SteerBridge Strategies is a modern technology company delivering innovative missionfocused solutions to the U.S. Government and private sector. Leveraging deep expertise in federal acquisition digital transformation and emerging technologies we deliver agile commercialgrade capabilities that accelerate operational effectiveness and drive measurable mission success.
At the core of SteerBridge is our peopleespecially the veterans whose leadership problemsolving mindset and commitment to excellence elevate every project we support. We dont simply hire exceptional talent; we cultivate it creating meaningful career pathways for veterans military spouses and professionals who share our passion for advancing technology and strengthening the missions we serve.
POSITION OVERVIEW
SteerBridge is seeking a Security Architect to define the security architecture and compliance strategy for a mission-critical Defense Aviation platform running in AWS GovCloud for federal customers. This role owns the security blueprintcontrols identity zero-trust access monitoring and authorization strategyfor environments supporting federal aviation operations.
The architect will work directly with solutions architects security and cloud engineers data teams and stakeholders to translate DoD security requirements into enforceable well-architected designs and to guide the platform toward and through authorization (ATO).
This role stays close to implementation. The ideal candidate sets security standards designs control frameworks reviews architectures and guides engineers in implementing defense-in-depth and zero-trust access.
This is a hybrid position based in Vienna VA.
Benefits
Health insurance
Dental insurance
Vision insurance
Life Insurance
401(k) Retirement Plan with matching
Paid Time Off
Paid Federal Holidays
Key Responsibilities
Security Architecture and Strategy
Define the security architecture for AWS GovCloud workloads spanning identity zero-trust access network segmentation encryption monitoring and data protection
Design and own the zero-trust access architecture leveraging Zscaler (ZTNA/SASE) to broker secure access to applications and infrastructure
Design defense-in-depth control frameworks aligned to DoD and DISA requirements
Produce security architecture documentation control mappings and decision records
Establish security standards and reference patterns for engineering teams
Compliance and Authorization
Lead security alignment with DoDI 8510 CNSSI 1253 STIGs DoD CC SRG and ATO and authorization processes.
Define control implementation and evidence strategies for audits and assessments
Assess and communicate security risk to technical and non-technical stakeholders
Guide POA&M development and remediation prioritization
Design Governance and Guidance
Review architectures and designs to ensure security is embedded from the outset
Set standards for least-privilege IAM zero-trust secure access (Zscaler/ZTNA) and hardened baselines
Guide engineers implementing security controls detection and response capabilities
Lead security and threat-model reviews
Collaboration and Leadership
Partner with cloud and solutions architects to ensure secure-by-design platforms
Advise leadership on security strategy posture and risk trade-offs
Mentor engineers and promote a strong security culture
Required Qualifications
U.S. Citizenship required (for clearance purposes)
Masters or PHD in Information Technology Cybersecurity Computer Science Information Systems Data Science or Software Engineering.
10 years of security experience including 3 years in a security architecture or lead role
Experience designing zero-trust architectures ideally with Zscaler or a comparable ZTNA or SASE platform
Deep expertise in cloud security architecture (AWS) identity and network segmentation
Strong command of security frameworks including DoDI 8510 CNSSI 1253 STIGs DoD CC SRG DISA STIGs
Experience guiding systems through ATO and authorization in DoD environments
Strong understanding of defense-in-depth zero-trust principles and least-privilege design
Ability to produce clear security architecture documentation and risk assessments
Experience leading security across multidisciplinary teams
Skill in determining how a security system should work (including its resilience and dependability capabilities) and how changes in conditions operations or the environment will affect these outcomes.
Skill in translating operational requirements into protection needs (i.e. security controls).
Skill in applying cybersecurity methods such as firewalls demilitarized zones and encryption.
Ability to apply network security architecture concepts including topology protocols components and principles (e.g. application of defense-in-depth).
Ability to apply an organizations goals and objectives to develop and maintain architecture.
One or more of the following:
Certified Information Security Manager (CISM) Certified Information Systems Security Professional (CISSP) Cisco Certified Network Professional (CCNP) Enterprise GIAC Certified Intrusion Analyst (GCIA) GIAC Defensible Security Architecture (GDSA) GIAC Global Industrial Cyber Security Professional (GICSP) Information Systems Security Architecture Professional (ISSAP) Information Systems Security Engineering Professional (ISSEP)
Preferred Qualifications
Extensive experience in AWS GovCloud or other federal or regulated environments
Deep experience architecting Zscaler or comparable ZTNA/SASE solutions and integrating them with identity and conditional access
Experience with continuous monitoring SIEM strategy and incident response programs
Experience with data security and protection of analytics and Medallion platforms
Senior certifications such as CCSP; or AWS Security Specialty
Experience supporting aviation defense logistics or fleet management systems
$170000 - $180000 a year
A salary commensurate with background and experience will be offered.
SteerBridge Strategies is proud to be an Equal Opportunity Employer.We are committed to creating a diverse and inclusive workplace where all qualified applicants and employees are treated with respect and dignityregardless of race color gender age religion national origin ancestry disability veteran status genetic information sexual orientation or any other characteristic protected by law.
We also provide reasonable accommodations for individuals with disabilities in accordance with applicable laws. If you require assistance during the application process we encourage you to reach out so we can support your needs.
If you would like information about how your application is processed please contact us.
Required Experience:
Staff IC
SteerBridge Strategies is a modern technology company delivering innovative missionfocused solutions to the U.S. Government and private sector. Leveraging deep expertise in federal acquisition digital transformation and emerging technologies we deliver agile commercialgrade capabilities that acceler...
SteerBridge Strategies is a modern technology company delivering innovative missionfocused solutions to the U.S. Government and private sector. Leveraging deep expertise in federal acquisition digital transformation and emerging technologies we deliver agile commercialgrade capabilities that accelerate operational effectiveness and drive measurable mission success.
At the core of SteerBridge is our peopleespecially the veterans whose leadership problemsolving mindset and commitment to excellence elevate every project we support. We dont simply hire exceptional talent; we cultivate it creating meaningful career pathways for veterans military spouses and professionals who share our passion for advancing technology and strengthening the missions we serve.
POSITION OVERVIEW
SteerBridge is seeking a Security Architect to define the security architecture and compliance strategy for a mission-critical Defense Aviation platform running in AWS GovCloud for federal customers. This role owns the security blueprintcontrols identity zero-trust access monitoring and authorization strategyfor environments supporting federal aviation operations.
The architect will work directly with solutions architects security and cloud engineers data teams and stakeholders to translate DoD security requirements into enforceable well-architected designs and to guide the platform toward and through authorization (ATO).
This role stays close to implementation. The ideal candidate sets security standards designs control frameworks reviews architectures and guides engineers in implementing defense-in-depth and zero-trust access.
This is a hybrid position based in Vienna VA.
Benefits
Health insurance
Dental insurance
Vision insurance
Life Insurance
401(k) Retirement Plan with matching
Paid Time Off
Paid Federal Holidays
Key Responsibilities
Security Architecture and Strategy
Define the security architecture for AWS GovCloud workloads spanning identity zero-trust access network segmentation encryption monitoring and data protection
Design and own the zero-trust access architecture leveraging Zscaler (ZTNA/SASE) to broker secure access to applications and infrastructure
Design defense-in-depth control frameworks aligned to DoD and DISA requirements
Produce security architecture documentation control mappings and decision records
Establish security standards and reference patterns for engineering teams
Compliance and Authorization
Lead security alignment with DoDI 8510 CNSSI 1253 STIGs DoD CC SRG and ATO and authorization processes.
Define control implementation and evidence strategies for audits and assessments
Assess and communicate security risk to technical and non-technical stakeholders
Guide POA&M development and remediation prioritization
Design Governance and Guidance
Review architectures and designs to ensure security is embedded from the outset
Set standards for least-privilege IAM zero-trust secure access (Zscaler/ZTNA) and hardened baselines
Guide engineers implementing security controls detection and response capabilities
Lead security and threat-model reviews
Collaboration and Leadership
Partner with cloud and solutions architects to ensure secure-by-design platforms
Advise leadership on security strategy posture and risk trade-offs
Mentor engineers and promote a strong security culture
Required Qualifications
U.S. Citizenship required (for clearance purposes)
Masters or PHD in Information Technology Cybersecurity Computer Science Information Systems Data Science or Software Engineering.
10 years of security experience including 3 years in a security architecture or lead role
Experience designing zero-trust architectures ideally with Zscaler or a comparable ZTNA or SASE platform
Deep expertise in cloud security architecture (AWS) identity and network segmentation
Strong command of security frameworks including DoDI 8510 CNSSI 1253 STIGs DoD CC SRG DISA STIGs
Experience guiding systems through ATO and authorization in DoD environments
Strong understanding of defense-in-depth zero-trust principles and least-privilege design
Ability to produce clear security architecture documentation and risk assessments
Experience leading security across multidisciplinary teams
Skill in determining how a security system should work (including its resilience and dependability capabilities) and how changes in conditions operations or the environment will affect these outcomes.
Skill in translating operational requirements into protection needs (i.e. security controls).
Skill in applying cybersecurity methods such as firewalls demilitarized zones and encryption.
Ability to apply network security architecture concepts including topology protocols components and principles (e.g. application of defense-in-depth).
Ability to apply an organizations goals and objectives to develop and maintain architecture.
One or more of the following:
Certified Information Security Manager (CISM) Certified Information Systems Security Professional (CISSP) Cisco Certified Network Professional (CCNP) Enterprise GIAC Certified Intrusion Analyst (GCIA) GIAC Defensible Security Architecture (GDSA) GIAC Global Industrial Cyber Security Professional (GICSP) Information Systems Security Architecture Professional (ISSAP) Information Systems Security Engineering Professional (ISSEP)
Preferred Qualifications
Extensive experience in AWS GovCloud or other federal or regulated environments
Deep experience architecting Zscaler or comparable ZTNA/SASE solutions and integrating them with identity and conditional access
Experience with continuous monitoring SIEM strategy and incident response programs
Experience with data security and protection of analytics and Medallion platforms
Senior certifications such as CCSP; or AWS Security Specialty
Experience supporting aviation defense logistics or fleet management systems
$170000 - $180000 a year
A salary commensurate with background and experience will be offered.
SteerBridge Strategies is proud to be an Equal Opportunity Employer.We are committed to creating a diverse and inclusive workplace where all qualified applicants and employees are treated with respect and dignityregardless of race color gender age religion national origin ancestry disability veteran status genetic information sexual orientation or any other characteristic protected by law.
We also provide reasonable accommodations for individuals with disabilities in accordance with applicable laws. If you require assistance during the application process we encourage you to reach out so we can support your needs.
If you would like information about how your application is processed please contact us.
SteerBridge Strategies is proud to be an Equal Opportunity Employer. We are committed to creating a diverse and inclusive workplace where all qualified applicants and employees are treated with respect and dignity—regardless of race, color, gender, age, religion, national origin, ance
... View more