hackajob
Aquila Technology, in partnership with a leading defense research organization, is seeking a highly skilled Cyber Security Architect to lead the design, implementation, and oversight of secure Cross Domain Solutions (CDS) and cloud environments. The successful candidate will apply the Risk Management Framework (RMF) to ensure compliance with DoD Cloud Computing SRG and NSA "Raise the Bar" (RTB) requirements.
About the Role The role focuses on architectural leadership for CDS and cloud systems, policy development, and training program delivery. You will own end‑to‑end RMF processes from categorization through monitoring, provide guidance on credentialing and accreditation, and mentor technical teams on secure design practices.
Responsibilities
Lead all RMF phases (categorization, selection, implementation, assessment, authorization, monitoring) for CDS and cloud systems.
Develop and maintain RMF documentation, security control assessments, vulnerability analysis, and risk assessments.
Design, build, and certify secure CDS solutions in compliance with NSA RTB and best practices.
Architect secure cloud environments (AWS GovCloud, Azure Government, DAF Cloud) with FedRAMP, DoD SRG, and NIST guidelines.
Develop IAM, data encryption, and continuous monitoring architectures in cloud platforms.
Write, refine, and translate cybersecurity policies, standards, and procedures for CDS and cloud environments.
Implement technical controls, remediate gaps, and manage POA&Ms with stakeholders.
Create and deliver comprehensive training on RMF, CDS security, cloud best practices, and NSA RTB requirements.
Required Qualifications
Bachelor’s degree in Cybersecurity, Computer Science, or related field.
Minimum 8 years of cybersecurity experience, with at least 5 years in RMF implementation and accreditation.
3+ years designing, architecting, and implementing Cross Domain Solutions (CDS).
3+ years securing cloud environments (AWS GovCloud, Azure Government) at enterprise scale.
Proven experience authoring policies and procedures for CDS and cloud.
Experience delivering technical training programs.
Deep knowledge of NIST SP 800‑37, CNSSI 1253, NIST SP 800‑145, DoD Cloud Computing SRG, ICD 503, DoDI 8540.01.
Hands‑on experience with vulnerability scanning, penetration testing, and monitoring tools in cloud settings.
Excellent written and verbal communication skills.
Preferred Certifications
CISSP (Certified Information Systems Security Professional)
CCSP (Certified Cloud Security Professional)
CASP+ (CompTIA Advanced Security Practitioner)
AWS Certified Security – Specialty
Azure Security Engineer Associate
Relevant vendor‑specific CDS certifications
Must Have
Active Secret Clearance – Aquila will sponsor clearance.
U.S. Citizen status.
Willingness to undergo a comprehensive background investigation.
Within 100 miles of Lexington, MA.
Nice to Have
Additional cloud security certifications such as AWS Certified Solutions Architect or Microsoft Azure Certification.
Security+ CE, CASP, CISSP, or similar.
Benefits and Perks
PTO: 15 days of vacation/sick leave plus 10 paid holidays and 4 floating holidays prorated.
Paid volunteer days: 1.5 days or 12 hours per year.
Maternity/paternity leave: 1 week paid after 1 year of employment.
Tuition & Training Reimbursement: $5,000 annually for pre‑approved tuition, certifications, or conferences.
401(k) with Fidelity, 100% immediate vesting; company matches 50¢ per dollar up to 6%.
Cell phone & internet reimbursement: up to $150/month.
BYOD allowance: up to $1,500 for approved technology devices, renewable every three years.
Location Hybrid: 3‑5 days per week onsite at Lexington, MA. Local residency required at the start of the assignment.
Interview Process Two rounds of Zoom interviews with recruiting staff and the hiring manager.
Equal Opportunity Employer We are an Equal Opportunity Employer.
#J-18808-Ljbffr
About the Role The role focuses on architectural leadership for CDS and cloud systems, policy development, and training program delivery. You will own end‑to‑end RMF processes from categorization through monitoring, provide guidance on credentialing and accreditation, and mentor technical teams on secure design practices.
Responsibilities
Lead all RMF phases (categorization, selection, implementation, assessment, authorization, monitoring) for CDS and cloud systems.
Develop and maintain RMF documentation, security control assessments, vulnerability analysis, and risk assessments.
Design, build, and certify secure CDS solutions in compliance with NSA RTB and best practices.
Architect secure cloud environments (AWS GovCloud, Azure Government, DAF Cloud) with FedRAMP, DoD SRG, and NIST guidelines.
Develop IAM, data encryption, and continuous monitoring architectures in cloud platforms.
Write, refine, and translate cybersecurity policies, standards, and procedures for CDS and cloud environments.
Implement technical controls, remediate gaps, and manage POA&Ms with stakeholders.
Create and deliver comprehensive training on RMF, CDS security, cloud best practices, and NSA RTB requirements.
Required Qualifications
Bachelor’s degree in Cybersecurity, Computer Science, or related field.
Minimum 8 years of cybersecurity experience, with at least 5 years in RMF implementation and accreditation.
3+ years designing, architecting, and implementing Cross Domain Solutions (CDS).
3+ years securing cloud environments (AWS GovCloud, Azure Government) at enterprise scale.
Proven experience authoring policies and procedures for CDS and cloud.
Experience delivering technical training programs.
Deep knowledge of NIST SP 800‑37, CNSSI 1253, NIST SP 800‑145, DoD Cloud Computing SRG, ICD 503, DoDI 8540.01.
Hands‑on experience with vulnerability scanning, penetration testing, and monitoring tools in cloud settings.
Excellent written and verbal communication skills.
Preferred Certifications
CISSP (Certified Information Systems Security Professional)
CCSP (Certified Cloud Security Professional)
CASP+ (CompTIA Advanced Security Practitioner)
AWS Certified Security – Specialty
Azure Security Engineer Associate
Relevant vendor‑specific CDS certifications
Must Have
Active Secret Clearance – Aquila will sponsor clearance.
U.S. Citizen status.
Willingness to undergo a comprehensive background investigation.
Within 100 miles of Lexington, MA.
Nice to Have
Additional cloud security certifications such as AWS Certified Solutions Architect or Microsoft Azure Certification.
Security+ CE, CASP, CISSP, or similar.
Benefits and Perks
PTO: 15 days of vacation/sick leave plus 10 paid holidays and 4 floating holidays prorated.
Paid volunteer days: 1.5 days or 12 hours per year.
Maternity/paternity leave: 1 week paid after 1 year of employment.
Tuition & Training Reimbursement: $5,000 annually for pre‑approved tuition, certifications, or conferences.
401(k) with Fidelity, 100% immediate vesting; company matches 50¢ per dollar up to 6%.
Cell phone & internet reimbursement: up to $150/month.
BYOD allowance: up to $1,500 for approved technology devices, renewable every three years.
Location Hybrid: 3‑5 days per week onsite at Lexington, MA. Local residency required at the start of the assignment.
Interview Process Two rounds of Zoom interviews with recruiting staff and the hiring manager.
Equal Opportunity Employer We are an Equal Opportunity Employer.
#J-18808-Ljbffr