Senior Cybersecurity Architect
Role details
Job location
Tech stack
Job description
The Defense Sector at Leidos is looking for a Senior Cybersecurity Architect to support a fast-paced program with Air Force Life Cycle Management Center. The Senior Cybersecurity Architect will provide comprehensive subject matter expertise and execution of cybersecurity engineering and architecture functions in support of a weapons system program with the Air Force. This role is critical in ensuring the security and integrity of program IT infrastructure, protecting sensitive data, and mitigating cyber threats. The Senior Cybersecurity Architect will be an integral member of the program's leadership team, collaborating on strategic initiatives and ensuring alignment with overall program goals. The ideal candidate will have a strong technical background in cybersecurity principles, tools, and best practices.
As the Senior Cybersecurity Architect, you will lead the design, implementation, and governance of security solutions across our enterprise environments. This role is pivotal in ensuring the confidentiality, integrity, and availability of both on-premises and cloud-hosted assets while enabling secure innovation at scale by working closely with cloud engineers, cybersecurity analysts, and program leadership to drive continuous improvement and deliver value to the mission.
Why This Role Matters
Security and compliance in defense-sector classified networks have long lived in a structural paradox: the processes designed to protect mission software are the same processes that slow it down. Manual authorization cycles. Point-in-time snapshots. Documentation that proves intent but not execution. Every program team re-solves the same compliance problems. Every platform that wants to help them has to run the gauntlet first.
What you'll build isn't a workaround. It's a better architecture: policy-as-code that enforces compliance at the moment of deployment, zero-trust built-in to system design from day one, continuous evidence that gives auditors real-time proof instead of point-in-time packages, and an ATO that program teams can inherit rather than pursue. The result is a security posture that's stronger than manual review, stricter, and more consistent. You are here to build the foundational cybersecurity architecture that the program can scale and replicate across multiple environments.
Primary Responsibilities:
- Develop and implement enterprise-level cybersecurity strategies aligned with DoD and Federal security guidelines.
- Ensure selected technologies and architecture designs are resilient to modern cyber threats.
- Architect and implement secure cloud infrastructure across platforms.
- Define and enforce cloud security policies, standards, and automation frameworks.
- Support timely completion of Authorization to Operate (ATO) activities across multiple environments at various classification levels.
- Integrate security into CI/CD pipelines and DevOps workflows.
- Support cloud identity and access management (ICAM), encryption, and key management systems.
- Configure, tune, and monitor enterprise security tools.
- Monitor network and system security to identify and respond to vulnerabilities and incidents.
- Conduct risk assessments and develop strategies to mitigate identified risks.
- Collaborate with IT teams to ensure the integration of security measures into all infrastructure projects.
- Develop and implement security policies, standards, and procedures to protect sensitive information.
- Provide technical support and guidance on cybersecurity tools and technologies.
- Stay updated on emerging cybersecurity threats and industry trends to enhance the organization's security posture.
- Develop and refine documentation to gain and maintain DoD accreditation for the systems on the program.
- Participate in the Change Control Board (CCB) process for supporting all major engineering milestones and decisions for the program.
Requirements
- Bachelor's Degree with 12+ years of experience or Master's Degree with 10+ years of experience. Additional equivalent industry experience in lieu of education will be considered.
- US Citizen with at least an active Top Secret clearance and the ability to obtain and maintain an SCI prior to your start date.
- Proven experience in cybersecurity engineering or related roles.
- Hands-on experience with configuring cybersecurity tools and software for enterprise use, with a specific focus on Splunk (Enterprise Security, SOAR, UBA), HBSS/ESS (Trellix ePO), ACAS (Tenable/Nessus), and SolarWinds Observability
- Familiarity with DoD cybersecurity frameworks such as Risk Management Framework (RMF)
- Strong knowledge of network security, firewalls, intrusion detection/prevention systems, and encryption technologies.
- Excellent problem-solving skills and attention to detail.
- Strong communication skills for collaborating with technical and non-technical stakeholders.
- DoD 8140 advanced certifications (CISM, CISSP, ISSAP)
Preferred Qualifications:
- Project Management Certifications (PMP, ISSMP, etc.)
- Microsoft Azure Certifications (AZ-500, AZ-305, etc.)
- Working knowledge of cloud security and securing cloud-based infrastructure.
- Experience with Azure Stack Hub/Azure Local family of products
- Experience securing classified DoD networks, such as networks connected to SIPR or JWICS
- Familiarity with incident response processes and tools.
- Experience with scripting or automation tools for security tasks.
- Ability to work in a dynamic environment and adapt to changing priorities.
- Experience with Agile framework and DevSecOps
Benefits & conditions
Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available at www.leidos.com/careers/pay-benefits .