Azure Public Cloud Senior Consultant

At Ensono, our Purpose is to be a relentless ally, disrupting the status quo and unleashing our clients to Do Great Things!  We enable our clients to achieve key business outcomes that reshape how our world runs. As an expert technology adviser and managed service provider with cross-platform certifications, Ensono empowers our clients to keep up with continuous change and embrace innovation.

We can Do Great Things because we have great Associates. The Ensono Core Values unify our diverse talents and are woven into how we do business. These five traits are the key to achieving our purpose.

Honesty – Reliability – Curiosity – Collaboration - Passion

Secure Architecture & Design (Primary Focus)

• Lead secure design workshops with customers, incorporating security and compliance requirements
• Design Azure architectures with security and hardening as foundational principles
• Implement Azure landing zones aligned with governance, identity, and security best practices
• Define and document security controls, guardrails, and baseline configurations
• Ensure designs align with customer regulatory and risk requirements (e.g., financial services, healthcare, government)

Implementation, Hardening & Delivery

• Build and configure Azure environments with a strong emphasis on:
  • Identity and access management
  • Network segmentation and perimeter security
  • Secure connectivity (VPN, ExpressRoute)
• Implement environment hardening for Azure resources and virtual machines
• Apply security baselines, policies, and configuration standards
• Support secure migrations and modernization of workloads into Azure
• Validate environments through testing, review, and remediation of security gaps

Security Governance & Operational Readiness

• Implement and manage Azure governance controls (management groups, policies)
• Configure and integrate Azure security and monitoring services
• Support customer security reviews, audits, and risk assessments
• Act as the technical security escalation point within assigned engagements
• Partner with customer security teams to ensure ongoing compliance and risk management

Technical Leadership & Consulting

• Serve as the senior technical lead for Azure delivery within the engagement
• Mentor and guide other consultants on secure Azure design and implementation
• Conduct peer reviews of designs and configurations with a security lens
• Contribute to internal standards, patterns, and reusable security assets

Professional Experience

• 7+ years of experience in infrastructure, cloud, or security-focused engineering roles
• 3+ years of hands-on experience designing and delivering Microsoft Azure solutions
• Demonstrated experience securing and hardening enterprise cloud environments
• Prior experience in consulting, professional services, or customer-facing delivery roles

• Microsoft Azure Solutions Architect Expert (Certification)

Core Azure & Security Skills

• Azure networking (VNets, VPN, ExpressRoute, peering, gateways)
• Azure identity and access management (Azure AD, hybrid identity)
• Azure security architecture and auditing
• Azure tenant and subscription governance (management groups, policies)
• Azure Site Recovery (ASR) for secure migration and DR
• Infrastructure as Code using ARM templates (JSON)
• Automation and scripting using PowerShell

Consulting & Communication Skills

• Strong written and verbal communication skills
• Experience presenting security and technical concepts to customer stakeholders
• Strong stakeholder management and risk-awareness
• Self-directed, detail-oriented, and delivery-focused

Due to customer and regulatory requirements, candidates must:

• Be legally authorized to work in the United States 
• Must be a Green Card Holder or U.S. Citizen
• Successfully pass background checks required by customer engagements
• Meet client data residency, access, and security requirements
• Be willing to travel occasionally to customer sites as needed

• Azure DevOps and CI/CD with security controls
• Secure application modernization (PaaS / serverless)
• Containers and Kubernetes (AKS) with security best practices
• Azure database security and encryption
• Experience with cloud security platforms (e.g., Palo Alto, Barracuda)
• Experience supporting regulated industries (financial services, healthcare, SLED)

Certifications

• Microsoft Azure Security Engineer Associate (Strongly Preferred)
• Microsoft Azure DevOps Engineer Expert (Preferred)

Ensono is a place to make better happen – for our clients and for your career. You can do great things through innovation or collaboration, by learning or volunteering, or to promote diversity and inclusion. You can do great things for your own health or for a healthier planet. Whatever it means to you to do great things we want Ensono to be the place you can do it. 

We are a client-facing business, but we do encourage clients to allow us to work remotely most of the time so if you are not required to be on a client site, you can choose to work from home or in our Ensono offices.

Some of our benefits include:

• Unlimited Paid Days Off
• Three health plan options
• 401k with company match
• Eligibility for dental, vision, short and long-term disability, life and AD&D coverage, and flexible spending accounts
• Family Forming Benefit including fertility coverage and adoption/surrogacy reimbursement
• Paid childbearing and paternal leave
• Education Reimbursement, Student Loan Assistance or 529 College Funding
• Sabbatical leave
• Wellness program
• Flexible work schedule

As of the date of this posting, a good faith estimate of the current pay scale for this role is $110,000 to $163,000 annually based on a full-time schedule. Please note that placement in the range may vary based on numerous factors including but not limited to skills, experience, internal equity, and business needs. In addition to base salary, other compensation programs, depending on eligibility, include an annual bonus plan based on company and individual performance [OR] a role-based, sales-incentive plan, and an equity grant under our Associate Equity Appreciation Program.

Ensono is an Equal Opportunity/Affirmative Action employer. We are committed to providing equal employment to our Associates and building a diverse and inclusive workforce. All qualified applicants will be considered without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability, or other legally protected basis, in accordance with applicable law.

Pay transparency nondiscrimination statement/posting OFCCP’s pay transparency policy can be found on OFCCP’s website.If you need accommodation at any point during the application or interview process, please let your recruiter know or email USTalentAcquisition@ensono.com.