Full Job Description
The Enterprise Cloud Security Architect will serve as a multicloud architecture SME across AWS, Azure, and GCP, providing design level leadership and guidance to engineering teams. Lead the interpretation and adoption of multicloud governance models, including AWS Control Tower, Azure Landing Zones, and GCP Organization Structures, to support secure and automated enterprise environments. Translate security strategies into cloud agnostic architectural patterns, standards, and reference architectures implemented across engineering teams. Contribute to shaping Booz Allen's enterprise cloud and cybersecurity capabilities by developing converged multicloud architectural approaches aligned with innovation, governance, risk management, and modernization goals.
Requirements
• MUST possess active TS/SCI clearance with the ability to obtain a counter-intelligence polygraph.
• 10+ years of experience in enterprise security architecture, cloud architecture, or cybersecurity engineering roles, utilizing cloud-native functionality as well as COTs, GOTS, and open-source tools to meet your objectives.
• Experience integrating cybersecurity tools and capabilities in an enterprise environment, modernizing cybersecurity capabilities by pushing functionality closer to the edge, closer to the workload, and operating in a distributed manner
• Knowledge of Infrastructure code concepts such as Terraform, CloudFormation, or Bicep to provide architectural guidance
• Knowledge of multicloud governance and automation such as AWS Control Tower, Azure Landing Zones, or GCP Org Policies
• Knowledge of multicloud networking models, including segmentation, routing, and hybrid connectivity
• Knowledge of Cloud security controls, compliance frameworks, and security telemetry ecosystems
• Knowledge of modern cybersecurity frameworks, including Zero Trust principles and secure by design methodologies
• Associate's degree and 5+ years of experience supporting IT projects and activities, Bachelor's degree and 3+ years of experience supporting IT projects and activities, or Master's degree and 1+ years of experience supporting IT projects and activities
• A DoD 8570 IAT Level III certification, as well as an IASAE Level II certification (SecurityX or CISSP fulfills both)
• Ability to obtain a DoD 8570 Cybersecurity Service Provider - Infrastructure Support Certification (CSSP-IS), including CEH, CySA+, GICSP, SSCP, CHFI, CFR, Cloud+, or CND Certification, within 30 days of start date
• Embraces emerging technologies, including AI tools, to work smarter, solve problems, and drive better business outcomes
Preferred Qualifications
• Experience producing enterprise architecture artifacts such as reference architectures, design patterns, standards, and decision records
• Experience with cloud modernization and multicloud strategy drivers such as innovation, portability, governance consolidation, and vendor variation
• Knowledge of cloud native security, identity, and platform capabilities across all three major cloud providers
• Ability to evaluate, guide, and improve architectural designs created by engineering and delivery teams and create and maintain realistic roadmaps of solution development and improvement activities
• Multicloud Certifications, such as AWS, Azure, or GCP Certifications
"Applicants selected will be subject to a security investigation and must meet eligibility requirements for access to classified information."
We use Greenhouse Software as our applicant tracking system and Zoom Scheduler for HR screen request scheduling. At times, your email may block our communication with you. Please be sure to check your SPAM folder so that you don't miss updates on your application.
Some added perks....
• Remote workforce primarily (U.S. based only, some travel may be required for certain positions, working on-site may be required for Federal positions)
• Group Medical Insurance options: Zero Deductible PPO Plan (GuidePoint pays 90% of the premium for employees and 70% for family plans (spouse/children/family) or High Deductible Health Plan with HSA (GuidePoint pays 100% of the employees premiums and 75% for family plans (spouse/children/family). If you choose the High Deductible / HSA plan, GPS will contribute in 4 equal quarterly installments: ($850 per EE annually / $1750 per family annually (includes spouse/children/family options)
• Group Dental Insurance: GuidePoint pays 100% of the premium for employees and 75% of family plans
• 12 corporate holidays and a Flexible Time Off (FTO) program
• Healthy mobile phone and home internet allowance
• Eligibility for retirement plan after 2 months at open enrollment
• Pet Benefit Option