Security Infrastructure Support Security Architect

Type Of Requisition:

Regular

Clearance Level Must Currently Possess:

None

Clearance Level Must Be Able to Obtain:

None

Public Trust/Other Required:

MBI (T2)

Job Family:

Cyber and IT Risk Management

Job Qualifications:

Skills:

Cybersecurity, Enterprise Information Systems, SIEM Tools, Virtualization Technologies

Certifications:

None

Experience:

10 + years of related experience

Us Citizenship Required:

Yes

Job Description:

General Dynamics Information Technology (GDIT) is seeking an experienced and knowledgeable Security Infrastructure Support Security Architect to support one of our federal customers on an enterprise cyber program in the DC metropolitan area. This hybrid position offers a combination of remote work and periodic on-site support and customer meetings. The ideal candidate will have extensive experience in architecting, designing, and supporting complex Enterprise IT systems with a strong focus on cybersecurity.

We are looking for an experienced and dynamic Security Infrastructure Support Security Architect professional to join our team. This individual will have 10-15 years of experience working in cloud-based environments, specifically in support of federal systems, and will play a critical role in ensuring the security of cloud-based programs. The ideal candidate will possess deep knowledge of NIST 800-53 Rev5 and will be instrumental in ensuring that security is integrated into the design and architecture of new systems and products from the beginning.

The Security Infrastructure Support Security Architect will collaborate with architecture teams to help design and implement secure systems to ensure compliance with federal regulations. This role requires an individual who can effectively communicate complex security requirements to both technical and non-technical stakeholders and establish processes that embed security into all phases of the System Development Lifecycle.

HOW the Cybersecurity Architect WILL MAKE AN IMPACT

• Architect, design, install, maintain, and support complex Enterprise IT systems to ensure robust security infrastructures.
• Implement and administer cybersecurity tools and Security Information and Event Management (SIEM) platforms.
• Oversee and manage a hybrid infrastructure environment with both on-premises and cloud components.
• Communicate complex security concepts effectively to both technical and non-technical stakeholders, as well as provide executive-level reporting.
• Apply deep knowledge of cloud security concepts, services, best practices, and operations (AWS, Azure, O365), including migration, security hardening, and cost optimization.
• Utilize core virtualization technologies and best practices for secure, efficient infrastructure management.
• Incorporate DevSecOps practices into the development, testing, and deployment processes to enhance security operations.
• Develop and automate scripts, particularly in Python, for process and tool optimization.
• Manage a variety of enterprise cybersecurity tools across a hybrid environment.
• Ensure compliance with federal cybersecurity frameworks (FISMA, NIST 800-53, NIST 800-92, OMB M-21-31, CDM).
• Manage infrastructure, including Windows/Linux servers, patching, vulnerability remediation, network appliances, and endpoint security.
• Identify and address complex security issues and develop robust solutions.
• Apply knowledge of Risk Management, Data Protection, and Access methods to select appropriate security controls for solutions.
• Collaborate with third-party vendors, cross-functional teams, and mentor team members to enhance security practices.

Security Architecture Support:

• Assist in designing and implementing secure cloud-based architectures that meet NIST 800-53 rev5 requirements for federal systems.
• Provide expert guidance on how to integrate security controls, standards, and best practices into cloud architecture from the initial design phase through deployment and ongoing operations.
• Collaboration with Architecture Teams:
• Work closely with architecture teams to ensure that security considerations are incorporated into all phases of system development, including planning, design, and implementation.
• Convey complex security concepts to architects, engineers, and other stakeholders, ensuring alignment with NIST 800-53 rev5 and other federal security requirements.

Process Development & Improvement:

• Help establish and refine processes that ensure security architecture is considered at the start of all new products and system designs.
• Develop, document, and promote security frameworks, best practices, and guidelines for cloud security, particularly for federal programs.

Cloud Security Guidance:

• Provide expertise in securing cloud-based environments (AWS, Azure, GCP) to meet federal security standards.
• Advise on specific security requirements for cloud-based systems, ensuring that federal compliance mandates are met and maintained throughout the system lifecycle.

Security Reviews & Risk Assessment:

• Assist in conducting security reviews and risk assessments to identify potential vulnerabilities and design gaps in new and existing cloud architectures.
• Collaborate with the cybersecurity team to prioritize and remediate any identified risks.

Documentation & Reporting:

• Develop and maintain detailed architecture documentation, including security requirements, risk mitigation strategies, and compliance assessments.
• Provide clear and comprehensive reports to leadership and stakeholders on the status of security architecture and risk management activities.

Continuous Improvement:

• Stay informed on the latest trends, threats, and best practices in cloud security and cybersecurity in general.
• Actively participate in the continuous improvement of security architecture processes, methodologies, and tools.

What You’Ll Need To Succeed:

Required Qualifications

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related field.
• 10+ years of experience in architecting, designing, installing, maintaining, and supporting complex Enterprise IT systems.
• 5+ years of experience at the Senior Engineer level or higher.
• 5+ years of specific experience with Cybersecurity tools or SIEM implementation and administration.
• Experience with a hybrid infrastructure (on-premises and cloud) environment.
• Strong verbal and written communication skills for explaining complex security concepts and executive-level reporting.
• Deep knowledge of cloud security concepts, services, best practices, and operations (AWS, Azure, O365), including migration, security hardening, and cost optimization.
• Understanding and experience with core virtualization technologies and best practices.
• Extensive experience with DevSecOps practices and incorporating security into the build, test, and deployment processes.
• Strong scripting skills in Python for automation and tool development.
• Experience managing enterprise cybersecurity tools, including SIEM platforms, across a hybrid environment.
• Hands-on experience with federal cybersecurity compliance frameworks (FISMA, NIST 800-53, NIST 800-92, OMB M-21-31, CDM).
• Proficiency in infrastructure management: Windows/Linux servers, patching, vulnerability remediation, network appliances, and endpoint security.
• Strong problem-solving and analytical abilities for identifying and addressing complex security issues and developing solutions.
• Strong understanding of Risk Management, Data Protection, and Access methods.
• Experience working with third-party vendors, cross-functional teams, and mentoring team members.
• Strong knowledge of NIST 800-53 rev5 and how to apply its controls to cloud-based environments.
• Demonstrated experience securing cloud-based systems in support of federal programs and compliance standards.
• Ability to develop and promote security processes, frameworks, and best practices across teams.

Preferred Qualifications

• Certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or other relevant cybersecurity or cloud security certifications.
• Familiarity with cloud-based infrastructure management practices and tools.
• Experience in federal cybersecurity compliance and regulatory standards.
• Strong leadership and decision-making skills.
• Familiarity with federal cybersecurity frameworks and compliance programs (FISMA, NIST, RMF).
• Experience with risk management processes and conducting risk assessments for federal systems.
• Experience with architecture design for large-scale, highly available, and secure cloud environments.

Gdit Is Your Place:

• 401K with company match
• Comprehensive health and wellness packages
• Internal mobility team dedicated to helping you own your career
• Professional scientific growth opportunities, including journal subscriptions, conference attendance, and supporting publication journey
• Cutting-edge technology you can learn from
• Rest and recharge with paid vacation and holidays

Join GDIT to lead and enhance security infrastructure support for an enterprise federal organization, ensuring robust protection and compliance across hybrid environments.

Apply today to bring your expertise to our dedicated team!

The likely salary range for this position is $119,000 - $161,000. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.

Scheduled Weekly Hours:

40

Travel Required:

None

Telecommuting Options:

Hybrid

Work Location:

USA MD Bethesda

Additional Work Locations:

Total Rewards At Gdit:

Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.Join our Talent Community to stay up to date on our career opportunities and events at

Gdit.Com/Tc.

Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans