Security Architect
United States
Full Time
5 days ago
$170,000 - $180,000 USD
No H1B
Key skills
AWSAzureCloudCyber SecurityGoogle Cloud PlatformSDLCGCPGoogle CloudIAMCommunicationPenetration TestingNetwork Security
About this role
Role Overview
- Architect secure cloud and hybrid solutions supporting DoD mission and data systems
- Develop, maintain, and own System Security Plans (SSPs) and all supporting RMF artifacts
- Lead all phases of the ATO process, from system categorization through continuous monitoring
- Apply and interpret CNSSI 1253 and NIST SP 800-53 controls across system and data environments
- Ensure security designs meet Impact Level 4+ cybersecurity requirements
- Conduct security risk assessments, gap analyses, and vulnerability remediation planning
- Collaborate with engineering, infrastructure, and compliance teams to enforce secure-by-design principles
- Manage security documentation, policies, procedures, and control evidence
- Support security audits, penetration testing coordination, and incident response planning
- Serve as a subject matter expert for data protection, encryption, and identity and access management (IAM)
- Employees in this role are responsible for safeguarding sensitive information and must adhere to all organizational security and privacy policies, ensuring the protection, proper handling, and confidentiality of data at all times.
Requirements
- U.S. Citizen
- Bachelor’s or master’s degree in Cybersecurity, Information Systems, or a related field
- Active Secret security clearance or the ability to obtain one
- 10+ years of cybersecurity architecture experience in federal or large enterprise environments
- Deep expertise in DoD Instructions (DoDI), CNSSI 1253, NIST SP 800-53, DoD CC SRG
- Proven experience implementing STIGs and developing ATO packages, including leading security authorization activities
- Strong knowledge of system hardening, network security, encryption protocols, and secure SDLC practices
- Experience securing cloud platforms such as AWS, Azure, and/or GCP in regulated environments
- One or more of the following certifications: CAP, CASP, CISM, CISSP GSLC
- Experience with DoD-specific security requirements and IT systems
- Strong written and verbal communication skills with the ability to produce audit-ready documentation
- Experience coordinating with ISSOs, ISSEs, and federal security teams
Tech Stack
- AWS
- Azure
- Cloud
- Cyber Security
- Google Cloud Platform
- SDLC
Benefits
- Health insurance
- Dental insurance
- Vision insurance
- Life Insurance
- 401(k) Retirement Plan with matching
- Paid Time Off
- Paid Federal Holidays