The person should have a good understanding of the system thread model.
Experience performing threat modeling and design reviews to assess security implications and mitigating controls for the security solutions.
Should be good in documenting, taking the screen shots of the system and able to deliver quality security documents of the system.
Should have a very good understanding of cyber security related concepts(Just example the way Authorization and Authorization work etc.,). Because this understating is necessary to deliver quality documents.
He may not have system design skills of security but should be able to understand the existing system and be able to manage the operations.
Expertise in Azure, in-depth understanding of their service catalogs, security offerings and automation opportunities
Deep experience of cloud service architecture and implementing security controls