Sr. Azure Security Engineer
Axos Bank · Manila, Metro Manila, Philippines
Banking · 1,001-5,000 employees
About the role
The role involves architecting and implementing the security posture of Microsoft Azure environments for a financial institution. Key duties include managing identity governance, network security, and SIEM/SOAR workflows while ensuring compliance with FSI regulatory requirements.
What they look for
Requirements
Candidates need over 7 years of information security experience, with at least 4 years focused on Azure security in a regulated industry. Proficiency in automation tools like Terraform and Bicep, along with a bachelor's degree or equivalent experience, is required.
Full description
Axos Business Center, Corp
About This Job
About the Role
We are seeking a Senior Azure Security Engineer to join our Cloud and AI Security team within one of the nation's leading financial institutions. In this role, you will be the subject matter expert responsible for architecting, implementing, and continuously improving the security posture of our Microsoft Azure environments. You will partner closely with infrastructure, application development, risk, and compliance teams to embed security-by-design principles across our cloud estate.
Key Responsibilities
- Design and implement Azure security architectures aligned with FSI regulatory requirements including SOX, PCI-DSS, GLBA, and FFIEC guidelines
- Lead Azure Security Center / Microsoft Defender for Cloud configuration, policy management, and continuous monitoring
- Own and mature Azure Active Directory (Entra ID) security posture — PIM, Conditional Access, MFA, identity governance, and privileged identity management
- Architect and enforce Azure Policy, Blueprints, and Management Group structures to ensure least-privilege and compliant deployments
- Lead implementation and management of Azure Sentinel SIEM/SOAR — develop custom detection rules, playbooks, and automation workflows
- Drive network security design: NSGs, Azure Firewall, DDoS protection, Private Endpoints, and hub-spoke architectures
- Perform threat modeling, risk assessments, and security reviews for new Azure workloads and platform changes
- Manage secrets, keys, and certificate lifecycle via Azure Key Vault; ensure HSM integration for regulated workloads
- Lead response to cloud-native security incidents, conducting root cause analysis and driving remediation
- Collaborate with DevSecOps teams to embed security into CI/CD pipelines (GitHub Actions, Azure DevOps)
- Produce executive-level reporting on cloud security KPIs, control effectiveness, and risk posture
- Mentor junior engineers and contribute to team capability building and knowledge sharing
Required Qualifications
- 7+ years of information security experience, with 4+ years focused on Azure cloud security in a regulated industry
- Deep technical expertise across core Azure security services: Defender for Cloud, Sentinel, Entra ID, Key Vault, Firewall, NSGs, Policy
- Strong understanding of financial services compliance frameworks: PCI-DSS, SOX, GLBA, FFIEC, NIST CSF
- Proficiency in scripting and automation: PowerShell, Python, Bicep/ARM templates, Terraform
- Experience with zero-trust architecture implementation in enterprise Azure environments
- Solid understanding of PKI, cryptographic standards, and secrets management
- Bachelor's degree in Computer Science, Information Security, or equivalent practical experience
Preferred Qualifications
- Microsoft Certified: Azure Security Engineer Associate (AZ-500) — required
- Microsoft Certified: Security Operations Analyst (SC-200) — strongly preferred
- Additional certifications: CISSP, CISM, CCSP, CEH
- Experience with DORA, MAS TRM, or OCC guidelines
- Familiarity with multi-cloud security strategies and cross-cloud SIEM integrations
- Prior experience in investment banking, retail banking, or insurance environments
About Axos
Born digital-first, Axos delivers financial tools and services that allow individuals, small businesses, and companies to access and manage their money how, when, and where they want. We’re a diverse team of dynamic, insightful, and independent innovators who are excited to provide technology-driven solutions that offer unbeatable value to our customers.
Axos Financial is our holding company and is publicly traded on the New York Stock Exchange under the symbol "AX" (NYSE: AX).
Learn More about working at Axos Business Center
Pre-Employment Background Check, Medical, and Drug Test:
All offers are contingent upon the candidate successfully passing a credit check, criminal background check, and pre-employment medical and drug screening.
Equal Employment Opportunity:
Axos is an Equal Opportunity employer. We are committed to providing equal employment opportunities to all employees and applicants without regard to race, religious creed, color, sex (including pregnancy, breast feeding and related medical conditions), gender, gender identity, gender expression, sexual orientation, national origin, ancestry, citizenship status, military and veteran status, marital status, age, protected medical condition, genetic information, physical disability, mental disability, or any other protected status in accordance with all applicable federal, state, and local laws.
Job Functions and Work Environment:
While performing the duties of this position, the employee is required to sit for extended periods of time. Manual dexterity and coordination are required while operating standard office equipment such as computer keyboard and mouse, calculator, telephone, copiers, etc.
The work environment characteristics described here are representative of those an employee may encounter while performing the essential functions of this position. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of this position.