Defense Engineering Inc.
DTRA-227- Systems Engineer Architect Senior- Azure Senior Cloud Engineer Archite
Defense Engineering Inc., Fort Belvoir, Virginia, United States, 22060
Defense Engineering Inc. (DEi) team is seeking a Senior Microsoft Azure Cloud Engineer / Architect to support our long-term contract located at the Defense Threat Reduction Agency (DTRA) at Fort Belvoir, VA.
The I3TS program provides enterprise-wide IT support to enable DTRA’s Information Management & Technology Directorate (ITD) to consolidate, modernize, and continuously innovate the delivery of IT services and mission capabilities to DTRA’s internal and external mission partners operating in CONUS and OCONUS locations_PRI.
DEi is a leading small IT business leader in the Washington D.C. Metropolitan Area. DEi combines experience and innovative ideas to provide our clients with the right solution with the right people at the right time. We are a proven IT services and solutions provider for full-life-lifecycle engineering of network, storage, cyber security, communication and policy compliance needs. We focus on delivering IT solutions to meet complex technological and business challenges within mission-critical enterprises.
In addition to the traditional full‑time perfekte employee benefits package (health, dental, vision, 401K, life insurance, short‑term and long‑term disability plans, vacation time and holidays, DEi also offers Education and professional Certification Reimbursement, and Gym Membership reimbursement benefits.
Job Category Information Technology – Senior Cloud Systems Engineer / Architect
Location Fort Belvoir, VA US
Clearance Level Must Currently Possess
Top Secret / SCI
US Citizenship
Certifications (Baseline)
8570 Baseline Active IAT Level II (Minimum of one)
Security+ CE
CySA+
GICSP
GSEC
SSCP
Certifications (ActiveComputing Environment (ACE))
None
Additional Certs a Plus Education / Experience Bachelor’s degree in Computer Science, Information Systems, or related technical field (experience may be considered in lieu of degree) with 5+ years of experience designing and implementing AWS‑based solutions in enterprise or government environments
Schedule Full‑time
Potential for Teleworking 10%
Travel 10%
Shift Day Job
Job Description
Senior Cloud Engineer/Architect (Azure) supports design of new, modernized updated and upgraded capabilities for DTRA. This role will be responsible for tech requirement definition, feasibility studies, pilot projects and implementations plans, as well as diagnosing and troubleshooting outages, monitoring networks, infrastructure and ABO systems, and proving proactive mitigation strategies.
This role is part of a highly skilled technical team responsible for designing and deploying secure, scalable, and compliant hybrid‑ and multi‑cloud architectures that enable mission success across complex defense environments.
The ideal candidate will have deep expertise in Microsoft Azure cloud architecture, identity and access management (IAM), Microsoft Entra ID (formerly Azure Active Directory), and cross‑cloud interoperability. The selected candidate will design and implement Zero Trust‑aligned, IL4/IL5‑accredited solutions.personal. integrated Azure, AWS, and on‑premises systems in accordance with DoD cybersecurity requirements.
Primary Responsibilities
Design, implement, and secure Azure‑based cloud architectures in alignment with DoD mission objectives and cybersecurity standards.
Lead configuration, deployment, and management of Microsoft Entra ID / Azure AD for centralized identity, single sign‑on (SSO), and role‑based access control (RBAC) across Azure tenants and subscriptions.
Integrate federated identity solutions with AWS Identity Center, Okta, or on‑premises Active Directory.
Develop and enforce Azure governance frameworks, including Azure Policy, Management Groups, and Blueprints, ensuring alignment with DoD Zero Trust and least‑privilege principles.
Architect and secure hybrid connectivity across Azure, AWS, and DoD on‑premises networks, ensuring consistent identity and access management across clouds.
Collaborate with cybersecurity teams to ensure solutions comply with DISA STIGs, DoD Cloud Computing SRG, FedRAMP High, and NIST 800‑53 controls.
Implement and manage Infrastructure as Code (IaC) solutions using Bicep, Terraform, or Azure Resource Manager (ARM) templates.
Provide architectural guidance on Zero Trust, hybrid cloud, and cross‑domain architectures in mission environments.
Develop and maintain architectural documentation, identity diagrams, and compliance traceability.
Stay current on Azure and multi‑cloud capabilities relevant to DoD, federal, and intelligence mission systems.
Required Qualifications
Active Microsoft Certified: Azure Solutions Architect Expertും equivalent.
Active DoD Top Secret clearance with SCI Eligibility
DoD 8570 IAT Level II certification
Bachelor’s degree in Computer Science, Information Systems, or related technical field (experience may be considered in lieu of degree).
5+ years of experience designing and implementing Azure‑based solutions in enterprise or government environments.
Proven expertise in Microsoft Entra ID / Azure AD, Azure RBAC, and Conditional Access.
Experience with Paz‑cloud identity integration (Azure + מב/y AWS or GCP).
Strong understanding of federated identity, SAML/OIDC protocols, and cross‑cloud authentication mechanisms.
Familiarity with Azure Government (DoD), FedRAMP, and DISA STIG compliance frameworks.
Hands‑on experience with Terraform, Bicep, Azure CLI, and CI/CD automation. Excellent written and verbal communication skills with the ability to brief technical concepts to leadership and stakeholders.
Must be able to work as part of a team to troubleshoot and resolve complex issues.
Excellent written and verbal communication skills. This shall include drafting SOPs and technical documentation as well as communication with senior program and customer leadership.
Must be able to present designs and plans to technical leadership personnel and boards for approvals.
Desired Qualifications
Experience in Zero Trust Architecture (ZTA) deployment within DoD or federal cloud programs.
Deep familiarity with Azure Government, Azure Lighthouse, and Azure Arc for multi‑tenant management.
Familiarity with Kubernetes (EKS/AKS) and container security in classified or restricted networks.
Advanced certifications such as CISSP, CCSP, or AWS Advanced Security Specialty.
Prior experience supporting DoD or Intelligence Community (IC) programs.
Experience providing technical leadership and oversight of teams of junior, intermediate, and senior engineers.
#J-18808-Ljbffr
The I3TS program provides enterprise-wide IT support to enable DTRA’s Information Management & Technology Directorate (ITD) to consolidate, modernize, and continuously innovate the delivery of IT services and mission capabilities to DTRA’s internal and external mission partners operating in CONUS and OCONUS locations_PRI.
DEi is a leading small IT business leader in the Washington D.C. Metropolitan Area. DEi combines experience and innovative ideas to provide our clients with the right solution with the right people at the right time. We are a proven IT services and solutions provider for full-life-lifecycle engineering of network, storage, cyber security, communication and policy compliance needs. We focus on delivering IT solutions to meet complex technological and business challenges within mission-critical enterprises.
In addition to the traditional full‑time perfekte employee benefits package (health, dental, vision, 401K, life insurance, short‑term and long‑term disability plans, vacation time and holidays, DEi also offers Education and professional Certification Reimbursement, and Gym Membership reimbursement benefits.
Job Category Information Technology – Senior Cloud Systems Engineer / Architect
Location Fort Belvoir, VA US
Clearance Level Must Currently Possess
Top Secret / SCI
US Citizenship
Certifications (Baseline)
8570 Baseline Active IAT Level II (Minimum of one)
Security+ CE
CySA+
GICSP
GSEC
SSCP
Certifications (ActiveComputing Environment (ACE))
None
Additional Certs a Plus Education / Experience Bachelor’s degree in Computer Science, Information Systems, or related technical field (experience may be considered in lieu of degree) with 5+ years of experience designing and implementing AWS‑based solutions in enterprise or government environments
Schedule Full‑time
Potential for Teleworking 10%
Travel 10%
Shift Day Job
Job Description
Senior Cloud Engineer/Architect (Azure) supports design of new, modernized updated and upgraded capabilities for DTRA. This role will be responsible for tech requirement definition, feasibility studies, pilot projects and implementations plans, as well as diagnosing and troubleshooting outages, monitoring networks, infrastructure and ABO systems, and proving proactive mitigation strategies.
This role is part of a highly skilled technical team responsible for designing and deploying secure, scalable, and compliant hybrid‑ and multi‑cloud architectures that enable mission success across complex defense environments.
The ideal candidate will have deep expertise in Microsoft Azure cloud architecture, identity and access management (IAM), Microsoft Entra ID (formerly Azure Active Directory), and cross‑cloud interoperability. The selected candidate will design and implement Zero Trust‑aligned, IL4/IL5‑accredited solutions.personal. integrated Azure, AWS, and on‑premises systems in accordance with DoD cybersecurity requirements.
Primary Responsibilities
Design, implement, and secure Azure‑based cloud architectures in alignment with DoD mission objectives and cybersecurity standards.
Lead configuration, deployment, and management of Microsoft Entra ID / Azure AD for centralized identity, single sign‑on (SSO), and role‑based access control (RBAC) across Azure tenants and subscriptions.
Integrate federated identity solutions with AWS Identity Center, Okta, or on‑premises Active Directory.
Develop and enforce Azure governance frameworks, including Azure Policy, Management Groups, and Blueprints, ensuring alignment with DoD Zero Trust and least‑privilege principles.
Architect and secure hybrid connectivity across Azure, AWS, and DoD on‑premises networks, ensuring consistent identity and access management across clouds.
Collaborate with cybersecurity teams to ensure solutions comply with DISA STIGs, DoD Cloud Computing SRG, FedRAMP High, and NIST 800‑53 controls.
Implement and manage Infrastructure as Code (IaC) solutions using Bicep, Terraform, or Azure Resource Manager (ARM) templates.
Provide architectural guidance on Zero Trust, hybrid cloud, and cross‑domain architectures in mission environments.
Develop and maintain architectural documentation, identity diagrams, and compliance traceability.
Stay current on Azure and multi‑cloud capabilities relevant to DoD, federal, and intelligence mission systems.
Required Qualifications
Active Microsoft Certified: Azure Solutions Architect Expertും equivalent.
Active DoD Top Secret clearance with SCI Eligibility
DoD 8570 IAT Level II certification
Bachelor’s degree in Computer Science, Information Systems, or related technical field (experience may be considered in lieu of degree).
5+ years of experience designing and implementing Azure‑based solutions in enterprise or government environments.
Proven expertise in Microsoft Entra ID / Azure AD, Azure RBAC, and Conditional Access.
Experience with Paz‑cloud identity integration (Azure + מב/y AWS or GCP).
Strong understanding of federated identity, SAML/OIDC protocols, and cross‑cloud authentication mechanisms.
Familiarity with Azure Government (DoD), FedRAMP, and DISA STIG compliance frameworks.
Hands‑on experience with Terraform, Bicep, Azure CLI, and CI/CD automation. Excellent written and verbal communication skills with the ability to brief technical concepts to leadership and stakeholders.
Must be able to work as part of a team to troubleshoot and resolve complex issues.
Excellent written and verbal communication skills. This shall include drafting SOPs and technical documentation as well as communication with senior program and customer leadership.
Must be able to present designs and plans to technical leadership personnel and boards for approvals.
Desired Qualifications
Experience in Zero Trust Architecture (ZTA) deployment within DoD or federal cloud programs.
Deep familiarity with Azure Government, Azure Lighthouse, and Azure Arc for multi‑tenant management.
Familiarity with Kubernetes (EKS/AKS) and container security in classified or restricted networks.
Advanced certifications such as CISSP, CCSP, or AWS Advanced Security Specialty.
Prior experience supporting DoD or Intelligence Community (IC) programs.
Experience providing technical leadership and oversight of teams of junior, intermediate, and senior engineers.
#J-18808-Ljbffr