NMI is hiring a Senior Software Developer – Security & Cloud Engineering

Senior Software Developer – Security & Cloud Engineering Remote Who is Our Company? We are a dynamic technology solutions organization headquartered in the Pacific Northwest, with a nationwide presence. Our teams are united by a shared commitment to solving complex challenges. We leverage technology to bridge strategic execution, powered by diverse expertise and unique perspectives across multiple industries. Our approach is bold, intelligent, agile, and engaging. What Does Our Organization Do? We help businesses unlock potential by utilizing cutting-edge technology to generate additional revenue streams and develop innovative business opportunities. Our mission is connecting strategy, solutions, products, and services to transform and accelerate organizational growth. Why Join Our Team? We believe in possibility's transformative power and are passionate about bringing innovative ideas to life. Whether you join our product division, services team, or pursue career development, your impact potential is amplified. You'll solve unique business problems while gaining hands-on experience with premier technologies. We value diverse perspectives and build multifaceted teams with varied skillsets and backgrounds. In This Role You will function as a security-focused software engineer, developing automation, secure code patterns, and tooling to enhance cloud services' security posture. Your responsibilities include writing software, reviewing code, integrating security into CI/CD pipelines, analyzing risks, and collaborating with engineering teams to drive secure-by-default practices. This position demands robust development skills, profound Azure cloud security understanding, and the ability to translate complex security requirements into elegant, maintainable engineering solutions. You'll collaborate across multiple teams, balancing focused development with clear, proactive communication. Expect approximately 15% meetings and 75% hands-on secure engineering, automation, and problem-solving. Responsibilities Secure Software Development - Develop automation tools, scripts, and security utilities using Python, C#, PowerShell, or TypeScript - Implement secure design patterns into shared libraries and reusable modules - Conduct secure code reviews, ensuring adherence to best practices and industry standards - Build integrations for SAST/DAST tools, dependency scanning, and automated vulnerability reporting DevSecOps & CI/CD Integration - Embed security controls directly into Azure DevOps or GitHub Actions pipelines - Build CI/CD guardrails (policy checks, static scans, dynamic scans, IaC linting) - Maintain secure CI/CD configurations following Zero Trust and least-privilege principles Cloud Security Engineering - Develop and automate Azure security controls using PowerShell, Python, ARM/Bicep, Azure CLI - Implement Azure Policy & governance modules - Create guardrails for RBAC, Key Vault, networking controls, identity, secrets management - Support engineering teams in remediating vulnerabilities and misconfigurations Risk Analysis & Threat Modeling - Identify risks in applications, APIs, and cloud environments - Translate risk findings into actionable engineering tasks - Participate in secure architecture discussions and design reviews Collaboration & Communication - Work closely with engineering, compliance, and product teams to drive secure-by-default development - Clearly articulate technical risk to non-technical partners - Proactively communicate status, blockers, and progress Required Qualifications Software Development (8+ years) - Strong programming background using C#, Python, or TypeScript - Experience writing production-quality automation or tooling - Ability to perform code reviews and refactor insecure patterns - Experience with REST APIs, backend components, and cloud-native services DevSecOps & Cloud Security Automation (8+ years) - Hands-on engineering in Microsoft Azure - Experience with ARM/Bicep, Terraform, CI/CD automation, and secure pipeline design - Strong understanding of RBAC, identity, networking, and Azure security controls Security Risk & Compliance (5+ years) - Experience with NIST CSF, ISO 27001, or SOC 2 - Ability to document risks, track remediation, and perform threat modeling - Hands-on experience fixing vulnerabilities in code and pipelines Preferred Qualifications - CISSP, CSSLP, AZ-500, or similar certifications - Experience developing security tooling or custom scanners - Familiarity with Kusto (KQL) or Azure Data Explorer for security insights - Experience with policy-as-code and governance automation - Background in Power Platform or Identity security is a plus Salary Range Pay ranges vary based on multiple factors including skill sets, education, responsibilities, experience, and geographical market. The pay range for this position reflects geographic based ranges for Washington state: $120,000 to $135,000 USD/annually. Equal Opportunity Employer We are an equal employment opportunity employer. Qualified applicants are considered without regard to race, color, age, disability, sex, gender identity or expression, orientation, veteran/military status, religion, national origin, ancestry, marital, or familial status, genetic information, citizenship, or any other status protected by law. Benefits Package Includes: - Medical, dental, and vision coverage - Flexible Spending Account - 401k program - Competitive PTO offerings - Parental Leave - Opportunities for professional growth and development