Cloud Network Security Architecture Manager (TIC 3.0)

GDIT has an opportunity for a Cloud Network Security Architecture Manager supporting the Department of Veterans Affairs (VA). This role leads secure network and cloud architecture design, TIC 3.0 modernization, and enterprise gateway operations. The manager partners with stakeholders, guides technology decisions, and ensures security, compliance, and performance across hybrid and multi-cloud environments.

HOW YOU WILL MAKE AN IMPACT

• Partner with internal teams and customer groups to define strategy, design solutions, and support implementation.
• Collaborate with stakeholders and vendors to ensure solutions meet technical and business requirements.
• Communicate technical status, risks, and impacts to leadership and customers.
• Evaluate new technologies, perform pilots, assess vendors, and recommend solutions.
• Resolve escalations by analyzing issues, providing guidance, and implementing fixes.
• Mentor engineering staff on key technologies and processes.
• Develop and execute test plans to validate solutions.
• Establish timelines, coordinate delivery, and support budgeting decisions.
• Write functional and technical requirements and solution documentation.
• Stay current on cloud, security, and network technology trends.
• Support selection, implementation, and operationalization of new technologies., * Bachelor's Degree or 4+ additional years of experience in lieu of a degree.
• 10+ years in cloud, network, or platform engineering/architecture supporting enterprise-scale environments.
• 3+ years leading AWS/Azure hybrid or multi-cloud environments in regulated or federal settings.
• Experience supporting large federal agencies or customers.
• Support 24×7×365 TIC operations, including critical incident bridge participation.
• Lead TIC 3.0 policy enforcement, DNS filtering, SSL decryption, IPS/IDS signature deployment.
• Manage DHS Cyber Hygiene, ED 19-01, BOD 18-01/19-02 compliance and remediation actions.
• Oversee external connections (BPE/S2S VPN) approval, audits, and configuration lifecycle.
• Deliver required weekly TIC reports, vulnerability rollups, and compliance status updates.
• Lead TIC technical refresh, architecture redesign, and next-generation gateway modernization.

• Experience designing landing zones, secure network/identity patterns, and CI/CD/IaC pipelines.
• Knowledge of NIST 800-53/RMF, Zero Trust, TIC 3.0, FedRAMP services, and continuous monitoring.
• Experience delivering Kubernetes/OpenShift platforms with DR, RTO, and RPO requirements.
• Leadership in multi-vendor/SIAM environments with cross-domain change coordination and incident response.

Technical Skills:

• Cloud Platforms: AWS, Azure, IAM/Entra ID, landing zones, cloud networking, security, monitoring.
• Networking & Identity: VPC/VNet design, hub-and-spoke, SD-WAN, DNS, NAT, firewalls, service mesh, SSO, PIV/FIDO2.
• Automation & Delivery: Terraform, CloudFormation/Bicep, Ansible, Packer, Helm, GitOps, policy as code.
• Containers & Platforms: Kubernetes/OpenShift operations, lifecycle management, security.
• Observability & SRE: OpenTelemetry, Prometheus/Grafana, SIEM/log analytics, SLOs/error budgets.
• Data & Storage: Managed databases, backup/restore, immutability, replication.
• Security & Compliance: CIS/STIGs, vulnerability orchestration, encryption, secrets management.
• Cost & Performance: FinOps fundamentals, autoscaling, rightsizing, performance tuning.

Preferred Certifications:

• AWS Solutions Architect - Professional
• Microsoft Azure Solutions Architect Expert
• VMware Certified Professional / Advanced Professional
• CKA/CKAD or OpenShift Administrator
• HashiCorp Terraform Associate / Authoring and Operations Professional

LOCATION: Hybrid, based out of Martinsburg, WV or Austin, TX.

CLEARANCE: Must be able to obtain and maintain a Public Trust clearance., Years of Experience 10 + years of related experience

• may vary based on technical training, certification(s), or degree

At GDIT, the mission is our purpose, and our people are at the center of everything we do.

• Growth: AI-powered career tool that identifies career steps and learning opportunities
• Support: An internal mobility team focused on helping you achieve your career goals
• Rewards: Comprehensive benefits and wellness packages, 401K with company match, and competitive pay and paid time off
• Community: Award-winning culture of innovation and a military-friendly workplace, The likely salary range for this position is $114,750 - $155,250. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.

We are GDIT. A global technology and professional services company that delivers technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across over 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, cloud, cyber and application development. Together with our customers, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology. Join our Talent Community to stay up to date on our career opportunities and events at gdit.com/tc.