About usAt Connect Digital, we don't just deliver digital products, we create meaningful, user-centric experiences that make a real difference. With over 20 years of market experience, we combine deep strategic thinking, world-class design, and cutting-edge tech to help organisations accelerate their digital journey. Whether it's launching platforms, designing seamless apps, or rethinking services from the ground up, we're all about solving complex problems with smart, elegant solutions.If you're curious, ambitious, and ready to help shape the next generation of digital experiences, you'll fit right in.About the RoleWe are looking for an experienced Security Cloud Engineer. You will own the security and compliance strategy for our Microsoft Azure and Oracle Cloud Infrastructure (OCI) estates. You will translate the Azure & OCI Well-Architected Frameworks, the Azure Security Benchmark/Baseline, CIS Foundations Benchmark v2.0, NIST SP ******* container-security guidance, and other industry standards into practical, automated controls designing, building and continuously improving the secure landing zones that power our business-critical workloads.Key ResponsibilitiesPropose and follow up with the various teams, the necessary improvements to increase the Security Score in Defender.Design secure multi-subscription / multi-tenant landing zones in Azure and OCI, aligned to the five Well-Architected pillars (Security, Reliability, Performance Efficiency, Operational Excellence, Cost).Drive container-security reference architectures (AKS, OKE, ACI, OCI Containers, Kubernetes on Iaa S) that satisfy NIST SP ******* and NSA/CISA hardening guidance.Map regulatory and internal requirements to the Azure Security Benchmark/Baseline, CIS Azure/OCI 2.0 controls, PCI DSS, ISO ***** and SOC 2.Build automated policy as code (Azure Policy, OCI Guardrails, Terraform Sentinel, OPA/Gatekeeper) to enforce guardrails and generate evidence for auditors.Develop and maintain Ia C modules (Bicep/Terraform/OCI Resource Manager) with integrated security controls, reusable across product teams.Integrate static/dynamic Ia C security scans (Azure Defender for cloud, Oracle Guard tfsec, Trivy, Dockle) and container image signing into the CI/CD pipeline (Git Hub Actions/Azure Dev Ops/Argo CD).Configure Azure Security Center/Defender, Microsoft Sentinel, and OCI Cloud Guard to detect, triage and respond to threats.Establish KPIs/KRIs and real-time dashboards for cloud posture, vulnerability debt and compliance drift.Act as a trusted advisor to engineering teams, running threat-model workshops, training on secure coding, and championing a "paved-road."Requirements5 years focused on public cloud (Azure or OCI)Fluent in English (client-facing) and Portuguese.Based in Portugal, available for remote work.What We OfferA dynamic, international project with high visibility and technical challenges.Opportunities for continuous learning and professional development.A relaxed yet growth-oriented environment, where your input and ideas truly matter.Competitive salary and benefits package.Seniority levelMid-Senior levelEmployment typeFull-timeJob functionEngineering and Information TechnologyIndustriesSoftware DevelopmentReferrals increase your chances of interviewing at Connect Digital by 2x