Consultant, Cloud Security Architect

Avanade is seeking a Cloud Security Architect to lead the charge in securing our clients’ cloud environments. In this role, you’ll assess cloud infrastructures, uncover vulnerabilities, and design tailored remediation strategies that strengthen security and ensure compliance.

You’ll combine deep technical expertise with a strategic mindset, focusing on both hands-on security controls and governance frameworks. As a trusted advisor, you’ll work directly with clients—guiding them through security assessments, architecture reviews, and implementation roadmaps that support scalable, secure cloud operations.

Come join us

As a Cloud Security Architect, you will play an active role in transforming our clients’ approach to cloud security across both public, and hybrid cloud services. Join us and establish yourself as a Leader in the Security space. Together we do what matters. Together, let’s transform cybersecurity.

What you’ll do

• Assess the security posture of customer cloud workloads and environments to identify vulnerabilities and gaps.
• Recommend and design security interventions aligned with best practices and compliance requirements.
• Evaluate and strengthen configurations for Azure security services, including Microsoft Defender for Cloud, Sentinel, Key Vault, Azure AD (Entra ID), Privileged Identity Management (PIM), Azure Policy, and governance and observability tools such as Azure Monitor and Log Analytics.
• Lead and facilitate security architecture workshops, risk assessments, and governance reviews with client teams.
• Collaborate with cross-functional teams to ensure alignment between security, operations, and business objectives.
• Conduct thorough security risk assessments and ensure mitigation strategies are implemented.
• Drive continuous improvement of security processes and controls based on evolving threat landscapes and compliance frameworks.
• Ensure adherence to industry frameworks and regulations such as NIST, ISO/IEC 27001, HIPAA, GDPR, and FedRAMP.

Avanade is seeking a Cloud Security Architect to lead the charge in securing our clients’ cloud environments. In this role, you’ll assess cloud infrastructures, uncover vulnerabilities, and design tailored remediation strategies that strengthen security and ensure compliance.

You’ll combine deep technical expertise with a strategic mindset, focusing on both hands-on security controls and governance frameworks. As a trusted advisor, you’ll work directly with clients—guiding them through security assessments, architecture reviews, and implementation roadmaps that support scalable, secure cloud operations.

Come join us
As a Cloud Security Architect, you will play an active role in transforming our clients’ approach to cloud security across both public, and hybrid cloud services. Join us and establish yourself as a Leader in the Security space. Together we do what matters. Together, let’s transform cybersecurity.

Key Responsabilities

• Assess the security posture of customer cloud workloads and environments to identify vulnerabilities and gaps.

• Recommend and design security interventions aligned with best practices and compliance requirements.

• Evaluate and strengthen configurations for Azure security services, including Microsoft Defender for Cloud, Sentinel, Key Vault, Azure AD (Entra ID), Privileged Identity Management (PIM), Azure Policy, and governance and observability tools such as Azure Monitor and Log Analytics.

• Lead and facilitate security architecture workshops, risk assessments, and governance reviews with client teams.

• Collaborate with cross-functional teams to ensure alignment between security, operations, and business objectives.

• Conduct thorough security risk assessments and ensure mitigation strategies are implemented.

• Drive continuous improvement of security processes and controls based on evolving threat landscapes and compliance frameworks.

• Ensure adherence to industry frameworks and regulations such as NIST, ISO/IEC 27001, HIPAA, GDPR, and FedRAMP.

À titre de seul membre de l’équipe de soutien basé à Montréal, vous jouerez un rôle clé dans la prestation du soutien technique aux équipes internationales situées en Amérique du Nord, en Inde et en Australie.

Rejoignez-nous :

À titre de développeur·se, vous concevrez et automatiserez les fonctionnalités d’affaires de systèmes d’entreprise en utilisant les plus récents cadres Microsoft .NET. Vous exploiterez les technologies infonuagiques et les pratiques DevOps. Vous participerez également à la conception de l’architecture conceptuelle et des solutions, et dirigerez le développement conformément aux spécifications du client. Ensemble, nous réalisons ce qui compte.

Ce que vous ferez :

•    Agir comme point de contact principal pour le bureau de Montréal, en collaboration étroite avec les équipes en Inde et en Australie lors de rencontres virtuelles quotidiennes et hebdomadaires; ajuster les heures de travail au besoin afin d’assurer une communication et un soutien efficaces entre les fuseaux horaires.
•    Surveiller les ressources Azure, notamment Logic Apps, API Management et Function Apps, à l’aide d’outils tels qu’Azure Monitor et Log Analytics.
•    Identifier de façon proactive des occasions d’améliorer la plateforme Azure en mettant en place de nouvelles alertes, en produisant des rapports et en automatisant les tâches récurrentes.
•    Collaborer avec les équipes de développement afin de proposer des améliorations et d’appuyer les activités quotidiennes.

Introduction:

As the sole support team member based in Montreal, you will play a key role in providing technical support to international teams located in North America, India, and Australia.

Join us:

As a developer, you will design and automate business features of enterprise systems using the latest Microsoft .NET frameworks. You will leverage cloud technologies and DevOps practices. You will also participate in conceptual architecture and solution design and lead development according to client specifications. Together, we deliver what matters.

What you will do:

• Serve as the primary point of contact for the Montreal office, working closely with teams in India and Australia during daily and weekly virtual meetings; adjust working hours as needed to ensure effective communication and support across time zones.

• Monitor Azure resources, including Logic Apps, API Management, and Function Apps, using tools such as Azure Monitor and Log Analytics.

• Proactively identify opportunities to enhance the Azure platform by implementing new alerts, generating reports, and automating recurring tasks.

• Collaborate with development teams to suggest improvements and support day-to-day activities.

At Avanade, cybersecurity consultants are innovators, risk-takers, and challengers of the status quo. If you’re an experienced Application Security Consultant, who can help our clients solve complex Application Security business challenges, this might be the perfect opportunity for you.· Collaborate with clients to design and implement secure application architectures using Microsoft technologies.

In a client-facing consulting role, you will work on exciting projects that transform our client’s Application Security maturity, approach and integration with their existing software development and DevOps approaches through design and implementation of our technologies. As a member of our security practice, you will work for both Avanade and Accenture clients, ranging from medium to large global enterprise clients. Join a curious and diverse team that’s passionate about next-gen tech and establish yourself as a Leader in the Security space. Together, let’s transform cybersecurity.

Key responsabilities:

•  Collaborate with clients to design and implement secure application architectures using Microsoft technologies.  

• Help clients define and implement security policies and compliance frameworks to meet industry and regulatory standards using Microsoft security solutions. 

•  Ensure the security of cloud-based applications hosted on Microsoft Azure, including configuring security controls and managing access permissions. 

• Implement and manage GitHub Advanced Security capabilities (Secret Scanning, CodeQL, Dependabot, and Security Overview dashboards).

•  Develop and maintain AppSec policies and standards for code repositories, branching, and pull request security controls.

• Partner with DevOps and development teams to embed security tooling within CI/CD pipelines (GitHub Actions, Azure DevOps, etc.).

• Perform secure code reviews, identify vulnerabilities, and guide remediation efforts.

• Enable automation for vulnerability triage and remediation tracking across repositories.

• Support threat modeling, dependency management, and security assessments for new applications or microservices.