Nava PBC logo

Senior Security Engineer (Azure Security)

Nava PBC
18 hours ago
Remote friendly (Remote)
Worldwide

About Nava

Nava is a consultancy and public benefit corporation working to make government services simple and effective. Since 2015, federal, state, and local agencies have trusted Nava to help solve highly scrutinized technology modernization challenges.
 
As a client services company, we guide agencies constrained by legacy systems to a future with sharp user experiences built on secure, reliable, fault-tolerant cloud infrastructure. We bill for our time, offering our expertise and problem-solving approach to help our government partners enhance their digital products and services. People are at the heart of our work, from members of the public who rely on benefit programs to government agency staff. Through human-centered design and modern engineering best practices, we help our government partners understand user needs and deliver on their missions more effectively. This focus gives everyone at Nava the opportunity to do work that is meaningful, impactful, and deeply connected to public good.
 
 

Position summary 

We are seeking a Senior Security Engineer to support the design and implementation of a secure Azure cloud environment for a large-scale government modernization effort. This role will focus on establishing strong security and compliance foundations, including identity and access management, monitoring, and policy enforcement across the tenant. The Security Engineer will partner closely with cloud architects, engineers, and client stakeholders to define and implement security best practices aligned with federal and state requirements.

What you'll do

  • Design and implement identity and access management (IAM) models, including RBAC and privileged access controls
  • Configure and advise on security tools such as Microsoft Defender for Cloud
  • Define and enforce security policies and governance guardrails using Azure Policy
  • Set up and guide centralized logging, monitoring, and threat detection capabilities
  • Design key management and secrets handling solutions (e.g., Azure Key Vault)
  • Support compliance efforts, including HIPAA alignment and ATO preparation activities
  • Collaborate with teams to identify security risks and define remediation approaches
  • Contribute to secure cloud architecture decisions, including networking and access patterns
  • Support Infrastructure-as-Code (IaC) and CI/CD practices to ensure secure deployments
  • Create security documentation, runbooks, and provide guidance to enable client teams to operate securely

Required skills

  • Experience with Azure cloud security, including Microsoft Entra ID and Defender for Cloud  
  • Strong knowledge of Identity and Access Management (IAM), including RBAC and privileged access controls  
  • Familiarity with security and compliance frameworks (e.g., HIPAA, state security standards, ATO processes)  
  • Experience implementing cloud security monitoring, logging, and incident detection
  • Knowledge of Azure Policy and governance guardrails for enforcing security standards  
  • Experience with key management and secrets handling (e.g., Azure Key Vault)  
  • Understanding of secure network architecture and connectivity (including hybrid/on-prem integrations)  
  • Experience supporting Infrastructure-as-Code (IaC) and secure CI/CD pipeline practices  
  • Ability to define and document security architecture, standards, and operational runbooks
  • Strong collaboration skills to work with engineers, architects, and stakeholders on security design and remediation

Please note: the level of the role will be determined by Nava leadership based on experience and skillset.

 

 

Compensation
$144,500$153,000 USD

Other requirements

All roles at Nava require the following:
Legal authorization to work in the United States
Ability to meet any other requirements for government contracts for which candidates are hired
Work authorization that doesn’t require visa sponsorship, now or in the future
May be subject to a government background check or security clearance, depending on the contract
 

Perks working with Nava

Health coverage — comprehensive medical, dental, and vision plans to support your overall health needs
Insurance coverage — Nava provides disability, life, and accidental death insurance at no cost
Time off — vacation, holidays (including Juneteenth), and floating holidays to rest and recharge
Company holidays — enjoy 12 paid federal holidays each year on top of your regular PTO
Annual bonus — when Nava meets its goals, eligible employees receive a performance-based annual bonus
Parental leave — paid time off for new parents, plus weekly meals delivered to your home
Wellness program — full platform offering physical, mental, & emotional health resources & support tools
Virtual care — see doctors online with no copay through UnitedHealthcare’s virtual visit program
Sabbatical leave — earn extended unpaid leave after continuous service for personal growth or rest
401(k) match — Nava matches 4% of your salary to support your retirement savings plan
Flexible work — remote-first environment with flexibility built around your schedule and responsibilities
Home office setup — company laptop & setup assistance provided via Staples for remote work needs
Utility support — monthly reimbursement to help offset eligible home office utility expenses
Learning opportunities — internal training programs and resources to help grow your professional skills
Development opportunities — LinkedIn Learning access & an annual allowance for courses, tuition, & certs 
Referral bonus — get rewarded when you refer great people who join the Nava team
Commuter benefits — pre-tax commuter programs to support in-office travel when applicable
Supportive culture — A collaborative and remote-friendly team environment where people genuinely care
 

Location

We have fully remote options if you reside in one of the following states: 
 
Alabama, Arizona, California, Colorado, DC, Delaware, Florida, Georgia, Illinois, Louisiana, Maine, Maryland, Massachusetts, Michigan, Minnesota, Missouri, Nevada, North Carolina, New Jersey, New York, Ohio, Oklahoma, Oregon, Pennsylvania, Rhode Island, South Carolina, Texas, Tennessee, Utah, Virginia, Washington, Wisconsin
 
*If you are not living in one of the states listed above, unfortunately, you will not be considered for a position at this time. 
 

Stay in touch

Sign up for our newsletter to find out about career opportunities, new partnerships, and news from the broader civic tech community.
 
Please contact the recruiting team at recruiting@navapbc.com if you would like to request reasonable accommodation during the application or interviewing process.  
 
We participate in E-Verify. Upon hire, we will provide the federal government with your Form I-9 information to confirm that you are authorized to work in the U.S. This role requires you to work from the contiguous United States. 
 

Equal Employment Opportunity

Nava is committed to providing equal employment opportunities without discrimination or harassment on the basis of race, gender and/or gender identity or expression, color, creed, religion, religious creed, age, national origin, ethnicity, disability, veteran or military status, sex, sexual orientation, reproductive health autonomy, pregnancy, childbirth, and medical conditions related to pregnancy or childbirth, genetic information, domestic violence victim status, marital status, citizenship status, or any other characteristic protected by law. Nava prohibits any such discrimination or harassment. This policy applies to all employees, applicants, contractors, and temporary workers of Nava.