Cresteo's remote work environment is designed to provide team members with the flexibility and autonomy to balance their work and personal lives effectively.

📄 Application & Technical Interview Process

Interview Process:

1. Resume Review & Phone Screen: A brief phone or video call to discuss your resume, experience, and motivation for applying.
2. Technical Challenge: A hands-on technical challenge focused on Azure security, risk assessment, and compliance mapping.
3. Behavioral & Cultural Fit Interview: A conversation to assess your cultural fit with Cresteo's values and work environment.
4. Final Interview & Offer: A final interview with the hiring manager or a panel of team members to discuss the role, expectations, and next steps.

Portfolio Review Tips:

• Highlight specific examples of Azure security implementations and their impact on secure score.
• Include case studies demonstrating risk assessment, mitigation, and compliance mapping in Azure environments.
• Showcase your ability to document security processes and tools implementation.

Technical Challenge Preparation:

• Brush up on your Azure security knowledge, with a focus on Microsoft Defender for Cloud, Microsoft Sentinel, and Azure Key Vault.
• Familiarize yourself with compliance frameworks such as HIPAA, NIST 800-53, and SOC 2.
• Practice risk assessment and mitigation techniques using Azure security best practices.

ATS Keywords: [Azure, Cloud Security, Microsoft Defender, Microsoft Sentinel, Azure Key Vault, HIPAA, NIST 800-53, SOC 2, Risk Assessment, Compliance Mapping, Secure DevOps, Cloud Security Governance, Collaboration, Agile, Remote Work]

📝 Enhancement Note: Cresteo's interview process is designed to assess both technical skills and cultural fit, with a focus on finding the right candidate for the role and the team.

🛠 Technology Stack & Web Infrastructure

Cloud Platform: Azure, with a focus on Azure security tools and services.

Security Tools:

• Microsoft Defender for Cloud: A unified security management and threat protection service for Azure environments.
• Microsoft Sentinel: A cloud-native SIEM (Security Information and Event Management) platform that provides intelligent security analytics and threat intelligence.
• Azure Key Vault: A cloud service for securely storing and accessing secrets such as keys, passwords, and certificates.

Collaboration & Productivity Tools:

• Slack: A team communication platform used for instant messaging and collaboration.
• Microsoft Teams: A unified communication and collaboration platform that combines chat, meetings, and file storage.
• Google Workspace: A suite of cloud-based productivity and collaboration tools, including Google Docs, Sheets, and Slides.

📝 Enhancement Note: Cresteo's technology stack is focused on Azure security tools and services, with a strong emphasis on collaboration and productivity tools to facilitate remote work and team communication.

👥 Team Culture & Values

Cloud Security Values:

• Security-First Mindset: Prioritize security in all aspects of software development and cloud infrastructure management.
• Collaboration & Communication: Work closely with development teams to integrate security into the software development lifecycle and provide security guidance.
• Continuous Learning: Stay up-to-date with the latest security trends, tools, and best practices to ensure the security of cloud environments.
• Transparency & Honesty: Foster an open and transparent work environment, where team members feel comfortable sharing ideas and concerns.

Collaboration Style:

• Cross-Functional Collaboration: Work closely with development, QA, and project management teams to ensure secure software development processes and project delivery.
• Pair Programming & Code Reviews: Encourage pair programming and code reviews to ensure knowledge sharing and consistent security practices.
• Regular Check-ins & Retrospectives: Conduct regular check-ins and retrospectives to assess progress, address concerns, and improve team performance.

📝 Enhancement Note: Cresteo's team culture is defined by its commitment to security, collaboration, and continuous learning. The company encourages open communication and transparency to foster a positive and productive work environment.

⚡ Challenges & Growth Opportunities

Technical Challenges:

• Azure Security Best Practices: Stay up-to-date with the latest Azure security best practices and implement them in cloud environments.
• Compliance Mapping: Ensure compliance with relevant standards and regulations, such as HIPAA, NIST 800-53, and SOC 2, in Azure environments.
• Risk Assessment & Mitigation: Identify and mitigate security risks in cloud-native environments using best practices and tools.
• Emerging Technologies: Stay informed about emerging security technologies and their potential impact on cloud environments.

Learning & Development Opportunities:

• Azure Security Training: Participate in Azure security training and certifications, such as Microsoft Certified: Azure Security Engineer Associate.
• Industry Conferences & Events: Attend industry conferences and events to network with other security professionals and learn about emerging trends and best practices.
• Mentorship & Leadership Development: Seek mentorship opportunities and participate in leadership development programs to advance your career in cloud security.

📝 Enhancement Note: Cresteo's technical challenges and growth opportunities are tied to the company's expansion and the individual's demonstrated expertise and leadership potential. The company encourages continuous learning and professional development to ensure its team members remain at the forefront of the cloud security industry.

💡 Interview Preparation

Technical Questions:

• Azure Security Fundamentals: Demonstrate a strong understanding of Azure security best practices, including identity and access management, network security, and data protection.
• Compliance Mapping: Explain your experience with compliance mapping and demonstrate your knowledge of relevant standards and regulations such as HIPAA, NIST 800-53, and SOC 2.
• Risk Assessment & Mitigation: Walk through your approach to risk assessment and mitigation in cloud-native environments, using Azure security best practices as a reference.

Company & Culture Questions:

• Cresteo's Mission & Values: Explain why you are drawn to Cresteo's people-first and honest approach to tech services.
• Remote Work & Collaboration: Describe your experience with remote work and collaboration tools, and how you maintain productivity and communication in a remote environment.
• Problem-Solving & Adaptability: Share an example of a challenging security issue you faced and how you adapted to overcome it.

Portfolio Presentation Strategy:

• Azure Security Projects: Highlight specific Azure security projects you've worked on, focusing on the challenges you faced, the solutions you implemented, and the impact on secure score.
• Compliance Mapping Case Studies: Present case studies demonstrating your experience with compliance mapping in Azure environments, focusing on the mapping process, challenges, and successful outcomes.
• Risk Assessment & Mitigation Examples: Provide examples of risk assessment and mitigation in cloud-native environments, using Azure security best practices as a reference.

📝 Enhancement Note: Cresteo's interview process is designed to assess both technical skills and cultural fit, with a focus on finding the right candidate for the role and the team. The company values problem-solving, adaptability, and a strong commitment to security and collaboration.

📌 Application Steps

To apply for this Cloud Security Engineer (Azure) position at Cresteo:

1. Submit Your Application: Click on the "Apply for this job" button on the job listing and follow the instructions to submit your resume and cover letter.
2. Prepare Your Portfolio: Highlight specific examples of Azure security implementations, compliance mapping, and risk assessment in your portfolio. Include case studies and documentation to showcase your skills and experience.
3. Research Cresteo: Learn about Cresteo's mission, values, and company culture. Prepare thoughtful questions to ask during the interview process to demonstrate your interest and understanding of the company.
4. Prepare for Technical Challenges: Brush up on your Azure security knowledge, with a focus on Microsoft Defender for Cloud, Microsoft Sentinel, and Azure Key Vault. Familiarize yourself with compliance frameworks such as HIPAA, NIST 800-53, and SOC 2. Practice risk assessment and mitigation techniques using Azure security best practices.
5. Prepare for Behavioral & Cultural Fit Interviews: Reflect on your problem-solving skills, adaptability, and commitment to security and collaboration. Prepare examples of your experience with remote work and cross-functional team collaboration.

⚠️ Important Notice: This enhanced job description includes AI-generated insights and web development/server administration industry-standard assumptions. All details should be verified directly with the hiring organization before making application decisions.