Lead Solutions, Security Architect
Employment Information
Report this job
Job expired or something wrong with this job?
Job Description
Lead Solutions & Security Architect overseeing the modernization and compliance architecture for Diné Source. Designing secure systems while leading risk management and Zero Trust implementation.
Responsibilities:
- Lead end-to-end technical architecture for the platform, including application, data, API, and integration layers across the IL5 cloud environment
- Define and refine system blueprints aligned with modular microservices, the Strangler Pattern, and Oracle-backed operational data store design to support consolidation of eight disparate legacy subsystems
- Drive Zero Trust Architecture implementation including Identity, Credential, and Access Management (ICAM), role-based access control, encryption, and network segmentation
- Guide Agile development teams on technical direction, enforce DevSecOps controls, and ensure alignment with containerized delivery in GitLab CI/CD pipelines
- Architect and oversee Azure cloud deployments, ensuring secure use of Azure services such as Azure Kubernetes Service (AKS), Azure API Management, Azure Monitor, Azure Key Vault, Azure Storage, and Azure Active Directory (AAD).
- Design secure, scalable, and compliant system architecture that meets the requirements for modernizing a system to serve 2.9 million end users
- Implement cloud-native enterprise architecture solutions specifically leveraging Microsoft Azure, including IL5-compatible services, Azure PaaS/SaaS capabilities, and Azure Government cloud offerings
- Develop long-term cybersecurity strategy, aligning with DoD Zero Trust roadmap and DFARS compliance
- Oversee RMF and FISMA compliance efforts including generation and review of the System Security Plan (SSP), Business Impact Analysis (BIA), Contingency Plan (ISCP), and POA&Ms
- Conduct architecture and security risk assessments, design mitigation strategies, and lead security reviews during sprint closeouts
- Interface with DFAS Cybersecurity teams, DISA, and system owners to support ATO submission and ongoing continuous monitoring
- Oversee vulnerability management across development and production environments using Fortify, WebInspect, ACAS, and other approved tools
- Collaborate with cross-functional teams including product owners, infrastructure teams, and application developers to validate architecture decisions that meet performance, scalability, and auditability requirements
- Ensure proper configuration and governance of Azure cloud resources, including network topology, identity management, cloud security baselines, and logging/monitoring through Azure-native tools
Requirements:
- Bachelor's degree in computer science, Information Systems, Cybersecurity, Engineering, or related technical field (Masters preferred)
- 9+ years of experience in enterprise solution design and architecture
- 5+ years of experience in cybersecurity leadership roles
- DoD-approved 8140/8570 CISSP/IA System Architecture & Engineering baseline cybersecurity certification
- Public Trust / IT II Security clearance eligibility
- Expert-level proficiency in cloud-native enterprise architecture, with experience in major cloud platforms (AWS, Azure, GCP)
- Hands-on experience architecting, deploying, and securing solutions in Microsoft Azure (Azure Government and/or DoD IL5 environments preferred)
- Advanced understanding of service-oriented design and microservices architecture
- Experience with containerization and cloud-agnostic deployment strategies
- Proficiency in infrastructure-as-code tools such as Terraform, including Azure Resource Manager (ARM) or Bicep templates as a plus.
- Advanced understanding of Zero Trust Architecture principles, maturity models, and implementation
- Expert knowledge of NIST SP 800-53, 800-207, 800-218, and Risk Management Framework (RMF)
- Experience with FedRAMP, FISMA, and DoD cybersecurity directives including DoDI 8510.01, 8570.01-M
- Working knowledge of ATO documentation, eMASS, audit logging, and system boundary definition
- Experience implementing Azure-specific security features including Azure Policy, Azure Security Center/Defender for Cloud, AAD Conditional Access, and Key Vault secrets management, MS Defender for cloud / Sentinel and PIM (Privileged Identity Management).
- Proficiency in architecture tools such as CAST Imaging
- Experience with CI/CD security integration using tools like Fortify and GitLab
- Familiarity with DevSecOps practices and automated security controls
- Understanding of API design and integration patterns
- Experience using Azure DevOps or GitLab runners deployed within Azure environments is a plus
- Familiarity with data architecture best practices and Oracle database systems
- Knowledge of SFIS/SLOA compliance requirements
- Experience with encryption at rest and in transit implementation
- Understanding of data retention policies per NARA requirements
- Experience designing data pipelines or data services within Azure (e.g., Azure SQL, Cosmos DB, Azure Data Factory) preferred
- Strong leadership abilities with experience guiding technical teams and architecture decisions
- Excellent communication skills for interfacing with government stakeholders, cybersecurity teams, and technical staff
- Ability to work effectively in fast-paced Agile environments while maintaining security and compliance standards
- Strong analytical and problem-solving skills for complex enterprise architecture challenges
- Adaptability to evolving security requirements and emerging technologies in government environments
- Professional certifications such as CCSP, AWS/Azure Solutions Architect, and DoD 8140/8570.01 IASAE Level II or CSSLP Infrastructure Support baseline certification
- Azure-specific certifications highly desirable (e.g., Azure Solutions Architect Expert, Azure Security Engineer Associate, Azure Administrator Associate).
- Azure security-related certifications highly desirable (e.g., Microsoft Certified Cybersecurity expert, Azure Security Engineer Associate)
- Experience with DFAS systems or DoD financial management environments
- Knowledge of government pay systems and financial regulations
- Experience with Strangler Pattern implementation for legacy system modernization
- Familiarity with Oracle database architecture and optimization
- Experience working with DISA, DFAS Cybersecurity teams, or similar government cybersecurity organizations
- Knowledge of continuous monitoring tools and vulnerability management in government environments
- Experience with GitLab CI/CD pipelines and automated security testing integration
- Understanding of federal audit requirements and compliance frameworks
- Experience leading ATO processes and security documentation development.
Benefits:
- Health insurance
- Retirement plans
- Paid time off
- Flexible work arrangements
- Professional development opportunities
Report this job
Job expired or something wrong with this job?
Similar Jobs
Senior Product Security Engineer
Product Security Engineer at Forterra developing secure autonomous systems and collaborating with cross-functional teams to identify and mitigate security vulnerabilities. Leading product security initiatives and conducting risk assessments.
Head of Product – Cybersecurity SaaS, GovCon, Compliance
Head of Product managing product vision and delivery for high-growth GovCon cybersecurity SaaS. Leading efforts to translate compliance requirements into user-friendly workflows with a focus on scalability.
Senior Director, Technology Alliances, ISV, Security Domain
Strategic leadership role responsible for managing ISV and Security partnerships at Veeam. Focused on driving mutual growth, innovation, and market success through technology alliances.
Associate Security Architect
Associate Security Architect managing critical network events for Akamai's clients. Identifying real-time cyber-attacks and strategizing mitigation while minimizing impact to end users.
Senior Manager – Cloud Security
Cloud Security Architect responsible for implementing secure multi-cloud architectures at financial institution. Collaborating with teams to establish governance and compliance frameworks in cloud security.
Cybersecurity Engineer
Cybersecurity Engineer at Thales focusing on vulnerability management and security awareness. Responsible for incident response, digital forensics, and collaborating with teams on security improvements.
Intern – API Security
Assist North America and EMEA API Security Field Growth Marketing teams with campaigns and events. Collaborate with internal stakeholders to enhance Akamai's presence in API Security market.
Cybersecurity GRC – Compliance Analyst
Cybersecurity Compliance Analyst ensuring adherence to security frameworks for Trimble. Collaborating with international cybersecurity team and assisting in compliance audits.
Senior ML Researcher, Applied Machine Learning – Security Clearance
Senior ML Researcher optimizing machine learning models at Trase Systems. Leading innovations in applied machine learning to solve complex business challenges.
Jobsite Safety and Security Manager
Jobsite Safety and Security Manager responsible for driving End User conversions throughout Northeast Region. Focusing on safety training and establishing networks within the industry.
Analista de Riesgos de Ciberseguridad, Bilingüe
Analista de Riesgos de Ciberseguridad Bilingüe mejorando la seguridad general de la organización. Evaluando, probando y documentando soluciones de seguridad en un contrato a término indefinido.
Life Safety & Security System Designer
Life Safety & Security System Designer for Securitas Technology developing comprehensive security solutions. Collaborating with internal teams to ensure compliance and support business growth across the UK.
Cybersecurity Associate Director – Energy Providers
Cybersecurity Associate Director designing secure architectures for energy providers. Requires deep expertise in regulatory frameworks and advanced data architecture within the electric utility industry.
Director of Information Security
Director of Information Security overseeing cybersecurity and risk management at RxVantage. Implementing controls and policies to protect data and ensure compliance across the organization.
Regional Sales Manager – Video Security and Access Control
Regional Sales Manager responsible for sales initiatives in video security solutions. Collaborating with channel partners to grow business in Alberta and surrounding territories.
Cyber Security Manager
Security Manager responsible for protecting systems and data integrity at Tuesday Health. Leading security governance and compliance efforts while collaborating with IT and engineering teams.
CyberSecurity Manager
CyberSecurity Manager leading application security and security operations teams at Addi. Focused on executing operational security and driving measurable risk reduction.
Chef de Projet, Sécurité
Project Manager responsible for leading security initiatives at nesto, a tech-driven mortgage company. Focusing on cybersecurity projects and stakeholder collaboration in a diverse team environment.
Product, Cyber Security Architect
Cybersecurity Architect responsible for designing secure architectures for Trimble's global systems. Collaborating with teams to enhance security posture against evolving threats in digital and physical operations.
Security and Compliance Lead
Security & Compliance Lead managing federal compliance frameworks for aerospace technology company. Overseeing government compliance programs and implementing technical security controls.