Brillio

Security Architect

Brillio

full-time

Posted on:

Location Type: Hybrid

Location: DallasTexasUnited States

Visit company website

Explore more

AI Apply
Apply

Job Level

SeniorLead

Tech Stack

AzureCloudKubernetesLinuxNode.jsSQLVault

About the role

  • Lead vulnerability remediation across a wide set of Azure and hybrid platforms including:
  • o Azure VMs (Windows/Linux)
  • o AKS clusters, node pools, and container registries
  • o App Services, Function Apps, Logic Apps
  • o Storage Accounts, Databases, Key Vaults, Networking
  • o Container images (ACR) and CI/CD pipelines
  • Review and guide fixes code-related vulnerabilities (SAST/DAST results, secrets, insecure dependencies).
  • Build detailed hardening guides covering OS, Azure services, Kubernetes, networks, and identity layers.
  • Work closely with infra, DevOps, SRE, and app teams to implement hardening recommendations in a structured, repeatable way.
  • Drive large-scale backlog remediation—prioritize issues, define workflows, and ensure real progress week over week.
  • Provide industry-standard best practices to uplift the client’s overall security maturity, including cloud posture management, workload isolation, network security, identity hygiene, and governance.
  • Host daily client calls to walk through status, blockers, upcoming remediation tasks, and architectural considerations.
  • Document architecture gaps, remediation approaches, compliance alignment, and long-term improvement plans.
  • Act as senior advisor and escalation point for all security remediation streams.
  • Coach and mentor teams executing remediation to ensure consistency and quality.

Requirements

  • 12–15+ years of combined experience in security architecture, cloud security, infrastructure security, or application security.
  • Deep hands-on experience with Azure security across:
  • o Compute (VMs, VMSS)
  • o Containers (AKS, ACR)
  • o PaaS services (App Services, Function Apps, API Management)
  • o Identity & Access (Azure AD/Entra ID, Managed Identities, RBAC)
  • o Networking security (NSGs, ASGs, WAF, Private Endpoints, Firewall)
  • o Data security (Key Vault, Storage, SQL, CosmosDB)
  • o Defender for Cloud and Azure Policy
  • Strong exposure to Windows and Linux hardening.
  • Ability to drive remediation across infrastructure, application layers, and cloud-native services.
  • Strong architectural understanding of how vulnerabilities originate, how they propagate across cloud resources, and how to design long-term fixes.
  • Experience resolving complex remediation backlogs in enterprise-scale environments.
  • Excellent communication skills and confidence to lead daily discussions with senior client stakeholders.
  • Strong documentation skills—ability to create clear hardening guides, runbooks, architectural diagrams, and remediation plans.
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
Azure securityvulnerability remediationSASTDASThardening guidescloud posture managementnetwork securityidentity hygieneremediation workflowsdata security
Soft Skills
communication skillsleadershipmentoringcoachingdocumentation skillsproblem-solvingcollaborationorganizational skillsclient engagementstrategic thinking