Your responsibilitiesJob SummaryThe Security Architect is a technical leader responsible for designing, implementing, and advancing enterprise security across cloud, application, and infrastructure environments, with a primary focus on Microsoft GCC-High and Microsoft Commercial platforms. This role partners closely with IT, Engineering, Compliance, and business leaders to embed security-by-design, strengthen CMMC and ITAR compliance, and enhance security operations and risk management capabilities.
This position requires access to export-controlled technical data or technology. Employment is contingent upon the Company's ability to obtain any required export authorization.
Job DescriptionKey Accountabilities:- Design and govern secure architectures across cloud, identity, applications, and data platforms.
- Lead application security initiatives including assessments, threat modeling, secure SDLC practices, and vulnerability remediation.
- Support CMMC 2.0 Level 2+ readiness, including NIST 800 171/172 control implementation, SSP/POA&M management, and audit support.
- Architect and operate security capabilities within Microsoft GCC High and Azure Government, including Defender, Sentinel, Purview, and Entra ID.
- Provide senior level guidance during security incidents, investigations, and post incident remediation.
- Translate regulatory and business requirements into scalable security roadmaps and standards.
- Serve as a trusted advisor to engineering, IT, and leadership teams, mentor security professionals.
- Meets TKMNA Employee Attributes / Competencies
The above is intended to describe the general content of and requirement for the performance of this job. It is not to be construed as an exhaustive statement of duties, responsibilities or requirements.
Qualifications:Minimum Requirements :
- Bachelor's degree or equivalent professional experience required, Master's degree preferred.
- 7+ years of experience in information security, including hands-on security architecture or application security experience.
- Strong experience securing Microsoft 365 GCC-High and Azure Government environments.
- Demonstrated expertise with cloud security, identity and access management, application security, and incident response.
- Experience supporting regulated environments (CMMC, ITAR, DFARS, or similar).
Certifications
- All relevant security and cloud certifications preferred, including CISSP, CCSP, CISM, GIAC, and Microsoft security certifications.
Skills
- Cloud & Identity: Azure Gov, M365 GCC-High, Entra ID, Zero Trust, Conditional Access, MFA, PIM
- Application Security: Threat modeling, SAST/DAST/SCA, API and container security
- Monitoring & Response: Microsoft Sentinel, Defender XDR, automation and incident response
- Compliance: CMMC 2.0, NIST 800-171/172, ITAR, risk management
Benefits OverviewWe offer competitive company benefits to eligible positions, such as :
- Medical, Dental, Vision Insurance
- Life Insurance and Disability
- Voluntary Wellness Programs
- 401(k) and RRSP programs with Company Match
- Paid Vacation and Holidays
- Tuition Reimbursement
- And more!
Benefits may vary based on job, country, union role, and/or company segment. Please work with your recruiter or tk representative for applicable benefits information.
