Senior Security Engineer (Azure Security)

Senior Security Engineer (Azure Security)

About Nava

Nava is a consultancy and public benefit corporation working to make government services simple and effective. Since 2015, federal, state, and local agencies have trusted Nava to help solve highly scrutinized technology modernization challenges. As a client services company, we guide agencies constrained by legacy systems to a future with sharp user experiences built on secure, reliable, fault-tolerant cloud infrastructure. We bill for our time, offering our expertise and problem-solving approach to help our government partners enhance their digital products and services. People are at the heart of our work, from members of the public who rely on benefit programs to government agency staff. Through human-centered design and modern engineering best practices, we help our government partners understand user needs and deliver on their missions more effectively. This focus gives everyone at Nava the opportunity to do work that is meaningful, impactful, and deeply connected to public good.

Position Summary

We are seeking a Senior Security Engineer to support the design and implementation of a secure Azure cloud environment for a large-scale government modernization effort. This role will focus on establishing strong security and compliance foundations, including identity and access management, monitoring, and policy enforcement across the tenant. The Security Engineer will partner closely with cloud architects, engineers, and client stakeholders to define and implement security best practices aligned with federal and state requirements.

What You'll Do

• Design and implement identity and access management (IAM) models, including RBAC and privileged access controls
• Configure and advise on security tools such as Microsoft Defender for Cloud
• Define and enforce security policies and governance guardrails using Azure Policy
• Set up and guide centralized logging, monitoring, and threat detection capabilities
• Design key management and secrets handling solutions (e.g., Azure Key Vault)
• Support compliance efforts, including HIPAA alignment and ATO preparation activities
• Collaborate with teams to identify security risks and define remediation approaches
• Contribute to secure cloud architecture decisions, including networking and access patterns
• Support Infrastructure-as-Code (IaC) and CI/CD practices to ensure secure deployments
• Create security documentation, runbooks, and provide guidance to enable client teams to operate securely

Required Skills

Experience with