Surge Global is a digital consultancy that leverages marketing, data, and technology to help businesses grow. As Sri Lanka’s leading digital firm, we employ the best content, creative, design & engineering talent the country has to offer.

Embracing a culture of transparency and equality in the workplace, we’ve built an environment helping Sri Lanka’s best marketing and creative talent thrive. Our team looks at untangling multivariate problems with an open mind and the willingness to constantly test and learn.

With our headquarters in Colombo Sri Lanka, we help scale startups to Fortune 500 companies across the United States, United Kingdom, Australia, and Sri Lanka.

Responsibilities:

• Monitor and maintain the security of our Azure cloud environment.
• Implement and manage Azure security features, including Azure Security Center, Azure Policy, and Azure Blueprints.
• Conduct risk assessments and vulnerability scans of Azure environments and address security gaps.
• Monitor for potential security incidents and investigate any breaches, threats, or anomalies within the Azure infrastructure.
• Work with cloud architects and development teams to integrate security into the development lifecycle (DevSecOps) on Azure.
• Stay up-to-date with Azure security updates and emerging cloud security threats, advising the team on necessary adjustments or improvements.
• Manage identity and access management (IAM) in Azure, ensuring least privilege access and enforcing multi-factor authentication (MFA).
• Assist in the development and enforcement of security policies, procedures, and guidelines specifically tailored to cloud infrastructure.
• Collaborate with external auditors to ensure compliance with relevant regulations (e.g., GDPR, HIPAA) and security frameworks (e.g., NIST, ISO 27001).
• Recommending security configuration standards for cloud services to include, but not limited to: AWS, AZURE, GCP.
• Defining, planning, implementing, maintaining, and upgrading security measures, policies, and controls.
• Writing reports and providing insights on the efficacy of the current security policies, incident responses, disaster recovery plans, and other security-related information.

Qualifications:

• Bachelor's degree or Master's degree in Information Technology, Computer Science, Cybersecurity, or a related field.
• Proven experience (3+ years) in cloud security with a focus on Microsoft Azure.
• Deep knowledge of Azure security services and tools (e.g., Azure AD, Azure Security Center, Azure Key Vault, Azure Sentinel).
• Experience with security incident detection, investigation, and response in cloud environments.
• Understanding of regulatory requirements and security frameworks such as GDPR, HIPAA, NIST, and ISO 27001.
• Familiarity with scripting and automation tools in Azure (e.g., PowerShell, Azure CLI).
• Relevant security certifications such as Microsoft Certified: Azure Security Engineer Associate, CISSP, or CISM are a plus.
• Experience with computer network penetration testing and techniques
• Understanding of firewalls, proxies, SIEM, antivirus and IDPS concepts