Diné Development
Lead Solutions & Security Architect
Diné Development, Myrtle Point, Oregon, United States, 97458
Overview
Dinè Source is seeking a
Lead Solutions & Security Architect
to guide both the technical and cybersecurity architecture of the Defense Retired & Annuitant Pay System Modernization (DRAS-M). This role is pivotal in designing secure, scalable, and compliant system architecture while also leading the risk management, Zero Trust implementation, and compliance strategy needed to support ATO and FISMA readiness. The ideal candidate blends deep technical expertise in cloud-native architecture with authoritative knowledge of DoD cybersecurity frameworks and secure software development practices.
Responsibilities
Lead end-to-end technical architecture for the DRAS-M platform, including application, data, API, and integration layers across the IL5 cloud environment
Define and refine system blueprints aligned with modular microservices, the Strangler Pattern, and Oracle-backed operational data store design to support consolidation of eight disparate legacy subsystems
Drive Zero Trust Architecture implementation including Identity, Credential, and Access Management (ICAM), role-based access control, encryption, and network segmentation
Guide Agile development teams on technical direction, enforce DevSecOps controls, and ensure alignment with containerized delivery in GitLab CI/CD pipelines
Technical Responsibilities
Design secure, scalable, and compliant system architecture that meets the requirements for modernizing DRAS to serve 2.9 million military retirees and beneficiaries
Implement cloud-native enterprise architecture solutions using Microsoft Azure and service-oriented design principles
Oversee RMF and FISMA compliance efforts including generation and review of the System Security Plan (SSP), Business Impact Analysis (BIA), Contingency Plan (ISCP), and POA&Ms
Conduct architecture and security risk assessments, design mitigation strategies, and lead security reviews during sprint closeouts
Interface with DFAS Cybersecurity teams, DISA, and system owners to support ATO submission and ongoing continuous monitoring
Oversee vulnerability management across development and production environments using Fortify, WebInspect, ACAS, and other approved tools
Collaborate with cross-functional teams including product owners, infrastructure teams, and application developers to validate architecture decisions that meet performance, scalability, and auditability requirements
Other duties as assigned.
Education & Experience
Bachelor's degree in computer science, Information Systems, Cybersecurity, Engineering, or related technical field (Masters preferred)
9+ years of experience in enterprise solution design and architecture
5+ years of experience in cybersecurity leadership roles
DoD-approved 8140/8570 CISSP/IA System Architecture & Engineering baseline cybersecurity certification
Public Trust / IT II Security clearance eligibility. Must be a US citizen.
Technical Skills Cloud & Enterprise Architecture:
Expert-level proficiency in cloud-native enterprise architecture, with experience in major cloud platforms (AWS, Azure, GCP)
Advanced understanding of service-oriented design and microservices architecture
Experience with containerization and cloud-agnostic deployment strategies
Proficiency in infrastructure-as-code tools such as Terraform
Security & Compliance:
Advanced understanding of Zero Trust Architecture principles and implementation
Expert knowledge of NIST SP 800-53, 800-207, 800-218, and Risk Management Framework (RMF)
Experience with FedRAMP, FISMA, and DoD cybersecurity directives including DoDI 8510.01, 8570.01-M
Working knowledge of ATO documentation, eMASS, audit logging, and system boundary definition
Development & Integration:
Proficiency in architecture tools such as CAST Imaging
Experience with CI/CD security integration using tools like Fortify and GitLab
Familiarity with DevSecOps practices and automated security controls
Understanding of API design and integration patterns
Data Architecture:
Familiarity with data architecture best practices and Oracle database systems
Knowledge of SFIS/SLOA compliance requirements
Experience with encryption at rest and in transit implementation
Understanding of data retention policies per NARA requirements
Soft Skills
Strong leadership abilities with experience guiding technical teams and architecture decisions
Excellent communication skills for interfacing with government stakeholders, cybersecurity teams, and technical staff
Ability to work effectively in fast-paced Agile environments while maintaining security and compliance standards
Strong analytical and problem-solving skills for complex enterprise architecture challenges
Adaptability to evolving security requirements and emerging technologies in government environments
Preferred Qualifications
Professional certifications such as CCSP, AWS/Azure Solutions Architect, and DoD 8140/8570.01 IASAE Level II or CSSLP Infrastructure Support baseline certification
AWS or Azure security-related certifications highly desirable (e.g., AWS Certified Security - Specialty, Azure Security Engineer Associate)
Experience with DFAS systems or DoD financial management environments
Knowledge of government pay systems and financial regulations
Experience with Strangler Pattern implementation for legacy system modernization
Familiarity with Oracle database architecture and optimization
Experience working with DISA, DFAS Cybersecurity teams, or similar government cybersecurity organizations
Knowledge of continuous monitoring tools and vulnerability management in government environments
Experience with GitLab CI/CD pipelines and automated security testing integration
Understanding of federal audit requirements and compliance frameworks
Experience leading ATO processes and security documentation development
About the Company Diné Development Corporation (DDC) is a Navajo Nation owned family of companies that delivers IT, professional, and environmental solutions to advance the missions of federal, state, and tribal government agencies. As thought leaders and innovators, our team of specialists build client-centric solutions that solve critical challenges faced by defense, civilian, and healthcare organizations. Employing a mission-focused approach, we deliver value that not only enhances current operations, but also drives future change. Closely aligned with this approach is our commitment to advancing the Navajo Nation and its People. Through economic development and community empowerment, we elevate the Navajo Nation to provide lasting impact and sustainable growth for future generations. DDC’s ability to unite legacy-inspired technologies, industry best practices, and proven methodologies has contributed to our success for twenty years.
This contractor and subcontractor shall abide by the requirements of 41 CFR 60-1.4(a), 60-300.5(a) and 60-741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities, and prohibit discrimination against all individuals based on their race, color, religion, sex, sexual orientation, gender identity, national origin, or for inquiring about, discussing, or disclosing information about compensation, or any other basis prohibited by law. We participate in E-Verify.
#dinesourcejobs
#J-18808-Ljbffr
Dinè Source is seeking a
Lead Solutions & Security Architect
to guide both the technical and cybersecurity architecture of the Defense Retired & Annuitant Pay System Modernization (DRAS-M). This role is pivotal in designing secure, scalable, and compliant system architecture while also leading the risk management, Zero Trust implementation, and compliance strategy needed to support ATO and FISMA readiness. The ideal candidate blends deep technical expertise in cloud-native architecture with authoritative knowledge of DoD cybersecurity frameworks and secure software development practices.
Responsibilities
Lead end-to-end technical architecture for the DRAS-M platform, including application, data, API, and integration layers across the IL5 cloud environment
Define and refine system blueprints aligned with modular microservices, the Strangler Pattern, and Oracle-backed operational data store design to support consolidation of eight disparate legacy subsystems
Drive Zero Trust Architecture implementation including Identity, Credential, and Access Management (ICAM), role-based access control, encryption, and network segmentation
Guide Agile development teams on technical direction, enforce DevSecOps controls, and ensure alignment with containerized delivery in GitLab CI/CD pipelines
Technical Responsibilities
Design secure, scalable, and compliant system architecture that meets the requirements for modernizing DRAS to serve 2.9 million military retirees and beneficiaries
Implement cloud-native enterprise architecture solutions using Microsoft Azure and service-oriented design principles
Oversee RMF and FISMA compliance efforts including generation and review of the System Security Plan (SSP), Business Impact Analysis (BIA), Contingency Plan (ISCP), and POA&Ms
Conduct architecture and security risk assessments, design mitigation strategies, and lead security reviews during sprint closeouts
Interface with DFAS Cybersecurity teams, DISA, and system owners to support ATO submission and ongoing continuous monitoring
Oversee vulnerability management across development and production environments using Fortify, WebInspect, ACAS, and other approved tools
Collaborate with cross-functional teams including product owners, infrastructure teams, and application developers to validate architecture decisions that meet performance, scalability, and auditability requirements
Other duties as assigned.
Education & Experience
Bachelor's degree in computer science, Information Systems, Cybersecurity, Engineering, or related technical field (Masters preferred)
9+ years of experience in enterprise solution design and architecture
5+ years of experience in cybersecurity leadership roles
DoD-approved 8140/8570 CISSP/IA System Architecture & Engineering baseline cybersecurity certification
Public Trust / IT II Security clearance eligibility. Must be a US citizen.
Technical Skills Cloud & Enterprise Architecture:
Expert-level proficiency in cloud-native enterprise architecture, with experience in major cloud platforms (AWS, Azure, GCP)
Advanced understanding of service-oriented design and microservices architecture
Experience with containerization and cloud-agnostic deployment strategies
Proficiency in infrastructure-as-code tools such as Terraform
Security & Compliance:
Advanced understanding of Zero Trust Architecture principles and implementation
Expert knowledge of NIST SP 800-53, 800-207, 800-218, and Risk Management Framework (RMF)
Experience with FedRAMP, FISMA, and DoD cybersecurity directives including DoDI 8510.01, 8570.01-M
Working knowledge of ATO documentation, eMASS, audit logging, and system boundary definition
Development & Integration:
Proficiency in architecture tools such as CAST Imaging
Experience with CI/CD security integration using tools like Fortify and GitLab
Familiarity with DevSecOps practices and automated security controls
Understanding of API design and integration patterns
Data Architecture:
Familiarity with data architecture best practices and Oracle database systems
Knowledge of SFIS/SLOA compliance requirements
Experience with encryption at rest and in transit implementation
Understanding of data retention policies per NARA requirements
Soft Skills
Strong leadership abilities with experience guiding technical teams and architecture decisions
Excellent communication skills for interfacing with government stakeholders, cybersecurity teams, and technical staff
Ability to work effectively in fast-paced Agile environments while maintaining security and compliance standards
Strong analytical and problem-solving skills for complex enterprise architecture challenges
Adaptability to evolving security requirements and emerging technologies in government environments
Preferred Qualifications
Professional certifications such as CCSP, AWS/Azure Solutions Architect, and DoD 8140/8570.01 IASAE Level II or CSSLP Infrastructure Support baseline certification
AWS or Azure security-related certifications highly desirable (e.g., AWS Certified Security - Specialty, Azure Security Engineer Associate)
Experience with DFAS systems or DoD financial management environments
Knowledge of government pay systems and financial regulations
Experience with Strangler Pattern implementation for legacy system modernization
Familiarity with Oracle database architecture and optimization
Experience working with DISA, DFAS Cybersecurity teams, or similar government cybersecurity organizations
Knowledge of continuous monitoring tools and vulnerability management in government environments
Experience with GitLab CI/CD pipelines and automated security testing integration
Understanding of federal audit requirements and compliance frameworks
Experience leading ATO processes and security documentation development
About the Company Diné Development Corporation (DDC) is a Navajo Nation owned family of companies that delivers IT, professional, and environmental solutions to advance the missions of federal, state, and tribal government agencies. As thought leaders and innovators, our team of specialists build client-centric solutions that solve critical challenges faced by defense, civilian, and healthcare organizations. Employing a mission-focused approach, we deliver value that not only enhances current operations, but also drives future change. Closely aligned with this approach is our commitment to advancing the Navajo Nation and its People. Through economic development and community empowerment, we elevate the Navajo Nation to provide lasting impact and sustainable growth for future generations. DDC’s ability to unite legacy-inspired technologies, industry best practices, and proven methodologies has contributed to our success for twenty years.
This contractor and subcontractor shall abide by the requirements of 41 CFR 60-1.4(a), 60-300.5(a) and 60-741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities, and prohibit discrimination against all individuals based on their race, color, religion, sex, sexual orientation, gender identity, national origin, or for inquiring about, discussing, or disclosing information about compensation, or any other basis prohibited by law. We participate in E-Verify.
#dinesourcejobs
#J-18808-Ljbffr