Senior Cloud Engineer - Azure with TS/SCI

Maania Consultancy Services•Fort Belvoir, VA

11d

About The Position

Design, implement, and secure Azure-based cloud architectures in alignment with DoD mission objectives and cybersecurity standards. Lead configuration, deployment, and management of Microsoft Entra ID / Azure AD for centralized identity, single sign-on (SSO), and role-based access control (RBAC) across Azure tenants and subscriptions. Integrate federated identity solutions with AWS Identity Center, Okta, or on-premises Active Directory. Develop and enforce Azure governance frameworks, including Azure Policy, Management Groups, and Blueprints, ensuring alignment with DoD Zero Trust and least-privilege principles. Architect and secure hybrid connectivity across Azure, AWS, and DoD on-premises networks, ensuring consistent identity and access management acrossclouds. Collaborate with cybersecurity teams to ensure solutions comply with DISA STIGs, DoD Cloud Computing SRG, FedRAMP High, and NIST 800-53 controls. Implement and manage Infrastructure as Code (IaC) solutions using Bicep, Terraform, or Azure Resource Manager (ARM) templates.

Requirements

BS degree and 12+ years of prior relevant experience or a Masters degree with 10+ years of prior relevant experience, additional years of experience may be considered in lieu of a degree.
5+ years of experience designing and implementing secure Azure-based solutions in enterprise or government environments.
Proven expertise in Microsoft Entra ID / Azure AD, Azure RBAC, and Conditional Access.
Experience with multi-cloud identity integration (Azure + AWS or GCP).
Strong understanding of federated identity, SAML/OIDC protocols, and cross- cloud authentication mechanisms.
Familiarity with Azure Government (DoD), FedRAMP, and DISA STIG compliance frameworks.
Hands-on experience with Terraform, Bicep, Azure CLI, and CI/CD automation.
Must be able to present designs and plans to technical leadership personnel and boards for approvals.
Active Microsoft Certified: Azure Solutions Architect Expert certification (or equivalent).
DoD 8570 IAT Level II certification.

Responsibilities

Design, implement, and secure Azure-based cloud architectures in alignment with DoD mission objectives and cybersecurity standards.
Lead configuration, deployment, and management of Microsoft Entra ID / Azure AD for centralized identity, single sign-on (SSO), and role-based access control (RBAC) across Azure tenants and subscriptions.
Integrate federated identity solutions with AWS Identity Center, Okta, or on-premises Active Directory.
Develop and enforce Azure governance frameworks, including Azure Policy, Management Groups, and Blueprints, ensuring alignment with DoD Zero Trust and least-privilege principles.
Architect and secure hybrid connectivity across Azure, AWS, and DoD on-premises networks, ensuring consistent identity and access management acrossclouds.
Collaborate with cybersecurity teams to ensure solutions comply with DISA STIGs, DoD Cloud Computing SRG, FedRAMP High, and NIST 800-53 controls.
Implement and manage Infrastructure as Code (IaC) solutions using Bicep, Terraform, or Azure Resource Manager (ARM) templates.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume