Senior Security Engineer (Azure Security)

Position summary 

We are seeking a Senior Security Engineer to support the design and implementation of a secure Azure cloud environment for a large-scale government modernization effort. This role will focus on establishing strong security and compliance foundations, including identity and access management, monitoring, and policy enforcement across the tenant. The Security Engineer will partner closely with cloud architects, engineers, and client stakeholders to define and implement security best practices aligned with federal and state requirements.

What you'll do

• Design and implement identity and access management (IAM) models, including RBAC and privileged access controls
• Configure and advise on security tools such as Microsoft Defender for Cloud
• Define and enforce security policies and governance guardrails using Azure Policy
• Set up and guide centralized logging, monitoring, and threat detection capabilities
• Design key management and secrets handling solutions (e.g., Azure Key Vault)
• Support compliance efforts, including HIPAA alignment and ATO preparation activities
• Collaborate with teams to identify security risks and define remediation approaches
• Contribute to secure cloud architecture decisions, including networking and access patterns
• Support Infrastructure-as-Code (IaC) and CI/CD practices to ensure secure deployments
• Create security documentation, runbooks, and provide guidance to enable client teams to operate securely

Required skills

• Experience with Azure cloud security, including Microsoft Entra ID and Defender for Cloud  
• Strong knowledge of Identity and Access Management (IAM), including RBAC and privileged access controls  
• Familiarity with security and compliance frameworks (e.g., HIPAA, state security standards, ATO processes)  
• Experience implementing cloud security monitoring, logging, and incident detection