Cybersecurity Architect (CDS & Cloud Security) Job at Encode, Inc. in Lexington

Overview

Cybersecurity Architect (CDS & Cloud Security) is a subject matter expert responsible for RMF implementation and compliance for CDS and cloud-based systems, ensuring alignment with applicable federal cybersecurity standards and NSA RTB requirements.

This role requires deep expertise in cybersecurity architecture, CDS, cloud platforms, and the ability to develop security policies, training programs, and technical solutions.

Responsibilities

• RMF Implementation & Compliance
• Lead and execute all phases of the RMF process (Categorization, Selection, Implementation, Assessment, Authorization, Monitoring) for CDS and Cloud systems.
• Ensure compliance with NIST SP 800-37, CNSSI 1253, ICD 503, and NSA RTB requirements.
• Conduct security control assessments, vulnerability analyses, and risk assessments for CDS and cloud environments.
• Guide and review RMF documentation to support successful authorization of cloud technologies and CDS.
• Cross Domain Solutions (CDS)
• Architect, design, and implement secure CDS solutions compliant with NSA RTB.
• Provide subject matter expertise for CDS accreditation processes and data flow security.
• Evaluate and recommend CDS technologies, ensuring mission success and strong security posture.
• Cloud Security Architecture & Engineering
• Design and secure cloud environments (AWS, Azure Government, DAF Cloud Works) in line with RMF, FedRAMP, DoD SRG, and NSA RTB.
• Develop secure architectures for cloud networks, IAM strategies, encryption solutions, and monitoring.
• Guide secure cloud migration strategies, container security, and enterprise-level deployments.
• Policy, Implementation & Training
• Develop, refine, and communicate cybersecurity policies, standards, and procedures for CDS and cloud systems.
• Translate technical requirements into actionable security policies for teams.
• Oversee and implement remediation measures, track POA&Ms, and ensure timely completion.
• Design and deliver training programs on RMF, CDS security, cloud security best practices, and NSA RTB requirements.

Required Qualifications

• Bachelor’s degree in Cybersecurity, Computer Science, IT, or related field.
• 8+ years of cybersecurity experience, including:
• 5+ years of RMF implementation and accreditation experience.
• 3+ years designing and implementing CDS.
• 3+ years securing cloud environments (AWS GovCloud, Azure Government).
• Proven experience developing and enforcing cybersecurity policies and procedures.
• Experience delivering technical training on CDS and cloud security.
• In-depth knowledge of frameworks and standards, including NIST SP 800-37, CNSSI 1253, NIST SP 800-145, DoD Cloud Computing SRG, ICD 503, DoDI 8540.01.
• Hands-on experience with vulnerability scanning, penetration testing, and security monitoring tools.
• Strong communication skills to convey technical concepts to diverse stakeholders.

Preferred Certifications

• CISSP (Certified Information Systems Security Professional)
• CCSP (Certified Cloud Security Professional)
• CASP+ (CompTIA Advanced Security Practitioner)
• AWS Certified Security – Specialty
• Azure Security Engineer Associate

Additional Information

• Clearance: Secret clearance required for start.
• Location: Must be Massachusetts-based; hybrid role (3–5 days onsite per week).

• Seniority level: Director
• Employment type: Contract
• Job function: Information Technology
• Industries: IT Services and IT Consulting, Research Services, and Space Research and Technology