Back to Jobs
Brussels, Belgium Hybrid Employment

NVISO is hiring a Cloud Security Consultant (Jr.)

Responsibilities

  • Design and implement Microsoft Entra tenant architecture, including identity lifecycle, conditional access, and MFA.
  • Implement and tune Conditional Access policies, risk-based access, and device compliance integrations with Intune/Endpoint Manager.
  • Deploy and operate Privileged Access Management (PAM), including PIM for Azure and M365 roles, just-in-time access, and break-glass accounts.
  • Integrate on-premises identities (hybrid) with secure synchronization and hardening of federation where used.
  • Build secure landing zones using Azure Policy, Blueprints/Bicep/Terraform, and management groups.
  • Enforce baseline controls for networking (NSGs, Azure Firewall, Private Link), compute (secure images, patching), and storage (encryption, private endpoints).
  • Configure Azure Key Vault for secrets, keys, and certificates management with RBAC and purge protection.
  • Implement workload isolation, tagging, and resource locks; manage identity-based access (managed identities).
  • Deploy and tune Microsoft Defender for Cloud, Defender for Cloud Apps (MCAS), Defender for Endpoint, and Defender for Identity.
  • Configure Microsoft Sentinel: data connectors, analytics rules, UEBA, watchlists, workbooks, and SOAR playbooks (Logic Apps).
  • Configure and manage Microsoft Purview (Compliance portal) for DLP, information protection labels, data lifecycle, and insider risk.
  • Implement Exchange Online, SharePoint, OneDrive, and Teams security baselines, safe links/attachments, and anti-phishing policies.
  • Enforce device compliance via Intune, app protection policies, and conditional access for BYOD and corporate devices.
  • Secure collaboration and external sharing with sensitivity labels, access reviews, and entitlement management.
  • Design data classification and labelling strategies with Microsoft Purview; enforce DLP across endpoints, Exchange, SharePoint, and Teams.
  • Ensure encryption at rest and in transit, customer-managed keys (CMK), and double encryption where required.
  • Implement eDiscovery, legal hold, and audit configurations for regulatory needs.

Requirements

  • At least 1 year of experience in information security specific to Azure or Microsoft 365 cloud environments.
  • Experience with Microsoft’s cloud services, including Entra ID, Microsoft Sentinel, and Microsoft Defender for Cloud, Defender for Endpoint, Defender for Cloud Apps, Defender for Identity, Intune, and/or Purview.
  • Knowledge or experience with cloud security best practices and related frameworks. For example: CIS Benchmarks, Microsoft Cloud Security Benchmark, etc.
  • Strong communication, documentation and reporting skills.
  • Bachelor’s degree in Computer Science, Cyber Security, Information Security, Engineering, Information Technology, or related studies.
  • You hold citizenship in one of the 32 NATO member states.

Nice to Have

  • Relevant current Microsoft cloud certifications. For example: AZ-104, SC-900, SC-200, SC-300, SC-401, or AZ-500.
  • Experience in consulting.
  • Other vendor-agnostic cybersecurity certifications. E.g. SSCP, CompTIA Security+, or equivalent.
  • Experience with scripting languages such as PowerShell or Python.

Benefits

  • A training budget of 10.000€ and 10 days every 2 years
  • Company car and Belgian fuel card
  • Working and learning from the best people in the European cyber security industry.
  • An entrepreneurial and agile working environment, where you will be challenged, stimulated and supported in driving new initiatives (either through internal innovation or by improving our service offering), without losing sight of having fun!
  • Regular team-building and fun events throughout the year;
  • Our commitment to coach and counsel you and help you grow; each employee receives a personal coach within the team, whose role is to ensure your well-being and helps you grow in your career!
  • Flexible working hours, working from home and even the possibility to work from abroad;
  • Flex Income Plan
  • 32 paid leave days.

Work Arrangement

Hybrid

Team

Structure: team of security consultants and engineers

Additional Information

  • Flexible working hours, working from home and even the possibility to work from abroad;
  • 32 paid leave days.
Required Skills
information security specific to Azure oMicrosoftcloud security best practicesrelateconsulting.scripting languages such as PowerShell o information security specific to Azure oMicrosoftcloud security best practicesrelateconsulting.scripting languages such as PowerShell o
Want to work from Thailand?

Join a remote network built for tech talent

Iglu gives you real employment in Southeast Asia — visa, work permit, and projects included. Pick what you work on, earn performance-based pay, and live where you want.

Legal employment in Thailand & Vietnam
Choose your own projects
Performance-based revenue sharing
Relocation support available
Join Iglu
200+ professionals worldwide
About company
NVISO
A young team of cyber security professionals offering innovative security services to private and governmental organizations across Europe.
All jobs at NVISO Visit website
Job Details
Department Cloud Security
Category security
Posted 8 hours ago

Similar Jobs

Other opportunities you might be interested in

Pacific Legal Foundation

Data Security Analyst

Pacific Legal Foundation

Arlington Hybrid
NVISO

Information Security (Senior) Manager (m/w/d)

NVISO

Munich Hybrid
Eurofins Scientific

Cyber Security Subject Matter Expert

Eurofins Scientific

Santa Clara Hybrid
FICO

Cyber Security IAM Engineer

FICO

Guadalajara, Mexico Remote (Global)
NVISO

Principal Threat Intelligence Consultant (m/w/d)

NVISO

Vienna Hybrid
XM Careers

Information Security Engineer

XM Careers

Limassol Remote (Country)