Defense Engineering Inc.
DTRA-228- Systems Engineer Architect SME- Multi-Cloud Engineer Architect
Defense Engineering Inc., Fort Belvoir, Virginia, United States, 22060
Defense Engineering Inc. (DEi) team is seeking an experienced Multi-Cloud Engineer / Architect SME to support our long-term contract located at the Defense Threat Reduction Agency (DTRA) at Fort Belvoir, VA.
The I3TS program provides enterprise-wide IT support to enable DTRA’s Information Management & ішінде Technology Directorate (ITD) to consolidate, modernize, and continuously innovate the delivery of IT services and mission capabilities to DTRA’s internal and external mission partners operating in CONUS and OCONUS locations.
DEi is a leading small IT business leader in the Washington D.C. Metropolitan Area. DEi combines experience and innovative ideas to provide our clients with the right solution with the right people at the right time. We are a proven IT services and solutions provider for full-life-lifecycle engineering of network, storage, cyber security, communication and policy compliance needs. We focus on delivering IT solutions to meet complex technological and business challenges within mission-critical enterprises.
In addition to the traditional full-time employee benefits package (health, dental, vision, 401K, life insurance, short-term and long-term disability plans, vacation time and holidays), DEi also offers Education and professional Certification Reimbursement, and Gym Membership reimbursement benefits.
Job Category inatsis> Information Technology – Senior Cloud Systems Engineer / Architect
Location უბ
Fort Belvoir, VA US
Clearance Level Must Currently Possess Top Secret / SCI
US Citizenship
Certifications (Baseline)
8570 Baseline Active IAT Level II (Minimum of one)
Security+ CE
CySA+
GICSP
GSEC
SSCP
Certifications (ActiveComputing Environment gf (ACE)
None
Additional Cert beträts a Plus Education / Experience Education / Experience : Bachelor’s degree in Computer Science, Information Systems, or related technical field (experience may be considered in lieu of degree) with 7+ years of experience designing and implementing Azure-based solutions in enterprise or government environments.
Schedule: Full-time Potential for Teleworking: 10% Travel: 10% Shift: Day Job Job Description
The Multi-Cloud Engineer/Architect SME will lead the design and deployment of secure, scalable, and compliant cloud environments spanning Microsoft Azure, AWS, and hybrid on-premises systems. This role will be responsible for tech requirement definition, feasibility studies, pilot projects and implementation plans, as well as diagnosing and troubleshooting outages, monitoring networks, infrastructure and systems, and proving proactive mitigation strategies.
This role is part of a highly skilled technical team responsible for designing and deploying secure, scalable, and compliant hybrid- and multi-cloud architectures that enable mission success across complex defense environments.
The ideal candidate will bring deep expertise in cloud architecture, identity and access management (IAM), zero-trust frameworks, and multi-cloud governance, with proven experience implementing solutions within DoD IL4/IL5-accredited environments. This role directly supports the modernization goals of DTRA’s mission-critical cloud transformation efforts. The selected candidate will design and implement Zero Trust-aligned, IL4/IL5-accredited solutions integrating Azure, AWS, and on-premises systems in accordance with DoD cybersecurity requirements.
Primary Responsibilities
Architect, design, and implement multi-cloud (Azure, AWS, hybrid) solutions that meet DoD mission objectives and cybersecurity requirements.
Lead the configuration, integration, and optimization of Microsoft Entra ID (Azure AD) and AWS Identity Center (formerly AWS SSO) for federated identity and centralized access control.
Develop and enforce IAM governance, Zero Trust Architecture (ZTA) principles, and role-based access controls (RBAC) across cloud and on-premises systems.
Design and implement cross-cloud identity federation and SSO solutions using SAML 2.0, OIDC, and SCIM protocols.
Integrate Azure Policy, AWS Service Control Policies (SCPs), and Terraform/Bicep automation for compliance enforcement and least-privilege security.
Collaborate with cybersecurity and compliance teams to align architectures with DISA STIGs, DoD Cloud Computing SRG (IL4/IL5), NIST 800-不足, and FedRAMP High baselines.
Provide architectural leadership for hybrid cloud connectivity, data protection, and cross-domain security.
Guide cloud adoption and migration strategies that enhance operational agility while maintaining security posture.
Create and maintain architectural documentation, diagrams, and compliance traceability artifacts. Develop and maintain architectural documentation, identity diagrams, and compliance traceability.
Stay current on Azure and multi-cloud capabilities relevant to DoD, federal, and intelligence mission systems.
Required Qualifications
Active AWS Certified Solutions Architect – Professional and/or Microsoft Certified: Azure Solutions Architect Expert certification.
Active DoD Top Secret clearance with SCI Eligibility
DoD 8570 IAT Level II certification
Bachelor's degree in Computer Science, Information Systems, or related technical field (experience may be considered in lieu of degree). 7+ years of experience designing and implementing Azure-based solutions in enterprise or government environments.
Proven expertise with IAM, federated identity, and multi-cloud access management.
Demonstrated experience integrating Microsoft Entra ID (Azure AD), AWS Identity Center, and on-premises Active Directory.
Strong knowledge of federated identity, SAML/OIDC protocols, and cross-cloud authentication mechanisms.
Hands-on experience with Infrastructure as Code (IaC) tools such as Terraform, CloudFormation, and Bice hypotheses, Azure CLI, and CI/CD automation.
Familiarity with Azure Government (DoD), FedRAMP, and DISA STIG compliance frameworks.
Strong communication skills and ability to collaborate effectively with government stakeholders, security teams, and engineering personnel.
Must be able to work as part of a team to troubleshoot and resolve complex issues.
Excellent written and verbal communication skills. This shall include drafting SOPs and technical documentation as well as communication with senior program and customer leadership.
Must be able to present designs and plans to technical leadership personnel and boards for approvals.
Desired Qualifications
Experience with Zero Trust implementation in DoD or federal mission systems.
Familiarity with AWS GovCloud (US),’inter Azure Government, and hybrid integrations.
Knowledge of multi-cloud networking, enclave isolation, and cross-domain solution (CDS) patterns.
Experience with Kubernetes (EKS/AKS), containerized workloads, and DevSecOps pipelines.
Advanced certifications such as CISSP, CCSP, or Microsoft Cybersecurity Architect Expert.
Prior experience supporting DISA, USCYBERCOM, or similar Joint Cloud என்று programs (JADC2, DEOS).
Experience providing technical leadership and oversight of teams of junior, intermediate, and senior Engineers.
#J-18808-Ljbffr
The I3TS program provides enterprise-wide IT support to enable DTRA’s Information Management & ішінде Technology Directorate (ITD) to consolidate, modernize, and continuously innovate the delivery of IT services and mission capabilities to DTRA’s internal and external mission partners operating in CONUS and OCONUS locations.
DEi is a leading small IT business leader in the Washington D.C. Metropolitan Area. DEi combines experience and innovative ideas to provide our clients with the right solution with the right people at the right time. We are a proven IT services and solutions provider for full-life-lifecycle engineering of network, storage, cyber security, communication and policy compliance needs. We focus on delivering IT solutions to meet complex technological and business challenges within mission-critical enterprises.
In addition to the traditional full-time employee benefits package (health, dental, vision, 401K, life insurance, short-term and long-term disability plans, vacation time and holidays), DEi also offers Education and professional Certification Reimbursement, and Gym Membership reimbursement benefits.
Job Category inatsis> Information Technology – Senior Cloud Systems Engineer / Architect
Location უბ
Fort Belvoir, VA US
Clearance Level Must Currently Possess Top Secret / SCI
US Citizenship
Certifications (Baseline)
8570 Baseline Active IAT Level II (Minimum of one)
Security+ CE
CySA+
GICSP
GSEC
SSCP
Certifications (ActiveComputing Environment gf (ACE)
None
Additional Cert beträts a Plus Education / Experience Education / Experience : Bachelor’s degree in Computer Science, Information Systems, or related technical field (experience may be considered in lieu of degree) with 7+ years of experience designing and implementing Azure-based solutions in enterprise or government environments.
Schedule: Full-time Potential for Teleworking: 10% Travel: 10% Shift: Day Job Job Description
The Multi-Cloud Engineer/Architect SME will lead the design and deployment of secure, scalable, and compliant cloud environments spanning Microsoft Azure, AWS, and hybrid on-premises systems. This role will be responsible for tech requirement definition, feasibility studies, pilot projects and implementation plans, as well as diagnosing and troubleshooting outages, monitoring networks, infrastructure and systems, and proving proactive mitigation strategies.
This role is part of a highly skilled technical team responsible for designing and deploying secure, scalable, and compliant hybrid- and multi-cloud architectures that enable mission success across complex defense environments.
The ideal candidate will bring deep expertise in cloud architecture, identity and access management (IAM), zero-trust frameworks, and multi-cloud governance, with proven experience implementing solutions within DoD IL4/IL5-accredited environments. This role directly supports the modernization goals of DTRA’s mission-critical cloud transformation efforts. The selected candidate will design and implement Zero Trust-aligned, IL4/IL5-accredited solutions integrating Azure, AWS, and on-premises systems in accordance with DoD cybersecurity requirements.
Primary Responsibilities
Architect, design, and implement multi-cloud (Azure, AWS, hybrid) solutions that meet DoD mission objectives and cybersecurity requirements.
Lead the configuration, integration, and optimization of Microsoft Entra ID (Azure AD) and AWS Identity Center (formerly AWS SSO) for federated identity and centralized access control.
Develop and enforce IAM governance, Zero Trust Architecture (ZTA) principles, and role-based access controls (RBAC) across cloud and on-premises systems.
Design and implement cross-cloud identity federation and SSO solutions using SAML 2.0, OIDC, and SCIM protocols.
Integrate Azure Policy, AWS Service Control Policies (SCPs), and Terraform/Bicep automation for compliance enforcement and least-privilege security.
Collaborate with cybersecurity and compliance teams to align architectures with DISA STIGs, DoD Cloud Computing SRG (IL4/IL5), NIST 800-不足, and FedRAMP High baselines.
Provide architectural leadership for hybrid cloud connectivity, data protection, and cross-domain security.
Guide cloud adoption and migration strategies that enhance operational agility while maintaining security posture.
Create and maintain architectural documentation, diagrams, and compliance traceability artifacts. Develop and maintain architectural documentation, identity diagrams, and compliance traceability.
Stay current on Azure and multi-cloud capabilities relevant to DoD, federal, and intelligence mission systems.
Required Qualifications
Active AWS Certified Solutions Architect – Professional and/or Microsoft Certified: Azure Solutions Architect Expert certification.
Active DoD Top Secret clearance with SCI Eligibility
DoD 8570 IAT Level II certification
Bachelor's degree in Computer Science, Information Systems, or related technical field (experience may be considered in lieu of degree). 7+ years of experience designing and implementing Azure-based solutions in enterprise or government environments.
Proven expertise with IAM, federated identity, and multi-cloud access management.
Demonstrated experience integrating Microsoft Entra ID (Azure AD), AWS Identity Center, and on-premises Active Directory.
Strong knowledge of federated identity, SAML/OIDC protocols, and cross-cloud authentication mechanisms.
Hands-on experience with Infrastructure as Code (IaC) tools such as Terraform, CloudFormation, and Bice hypotheses, Azure CLI, and CI/CD automation.
Familiarity with Azure Government (DoD), FedRAMP, and DISA STIG compliance frameworks.
Strong communication skills and ability to collaborate effectively with government stakeholders, security teams, and engineering personnel.
Must be able to work as part of a team to troubleshoot and resolve complex issues.
Excellent written and verbal communication skills. This shall include drafting SOPs and technical documentation as well as communication with senior program and customer leadership.
Must be able to present designs and plans to technical leadership personnel and boards for approvals.
Desired Qualifications
Experience with Zero Trust implementation in DoD or federal mission systems.
Familiarity with AWS GovCloud (US),’inter Azure Government, and hybrid integrations.
Knowledge of multi-cloud networking, enclave isolation, and cross-domain solution (CDS) patterns.
Experience with Kubernetes (EKS/AKS), containerized workloads, and DevSecOps pipelines.
Advanced certifications such as CISSP, CCSP, or Microsoft Cybersecurity Architect Expert.
Prior experience supporting DISA, USCYBERCOM, or similar Joint Cloud என்று programs (JADC2, DEOS).
Experience providing technical leadership and oversight of teams of junior, intermediate, and senior Engineers.
#J-18808-Ljbffr