WINDOWS SERVER HARDENING

Windows Server Hardening

We are seeking an experienced Windows Server Hardening Consultant with deep expertise in CIS Benchmark implementation, security configuration, and operational impact analysis within Microsoft Azure environments.  

The consultant will be responsible for analyzing, deploying and validating hardened configurations for Windows Server virtual machines, ensuring alignment with CIS Level 1/2 benchmarks and other industry best practices.

This role requires

• excellent problem‑solving abilities
  
• ability to evaluate security controls for their operational impact
  
• proactively proposing mitigation strategies or fixes in case of incidents or compatibility issues
  

ESSENTIAL REQUIREMENTS

• Expert-level knowledge of Windows Server OS (2016/2019/2022) internals, services, security components, and registry-based configurations.
  
• Hands-on experience implementing CIS Windows Server Benchmarks (Level 1 & Level 2).
  
• Strong understanding of Active Directory, domain security policies, and Kerberos/NTLM authentication flows.
  

Experience with Azure IaaS, including

• Azure VM extensions
  
• Azure Policy
  
• Azure Automation / DSC
  
• Azure Monitor / Log Analytics
  
• Proficiency in PowerShell for automation, configuration, and troubleshooting.
  

Soft Skills

• Excellent analytical and diagnostic abilities.
  
• Strong communication skills for explaining complex technical impacts to non-technical stakeholders.
  
• Ability to work independently and serve as a trusted security advisor.
  

Preferred Qualifications

• CIS Benchmark certification or previous CIS hardening project experience.
  
• Microsoft certifications:
  
• AZ-104 (Azure Administrator)
  
• AZ-305 (Solutions Architect)
  
• SC-100/SC-200/SC-300 (Security)
  

Experience with :

• Microsoft Defender for Cloud
  
• GPO modeling & Resultant Set of Policy (RSoP) analysis
  
• Blue Team / Security Operations