About Nava
Nava is a consultancy and public benefit corporation working to make government services simple and effective. Since 2015, federal, state, and local agencies have trusted Nava to help solve highly scrutinized technology modernization challenges.
As a client services company, we guide agencies constrained by legacy systems to a future with sharp user experiences built on secure, reliable, fault-tolerant cloud infrastructure. We bill for our time, offering our expertise and problem-solving approach to help our government partners enhance their digital products and services. People are at the heart of our work, from members of the public who rely on benefit programs to government agency staff. Through human-centered design and modern engineering best practices, we help our government partners understand user needs and deliver on their missions more effectively. This focus gives everyone at Nava the opportunity to do work that is meaningful, impactful, and deeply connected to public good.
Position summary
The Sr./Principal Security Engineer (Federal Programs) is a hands-on security leader at the heart of delivering secure, mission-critical systems for the federal government. In this role, you’ll design, implement, and evolve a robust information security program that protects sensitive data, enables fast and reliable delivery, and stands up to the highest federal standards.
You’ll own security and compliance for cloud-native platforms—primarily on AWS—guiding teams through complex requirements like FISMA and NIST while making smart, pragmatic tradeoffs that keep delivery moving.
Working side-by-side with engineering, operations, compliance, and executive leadership, you’ll embed security into how systems are designed, built, and operated—not bolted on after the fact. The ideal candidate is a security expert who thrives in modern DevSecOps environments, understands government risk and compliance deeply, and is motivated by real-world impact—protecting systems that millions of people depend on every day.
