Key skills
AzureCloudCyber SecurityKubernetesOracleVaultAKSAzure MonitorActive DirectoryIdentity ManagementLeadershipRisk ManagementRemote WorkZero Trust
About this role
Role Overview
- Drive Zero Trust Architecture implementation including Identity, Credential, and Access Management (ICAM), role-based access control, encryption, and network segmentation
- Advises technical architecture for the modernization platform, including application, Oracle databases, and integration layers across the IL5 cloud environment
- Architect and oversee cybersecurity implementations of Azure cloud deployments, ensuring secure use of Azure services such as Azure Kubernetes Service (AKS), Azure API Management, Azure Monitor, Azure Key Vault, Azure Storage, and Azure Active Directory (AAD).
- Develop long-term cybersecurity strategy, aligning with DoD Zero Trust roadmap and DFARS compliance
- Oversee RMF and FISMA compliance efforts including generation and review of the System Security Plan (SSP), Business Impact Analysis (BIA), Contingency Plan (ISCP), and POA&Ms
- Conduct architecture and security risk assessments, design mitigation strategies, and lead security reviews during sprint closeouts
- Interface with the Government Cybersecurity teams, DISA, and system owners to support ATO submission and ongoing continuous monitoring
- Oversee vulnerability management across development and production environments using Fortify, WebInspect, ACAS, and other approved tools
Requirements
- Bachelor's degree in computer science, Information Systems, Cybersecurity, Engineering, or related technical field (Masters preferred)
- 5+ years of experience in cybersecurity leadership roles
- DoD-approved 8140/8570 CISSP
- Public Trust / IT II Security clearance eligibility
- Advanced understanding of Zero Trust Architecture principles, maturity models, and implementation
- Expert knowledge of NIST SP 800-53, 800-207, 800-218, and Risk Management Framework (RMF)
- Experience with FedRAMP, FISMA, and DoD cybersecurity directives including DoDI 8510.01, 8570.01-M
- Working knowledge of ATO documentation, eMASS, audit logging, and system boundary definition
- Experience implementing Azure-specific security features including Azure Policy, Azure Security Center/Defender for Cloud, AAD Conditional Access, and Key Vault secrets management, MS Defender for cloud / Sentinel and PIM (Privileged Identity Management).
Tech Stack
- Azure
- Cloud
- Cyber Security
- Kubernetes
- Oracle
- Vault
Benefits
- Health insurance
- 401(k) matching
- Flexible work hours
- Paid time off
- Remote work options