Azure Consultant: Azure Virtual, Azure Firewall, Security

Azure Consultant: Azure Virtual, Azure Firewall, Security - (RL8177)

Our client is looking for a Senior Azure Consultant for leading the end-to-end design and delivery of the migration of existing FortiGate virtual Firewalls to Azure Firewall across multiple global Azure regions. The Senior Azure Consultant acts as technical design authority, owning the target-state architecture, security and routing patterns, policy governance model, and migration approach. The role will lead discovery, rule and routing translation, Infrastructure-as-Code delivery, cutover/rollback execution, and operational handover ensuring alignment with security governance, SOC/logging requirements, and dependent services such as Azure Virtual WAN, ExpressRoute, Zscaler, Azure Front Door, and Application Gateway.

Start date: ASAP
Duration: 60 days
Pay Rate: £489 (PLEASE NOTE: Employer NI is paid for by the client)
Total Daily Earnings: £556(includes rolled up holiday)
IR35 Status: Inside
Location: Bristol/Hybrid (mainly remote but 2 days per week on site per week for first month)

Key Responsibilities:

• Own technical discovery and solution definition: inventory current FortiGate policies, NAT, routing (UDRs/BGP), traffic flows and dependencies per region; drive requirements workshops and obtain design sign-off.
• Act as design authority for the target Azure Firewall architecture using Azure Virtual WAN hub/spoke (regional hubs), including cross-region inspection patterns and north-south/east-west segmentation.
• Define and implement a global base Firewall policy and regional child policies, including governance model, recertification approach, and rule life cycle.
• Lead translation and rationalisation of FortiGate rules (network, application, DNAT/SNAT, Proxy requirements) into Azure Firewall Policy, managing feature gaps (eg, TLS inspection, threat profiles) through agreed compensating controls.
• Own routing design and change execution (UDRs, vWAN routing, BGP/ExpressRoute considerations) to steer traffic through regional Firewalls with minimal disruption.
• Lead public IP planning, SNAT port capacity analysis, and SKU sizing (Standard vs Premium) based on throughput, connection counts, and inspection requirements.
• Define logging, monitoring, and SOC integration with Log Analytics and Microsoft Sentinel, including retention, alerting, and operational dashboards aligned to incident response requirements.
• Lead integration design and validation with Zscaler (eg, cloud connectors), Azure Front Door, and Application Gateway, including defined bypass vs inspection flows.
• Deliver and govern Infrastructure-as-Code (Terraform preferred): reusable modules, environment promotion, and Git-based change control; ensure changes are auditable and repeatable across regions.
• Develop and drive the migration strategy and runbooks per region, including sequencing, maintenance windows, validation plans, and clearly defined success/fail and rollback criteria.
• Lead migration execution and hypercare, coordinating application testing/validation and troubleshooting across teams and time zones.
• Mentor engineers and lead knowledge transfer; produce high-quality documentation (architecture, policy model, operations procedures) and support the transition to BAU operations.
• Design target Azure Firewall architecture using Azure Virtual WAN hub/spoke (regional hubs), including cross-region inspection patterns and north-south/east-west segmentation.
• Define and implement a global base Firewall policy and regional child policies, including governance model and rule life cycle.

Soft Skills:

• Flexible approach and ability to work co-operatively within a newly created team environment
• Should be a self-starter and be able to perform quality assurance and control to create technical deliverables that are error free/with minimal non-functional defects.
• Experience in operationally supporting large, complex technical environment.
• Methodical and structured in their approach to tasks.
• Capability to organise and prioritise tasks
• Strong interpersonal skills to establish/maintain relationships and interact with team members
• Strong organisation and time management skills
• Strong analytical and problem-solving skills

To apply for this Azure Consultant contract job, please click the button below and submit your latest CV.

Curo Services endeavours to respond to all applications, however this may not always be possible during periods of high volume. Thank you for your patience.

Curo Services is a trading name of Curo Resourcing Ltd and acts as an Employment Business for contract and temporary recruitment as well as an Employment Agency in relation to permanent vacancies.