YASH Technologies is a leading technology integrator specializing in helping clients reimagine operating models, enhance competitiveness, optimize costs, foster exceptional stakeholder experiences, and drive business transformation.

At YASH, we’re a cluster of the brightest stars working with cutting-edge technologies. Our purpose is anchored in a single truth – bringing real positive changes in an increasingly virtual world and it drives us beyond generational gaps and disruptions of the future.

We are looking forward to hire Azure Professionals in the following areas :

Job Description

Azure Cloud Security Engineer / Architect

Reports to: Cloud Security Service Line Head     |     Function: Cloud Security Practice

YASH is building a differentiated Azure cloud security practice anchored in Microsoft Defender, Sentinel, and Purview.

The Azure Cloud Security Engineer / Architect combines hands-on Azure cybersecurity expertise with the ability to engage confidently with senior client security architects, security leaders, as well well  as internal stakeholders including business development, other service lines etc.. This is a outward-facing role responsible for translating security capability into client value and building the credibility of the practice with enterprise buyers.

AI is a core requirement for this role. The candidate must have hands-on experience applying AI and machine learning capabilities within security operations — including threat detection, alert triage, investigation acceleration, and security posture analysis — and be able to speak credibly to clients about AI's role in modern security programs.

The individual in this role operates with a degree of independence, owns outcomes end-to-end, and brings both technical rigour and business acumen to every engagement.

1.  Security Architecture

• Design end-to-end Azure cloud security architectures aligned to client business risk, regulatory requirements, and Microsoft best practices.
• Develop security reference architectures across identity, data protection, network security, workload protection, and threat management domains.
• Translate client requirements into technically sound, commercially viable security solutions.
• Define security architecture standards, patterns, and guardrails for use across client engagements.
• Lead architecture reviews and provide guidance on security design decisions throughout the delivery lifecycle.

2.   Business Development Support

• Contribute to RFI and RFP responses — owning the technical solution design, architecture narrative, and security approach sections.
• Support proposal development by translating client requirements into well-structured, credible technical responses.
• Participate in pre-sales conversations and solution scoping discussions, providing input on feasibility, effort, and approach.
• Assist in preparing client-facing materials including capability presentations, solution overviews, and engagement proposals.
• Identify potential opportunities for expanded scope or follow-on work within active engagements and communicate these to the Service Line Head.

3.  Practice Contribution

• Contribute to internal knowledge sharing including technical write-ups, lessons learned, and peer reviews.
• Provide input on practice tooling, service accelerators, and delivery frameworks built by the Technical Lead.
• Mentor and support junior team members as the practice grows.
• Maintain and grow relevant Microsoft certifications and stay current on developments in cloud security and AI-driven security operations.
•  

4.  Azure Cloud Security — Technical Delivery

• Design and deliver Azure cloud security architectures across identity, data, network, and workload protection domains.
• Lead threat monitoring, detection engineering, and response workflows using Microsoft Defender XDR and Microsoft Sentinel.
• Drive data security and governance engagements using Microsoft Purview, including information protection, data loss prevention, and compliance posture.
• Conduct cloud security posture assessments, risk reviews, and architecture gap analyses for enterprise clients.
• Stay current on Azure security product developments and translate new capabilities into service-ready offerings.
• Apply AI and machine learning capabilities to enhance security operations — including AI-driven threat detection, automated alert triage, and intelligent investigation in Sentinel and Defender.
• Evaluate and recommend AI-augmented security tooling to clients, with a clear understanding of capabilities, limitations, and integration considerations.
•  

5.  Customer and Executive Engagement

• Engage directly with security, Cloud Security Architects, and senior IT leadership to understand business risk, security posture, and strategic priorities.
• Lead discovery workshops, security roadmap presentations, and executive briefings with confidence and clarity.
• Act as a trusted advisor to clients, maintaining credibility through both technical depth and business relevance.
• Represent the practice in client-facing settings including steering meetings, quarterly business reviews, and proposal presentations.

8–12 years of total experience, with at least 5 years focused on Azure cloud security.

• Technical depth: Defender, Sentinel, and Purview require hands-on enterprise exposure — not just certification-level familiarity. Candidates need to have operated these platforms in complex, regulated environments.
• AI integration: Applying AI meaningfully to security operations — rather than just naming tools — demands practical experience that takes time to develop.
• Stakeholder engagement: Regular engagement with CISOs and senior architects demands the credibility that comes with experience.
• Business development: RFP contribution and pre-sales participation require commercial maturity, professional confidence, and the ability to operate with limited supervision..
• Independence: The role operates with significant autonomy under a Service Line Head. Candidates must be able to self-direct, manage multiple workstreams, and exercise sound judgement without close oversight.

Technical

• Deep hands-on experience with Microsoft Defender XDR — Defender for Cloud, Endpoint, Identity, and Office 365.
• Proven delivery experience with Microsoft Sentinel including detection engineering, SIEM architecture, and playbook development.
• Working knowledge of Microsoft Purview — information protection, data governance, and compliance management.
• Hands-on experience applying AI and ML capabilities within security operations: AI-driven detection, automated triage, Copilot for Security, or equivalent.
• Strong understanding of Azure security architecture including Entra ID, network security, workload protection, and Key Vault.
• Experience with CSPM, vulnerability management, and compliance posture in Azure environments.
• Familiarity with cloud security frameworks: CSA-CCM, NIST CSF, CIS Benchmarks, Microsoft Cloud Security Benchmark.

Business and Engagement

• Demonstrated ability to engage with and present to CISO-level and senior IT stakeholders.
• Experience contributing to proposals, RFI/RFP responses, or client-facing solution documentation.
• Comfort with data analysis, reporting, and producing clear business-oriented outputs for leadership.
• Strong written and verbal communication — able to adapt from technical deep-dives to executive summaries.
• Self-starter with an ownership mindset; able to manage tasks and deliverables independently.
• Light project management capability — able to track and coordinate multiple workstreams without dedicated PM support.

MS Certifications

• Microsoft Certified: Security Operations Analyst Associate (SC-200) (good to have)
• Microsoft Certified: Azure Security Engineer Associate (AZ-500) (required)
• One of the following or equivalent: SC-300 (Identity and Access Administrator) or SC-400 (Information Protection Administrator) (good to have)

• Experience working within a Microsoft Partner or MSSP environment.
• Familiarity with industry verticals such as life sciences, financial services, or healthcare — where regulated cloud security demands are elevated.
• Familiarity with Microsoft Copilot for Security or other AI-native security tooling.
• Experience with adjacent platforms such as Entra ID, Intune, or Microsoft Defender for Cloud Apps.
• Prior involvement in pre-sales, solutioning, or client advisory work.
• CISSP, CISM, or equivalent security leadership certification.

The right candidate walks into a client conversation and builds credibility quickly — through the quality of their questions, the clarity of their thinking, and their ability to connect security to business outcomes. They can run a workshop in the morning, review an RFP section in the afternoon, and contribute a point of view on AI in security operations the same week. They take ownership without being asked, bring ideas to the Service Line Head rather than just completing tasks, and raise the standard of the team around them.

At YASH, you are empowered to create a career that will take you to where you want to go while working in an inclusive team environment. We leverage career-oriented skilling models and optimize our collective intelligence aided with technology for continuous learning, unlearning, and relearning at a rapid pace and scale.

Our Hyperlearning workplace is grounded upon four principles

• Flexible work arrangements, Free spirit, and emotional positivity
• Agile self-determination, trust, transparency, and open collaboration
• All Support needed for the realization of business goals,
• Stable employment with a great atmosphere and ethical corporate culture