CrawlJobs Logo
Piper Companies Logo Piper Companies · IT - Software Development

Azure Enclave Engineer

United States, Springfield Employment contract 170000.00 - 210000.00 USD / Year · Job Posted June 17, 2026
Apply Position
Job Link Share

Job Description

Zachary Piper Solutions is seeking an Azure Enclave Engineer to support a client in the government and defense technology sector by designing, securing, and maintaining highly controlled enclave environments. The Cloud/Systems Architect role is ideal for a senior infrastructure and security professional with deep experience in Azure, enclave architecture, and secure government or hybrid cloud environments. This position is located in Springfield, VA and is 100% on site.

Job Responsibility

  • Design and architect enclave infrastructure to meet strict security and operational requirements
  • Develop and maintain technical documentation, runbooks, SOPs, and security implementation guides for Tier 3 and Tier 2 teams
  • Implement and enforce security controls and best practices within enclave environments
  • Collaborate closely with networking, security, and compliance teams to enhance infrastructure security and resilience
  • Conduct infrastructure and security risk assessments and recommend architectural, configuration, and operational improvements
  • Provide strategic IT support and guidance for secure enclave operations
  • Develop Azure architecture diagrams and maintain infrastructure-as-code artifacts

Requirements

  • Active Top Secret clearance with SCI eligibility required
  • Bachelor’s or Master’s degree in Cybersecurity, Information Technology, or a related field (preferred)
  • 8+ years of experience in enclave architecture, security engineering, or IT infrastructure management
  • At least six months of hands-on experience managing production Azure services, including compute, networking, storage, and identity
  • Strong experience with Azure subscriptions, resource groups, and Azure Active Directory (Entra ID)
  • Understanding of networking fundamentals including TCP/IP, DNS, VPNs, and firewall configurations
  • Experience creating and managing virtual machines, containers, and Azure storage accounts
  • Proficiency in PowerShell scripting and familiarity with Azure CLI for resource management
  • 5+ years of technical writing experience supporting cloud-based or security-focused systems
  • Working knowledge of Azure Resource Manager, Bicep, and/or Terraform templates
  • Experience supporting hybrid or government cloud environments, including Azure Government and on-premises integrations
  • Strong understanding of cloud security principles such as IAM, network security, encryption, and Zero Trust architectures
  • Ability to clearly communicate complex security concepts to both technical teams and non-technical stakeholders, including leadership and auditors
  • Required certifications: CompTIA Security+ and AZ-104 (Microsoft Azure Administrator), or a higher-level Microsoft certification in lieu of AZ-104. Candidates not currently certified must obtain required certifications within six months of hire

What we offer

  • medical
  • dental
  • vision
  • 401(k)
  • PTO
  • paid holidays
  • sick leave as required by law
Piper Companies - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Azure Enclave Engineer

8 matching positions

Senior Cybersecurity Engineer

Senior Cybersecurity Engineer LOCATION: Eglin AFB, FL JOB STATUS: Full-time C...
Location
Location
United States , Eglin Air Force Base
Salary
Salary:
Not provided
astrion.us Logo
Astrion
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master’s Degree (in Computer Science, Cybersecurity or a related field). Relevant experience may be substituted for the degree
  • 10 Years’ total experience, at least 8 of which is in cybersecurity engineering, architecture or R&D infrastructure
  • Top Secret Clearance with SCI. Eligible for Special Access Program (SAP) access. US Citizenship is required
  • DoD 8570/8140 IAT Level III (CISSP, CISM, or equivalent). Certifications: Security+, CEH, or other relevant security certifications
  • Expert-level knowledge of cybersecurity principles, risk management, and secure computing architectures
  • Hands-on experience with security tools and technologies, such as SIEM, intrusion detection/prevention systems, vulnerability scanners, and endpoint protection solutions. Experience with Host-Based Security System (HBSS), Assured Compliance Assessment Solution (ACAS), Nessus, Tenable.sc, Tenable.io, NNM, LCE, Nessus Manager, Agents, and Scanner
  • Experience with scripting (Python, PowerShell) and automation tools (Ansible, Chef)
  • Familiarity with Risk Management Framework (RMF), Authority to Operate (ATO) documentation, and enclave compliance management
  • Physically able to lift up to 50 lbs
  • adaptable to fieldwork and hands-on installations
Job Responsibility
Job Responsibility
  • Collaborate with network engineers to architect secure network topologies for current and future connected and isolated environments, ensuring security is embedded in the design phase
  • Design and deploy security solutions for S&T environments that support continuous research, development, and DevSecOps, working closely with network engineers to implement and maintain these solutions
  • Advise on security planning for long-term initiatives, including SDREN integration and the Weapons Technology Integration Center (WTIC) and other facility projects, in conjunction with network planning efforts
  • Develop security innovation roadmaps aligned with mission goals and emerging technologies, coordinating with network engineers to ensure alignment with network modernization efforts
  • Coordinate with facilities, engineering, and network teams to ensure robust infrastructure supports secure research operations, focusing on the security aspects of network hardware/power/cooling needs and structured cabling
  • Lead security aspects of containerization, virtualization, and orchestration of systems to support laboratory computing, HPC, and edge devices, working with network engineers to implement secure configurations
  • Engineer multiple S&T networks security architecture in compliance with NIST 800-series, DoD RMF, DISA Security Technical Implementation Guides (STIGs), and cybersecurity best practices, collaborating with network engineers to ensure seamless integration. Review engineering, architecture, and designs to ensure DoD security policies are met
  • Implement DevSecOps pipelines to automate security scans and CI/CD deployments, working with network engineers to integrate security into existing pipelines
  • Manage ATO package development and collaborate with ISSMs, network engineers, and cybersecurity stakeholders to ensure compliance. Review and develop RMF Assessment and Authorization (A&A) documentation, e.g. System Security Plans (SSPs), Security Assessment Reports (SARs), and Plans of Action and Milestones (POA&Ms)
  • Integrate identity management and single sign-on solutions across enclaves and hybrid environments, coordinating with network engineers to implement and maintain these solutions. Analyze and tune HBSS policies for assets during integration test events. Perform verification and troubleshooting across all HBSS modules. Install updates to HBSS software as released and in compliance with STIG requirements. Monitor HBSS software to ensure that the clients/servers are operational and reporting properly
What we offer
What we offer
  • Competitive salaries
  • Continuing education assistance
  • Professional development
  • Multiple healthcare benefits package options
  • 401K with employer matching
  • Competitive time off policy along with a federally recognized holiday schedule
  • Fulltime
Read More
Arrow Right

Enterprise Identity Architect

We are seeking an Enterprise Identity Architect with deep, hands-on expertise in...
Location
Location
United Kingdom , Multiple Locations
Salary
Salary:
Not provided
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven record of accomplishment leading largescale IAM transformations in the Defence Sector with mixed classification environments (OFFICIAL, OFFICIALSENSITIVE, SECRET)
  • Deep expertise with Microsoft Entra ID (Azure AD), Entra Connect/Cloud Sync, MIM/Entra ID Governance, Conditional Access, PIM, tenant to tenant and hybrid patterns
  • Active Directory (multi‑forest consolidation, trusts, tiered admin, admin forests), DNS/PKI (enterprise and offline PKI, CRL/OCSP, HSMs FIPS 140‑2/3)
  • PIM , PAW and PAM
  • MFA/password less (FIDO2, smartcards, CAC/PIVstyle credentials), credential hygiene, Kerberos/NTLM deprecation strategies
  • Zero Trust identity controls, RBAC/ABAC, and policy as code approaches
  • Aligning all Zero Trust / Master identity to Enterprise Service Model
  • Demonstrable success unravelling complex identity estates (e.g., multiple AD forests, conflicting schemas, brittle sync, overlapping personas) and delivering a master identity model with clean source of truth and lifecycle automation
  • Experience defining cross domain identity patterns for air gapped or highside environments, including guardmediated flows, brokers, one way trust, and offline credential issuance
  • Strong documentation: HLD/LLD, architecture decision records, control mappings (JSP/ASP/NCSC), test plans, migration & decommission plans
Job Responsibility
Job Responsibility
  • Enterprise Identity Architecture: Define and own end to end IAM reference architectures for OFFICIAL and SECRET domains, including enclave segregation, trust models, and boundary controls
  • Design authoritative identity sources and golden record schemas (HR, ERP, clearance systems), lifecycle policies (joiner/mover/leaver), and attribute governance
  • Specify RBAC/ABAC models, entitlement catalogues, role mining, separation of duties (SoD) and privileged access patterns (PAW tiers, admin forest, bastion models)
  • Technical Strategy & Delivery: Lead consolidation/modernisation across Microsoft Entra ID (Azure AD), on Prem AD, MIM/Entra ID Governance, and third-party IGA (SailPoint/Saviynt)
  • Architect MFA/password less (FIDO2/YubiKey, smartcard/PIV equivalents), Conditional Access, risk based access, device trust, PIM and PAM (CyberArk/Beyond Trust)
  • Own identity integration for critical apps (cloud, on Prem, legacy, air gapped) and cross domain access patterns via controlled brokers/guards
  • Security, Compliance & Defence Governance: Map designs and evidence to ASP 240 and applicable JSP guidelines (e.g., JSP 440 Security, JSP 604 Information/IA policies or successors), NCSC guidance, ISO/IEC 27001, and Zero Trust principles
  • Produce and maintain HLD/LLD, Control Matrices, Risk/Threat Models (STRIDE/ATT&CK), Security Cases, Transition Plans, and Operational Runbooks
  • Support audits, Design Reviews, IAO/SIRO approvals, security testing, and accreditation evidence
  • Change & Stakeholder Leadership: Run workshops to untangle legacy identity estates, discover shadow entitlements, and align business/mission owners to a single operating model
  • Fulltime
Read More
Arrow Right

Principal Cybersecurity & Microsoft Security Platform Technology Consultant

We are looking for a Principal Cybersecurity & Microsoft Security Platform Techn...
Location
Location
United States , Annapolis Junction
Salary
Salary:
122500.00 - 214600.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's Degree in Computer Science, Engineering, Finance, Business, or related field AND 6+ years leadership experience in relevant area of business OR equivalent experience
  • Active U.S. Government Top Secret Clearance with access to Sensitive Compartmented Information (SCI) based on a Single Scope Background Investigation (SSBI) with Polygraph
  • Verification of U.S. citizenship
  • Pass Microsoft Cloud background check upon hire/transfer and every two years thereafter
  • Experience aligning Microsoft security capabilities to federal cybersecurity compliance and risk management requirements such as NIST 800‑53, RMF, Zero Trust Architecture (ZTA), Executive Order 14028, or agency‑specific ATO processes
  • Experience supporting security architecture design, control implementation, or assessment activities contributing to system Authorization to Operate (ATO)
  • Relevant Microsoft security certifications (e.g., SC‑100, SC‑200, SC‑300, AZ‑500) or equivalent industry certifications (e.g., CISSP, CCSP, GIAC) are desirable
  • 12+ years leadership experience in relevant area of business
  • Delivery Management certification (e.g., Scrum, Agile, Change Management, Project Management)
Job Responsibility
Job Responsibility
  • Lead customer‑facing technical engagements translating mission or compliance requirements into secure Microsoft platform architectures
  • Provide technical leadership across multi‑domain security solution deployments spanning identity, endpoint, cloud, data, and security operations
  • Influence security design decisions at the enterprise and enclave level through architecture reviews, threat modeling, and risk‑based tradeoff discussions
  • Integrate Microsoft security services into hybrid or multi‑cloud mission environments
  • Mentor consultants and contribute to reusable delivery intellectual property (IP), accelerators, or reference architectures within the Microsoft Security consulting community
  • Desired experience includes hands‑on delivery or architectural leadership in one or more of the following Microsoft security solution domains: Identity & Access Security
  • Endpoint & Device Security
  • Threat Protection & SOC Modernization
  • Cloud Security & Workload Protection
  • Information Protection & Data Security
  • Fulltime
Read More
Arrow Right

Cloud Developer – Senior

Amentum is searching for a Top-Secret cleared Cloud Developer to join our team i...
Location
Location
United States , Washington
Salary
Salary:
170000.00 - 185000.00 USD / Year
amentum.com Logo
Amentum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active Top-Secret clearance with SCI eligibility
  • Bachelor's degree in Information Systems Engineering, Computer Science, Engineering, Business or other related field (or additional years of experience in absence of degree)
  • Minimum of 10 years of relevant experience
  • Minimum of 7 years of experience with major cloud service providers (i.e.: Amazon, Microsoft, Oracle, IBM, or Google)
  • Minimum of 7 years of experience performing significant research and development efforts or managing programs requiring comprehensive and innovative technical solutions, development and deployment activities on a private/public cloud solution or a comparable high availability environment
  • Minimum of 7 years of experience deploying and managing infrastructure as code (IaC) using tools such as Terraform, CloudFormation, and/or Azure ARMs Templates
  • Minimum of 7 years of experience implementing and maintaining security best practices for cloud environments
  • Minimum of 7 years of experience creating and maintaining comprehensive documentation for cloud architecture, configurations, and processes
  • Minimum of 7 years of experience establishing and maintaining monitoring and alerting systems for cloud resources
  • Minimum of 7 years of experience optimizing cloud infrastructure for cost efficiency and performance
Job Responsibility
Job Responsibility
  • Lead large-scale data analysis projects to designs and deliver on premises and cloud-based applications
  • Plan and lead the design and development of cloud architecture across multiple enclaves
  • Implement automation for cloud resources using DevSecOps best practices
  • Support architecting the migration of applications to the cloud and adoption of cloud capabilities by applying cloud knowledge
  • Develop the cloud service delivery models and architectural framework to enable platform as a service (PaaS), infrastructure as a service (IaaS), software as a service (SaaS), and data as a service (DaaS)
  • Analyze applications and make recommendations across multiple areas that identify what platforms can move, migrate, and/or be deployed into a cloud environment
  • Provide strategies for failure/recovery, cost optimization and benefit analyses of cloud, cloud agnostic, and on-site premise services
  • Develop and implement cloud applications, migrate existing on-premises applications to the cloud, debug cloud stacks, manage policies for the use of cloud services, requests for new technology, establish a secure cloud environment, ensuring appropriate availability/uptime design
  • Work independently designing and developing new software products or major enhancements to existing cloud software
  • Possess and apply knowledge on multiple work assignments
What we offer
What we offer
  • Health, dental, and vision insurance
  • Paid time off and holidays
  • Retirement benefits (including 401(k) matching)
  • Educational reimbursement
  • Parental leave
  • Employee stock purchase plan
  • Tax-saving options
  • Disability and life insurance
  • Pet insurance
  • Fulltime
Read More
Arrow Right

Cloud Solution Architect - Infrastructure and Cross Solutions

The Defense Industrial Base (DIB) Operating Unit (OU) is a newly formed team wit...
Location
Location
United States , St. Louis
Salary
Salary:
106400.00 - 203600.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's Degree in Computer Science, Information Technology, Engineering, Business, Liberal Arts, or related field AND 4+ years experience in cloud/infrastructure technologies, information technology (IT) consulting/support, systems administration, network operations, software development/support, technology solutions, practice development, architecture, and/or consulting OR equivalent experience
  • Active U.S. Government Top Secret security Clearance
  • U.S. citizenship
  • Must pass Microsoft Cloud background check upon hire/transfer and every two years thereafter
  • 4+ years experience working in a customer‑facing role
  • 4+ years experience working on technical projects
  • Technical certification in Cloud technologies
Job Responsibility
Job Responsibility
  • Operates with disciplined operational excellence across all sales and delivery stages
  • Leads the technical delivery and orchestration of Azure services—including compute, networking, storage, hybrid cloud, and Azure Government capabilities
  • Proactively identifies and mitigates business, technical, and cybersecurity risks
  • Aligns technical engagements to measurable mission and business outcomes such as legacy modernization, secure migration strategies, and operational readiness
  • Proactively identifies and drives Azure Consumption, Unified Azure ES Offers, MACC agreements, and Azure Consumption Plans across accounts
  • Identifies, escalates, and removes blockers to accelerate deployment, consumption, and value realization
  • Acts as a trusted advisor and the voice of the customer
  • Partners closely with customer technical and business leaders—including CIOs, CISOs, and mission owners
  • Facilitates technical workshops, planning sessions, and solution assessments
  • Works cross‑functionally with account teams, engineering, and support organizations
  • Fulltime
Read More
Arrow Right

Senior Cloud Solution Architect - Apps

Join Microsoft’s US Public Sector Industries DIB Team—where mission meets innova...
Location
Location
United States , St. Louis
Salary
Salary:
106400.00 - 203600.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s Degree in Computer Science, Information Technology, Engineering, Business, Liberal Arts, or a related field AND 4+ years of experience in cloud or infrastructure technologies, IT consulting or support, systems administration, network operations, software development or support, technology solutions, architecture, or consulting OR equivalent experience
  • Active U.S. Government Top Secret Security Clearance
  • U.S. citizenship
  • Ability to work on site in St. Louis, MO
  • Deep understanding of Azure Application services, including Azure AI Gateway, Azure AI Foundry, Azure Kubernetes Service (AKS), and GitHub Copilot
  • Support Azure Government, Secret, and Top Secret and FedRAMP High environments with deep technical guidance on compliance, resiliency, and Zero Trust architectures
  • Understanding of FedRAMP, ITAR, DFARS, and Zero Trust architectures for Azure Gov and Secret environments
  • Knowledge in Azure secure enclaves and MS-ISR, specifically application and data architecture, RMF/ATO awareness, IL6 aligned data and application patterns, and secure data movement (batch ingestion, controlled transfer models)
  • App Platform Expertise: Proficiency in Azure App modernization, Logic Apps, containerization patterns, API-based integration, DevSecOps pipelines, CI/CD under disconnected or semi-connected conditions, and integration with M365 workloads
  • Demonstrated technical depth in Azure application services, including Azure Functions, Logic Apps, Power Platform, and AI integration
Job Responsibility
Job Responsibility
  • Architect and deliver agentic AI applications and secure DevOps pipelines tailored to DIB mission platforms, systems integrators, and digital-native defense startups
  • Lead technical engagements that accelerate secure, AI-powered transformation across mission-critical Defense workloads in an Air-gapped Cloud environment
  • Collaborate with engineering, delivery, and account teams to modernize platforms and applications in enclave-based deployments and drive innovation aligned to national security priorities
  • Translate mission workloads (Apps & Data) into deployable architectures, supporting secure data platforms, app hosting patterns, and DevSecOps pipelines
  • Deliver deep technical expertise in Azure application modernization and agentic AI, drive usage excellence across mission workloads, and accelerate adoption of Microsoft’s cloud and AI platforms within classified, sovereign, and disconnected environments
  • Fulltime
Read More
Arrow Right

Senior Security Engineer

The Microsoft Offensive Research & Security Engineering (MORSE) team is looking ...
Location
Location
United States , Redmond
Salary
Salary:
119800.00 - 234700.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master's Degree in Statistics, Mathematics, Computer Science, or related field AND 3+ years experience in security or related field OR Bachelor's Degree in Statistics, Mathematics, Computer Science, or related field AND 4+ years experience in security or related field OR equivalent experience
  • 5+ years of experience in a software engineering or security-related field
  • 3+ years identifying vulnerabilities in operating systems and/or native (C/C++) applications
  • Experience exploiting bugs and bypassing security mitigations in operating systems
  • Familiarity with Microsoft Windows architecture
  • Experience with confidential computing technologies and concepts (e.g., Intel SGX/TDX, AMD SEV-SNP, ARM CCA, enclaves, vTPM), and the security properties/limitations of TEEs
  • Public track record of relevant security research, especially around vulnerability discovery
Job Responsibility
Job Responsibility
  • Lead and participate in security reviews to identify and mitigate risk in Microsoft products, including design reviews, code reviews, and fuzzing
  • Be the primary security contact for teams building new innovative products and technologies in the next version of Windows, Azure (including confidential computing), and virtualization technologies
  • Identify security vulnerabilities in a wide variety of key OS features and virtualization technologies
  • Help design, review, and harden Azure confidential computing platforms (e.g., trusted execution environments, isolation boundaries, and attestation flows), including identifying and mitigating risks from virtualization escapes, supply-chain threats, and side-channel attacks
  • Collaborate with other security teams across Microsoft to design and develop new security mitigations and defenses, with a focus on strategy and scalability
  • Interact with the external security community and security researchers
  • Collaborate with product teams to improve security, and articulate the business value of security investments
  • Fulltime
Read More
Arrow Right

Principal Software Engineer - Data Processing Unit - Security

Microsoft Silicon, Cloud Hardware, and Infrastructure Engineering (SCHIE) is the...
Location
Location
United States , Santa Clara
Salary
Salary:
139900.00 - 274800.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Science or related technical field and 6+ years technical experience coding in languages including, but not limited to, C, C++, Python, and JavaScript
  • Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include but are not limited to the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud Background Check upon hire/transfer and every two years thereafter.
Job Responsibility
Job Responsibility
  • Design and Implement cryptographically secure flows for boot, certification, attestation and manufacturing
  • Participate in the transition from classical cryptography to emerging Post-Quantum Cryptography algorithms
  • Drive evolution of the design and architecture of the DPU’s Secure Enclave, for both boot and runtime services
  • Collaborate with other engineers ensure the successful execution of projects, to seamlessly integrate the DPU in the Azure ecosystem. Identify and promote opportunities for design and/or improvements to enhance technical designs, efficiency and productivity within the team
  • Fulltime
Read More
Arrow Right