Salesforce Admin

CI/CD, JFrog Splunk Github GitOps On Prem Planning MuleSoft Equities CyberArk Terraform SonarQube DevSecOps Toolchain Dynatrace HashiCorp Pipelines Operations Leadership Management Automation Governance Resilience Salesforce Kubernetes ServiceNow Middleware Peer Review Market Data Multi-Cloud NIST 800-37 Artifactory NIST 800-53 Coordinating Cryptography Quality Gate Azure Policy Observability Apache JMeter Azure Monitor GitHub Copilot Test Automation Microsoft Azure Law Enforcement Ancient History Computer Science SAP Applications Code Enforcement Docker (Software) Appian (Software) Container Security Endevor (Software) Workflow Management Amazon Web Services Information Systems Evidence Collection Selenium (Software) Technical Authority Computer Engineering Solution Architecture Cloud-Native Computing Electrical Engineering Oracle WebLogic Server Artificial Intelligence Enterprise Architecture PeopleSoft Applications Event-Driven Programming Microsoft Power Platform Infrastructure Automation Software As A Service (SaaS) Playwright (Software Testing) Architecture Decision Records IBM Websphere Application Server Application Programming Interface (API) Static Application Security Testing (SAST) Certified Information System Auditor (CISA) Dynamic Application Security Testing (DAST) Federal Information Security Management Act Certified Cloud Security Professional (CCSP) AWS Certified Solutions Architect Professional Federal Information Processing Standards (FIPS) Certified Information Systems Security Professional Microsoft Certified: Azure Solutions Architect Expert, The Solutions Architect is a Key Personnel role on the FDIC Enterprise DevSecOps program, supporting the client's CIO organization (CIOO). The architect owns the target-state design of the FDIC DevSecOps platform - a hybrid estate spanning Azure/AKS, AWS, mainframe z/OS/Endevor, and enterprise middleware (WebLogic/WebSphere, Oracle, PeopleSoft, SAP, MuleSoft, Appian, Salesforce, Power Platform) across a large, complex enterprise DevSecOps environment at DevSecOps maturity Level 2 of 5. The architect translates FDIC Enterprise Architecture (EA) directives and enterprise architecture governance requirements into actionable, repeatable platform blueprints that enable development teams to ship securely with minimal client intervention. This role demands recent, hands-on design authority over the exact FDIC self-managed toolchain - GitHub Enterprise Server, GitHub Cloud/Actions, GitHub Advanced Security (GHAS), JFrog Artifactory/Xray, SonarQube, and Subject7 on Azure/AKS - and a, * Platform Architecture and Target-State Design

• Own the DevSecOps platform architecture across the FDIC hybrid estate (Azure primary - AKS, ACR, App Gateway, Key Vault; plus AWS, mainframe z/OS/Endevor, WebLogic/WebSphere, Oracle, PeopleSoft, SAP Data Services, MuleSoft, Appian, Salesforce, Power Platform); produce and maintain Architecture Decision Records (ADRs) aligned to FDIC target-state EA.
• Design self-managed platform deployments for JFrog Artifactory/Xray, SonarQube, GitHub Enterprise Server (GHES), GitHub Advanced Security (GHAS)/CodeQL, and Subject7 on AKS; define upgrade paths under the n/n-1 version strategy.
• Establish immutable-infrastructure and GitOps patterns (Flux, Helm) for the AKS platform; author Terraform IaC modules and Bicep templates for repeatable, policy-compliant provisioning across Azure and AWS landing zones.
• Design pipeline architecture for a large CI/CD pipeline estate (GitHub Actions; on-prem, cloud, hybrid, multicloud patterns), integrating blocking security gates: SAST/SCA on Critical/High, IaC scan on Critical, DAST on Critical, container scan on Critical/High, SonarQube quality gate on fail.
• Define architecture for GitHub Copilot (SaaS) integration and AI-assisted development workflows within FDIC compliance constraints.
• Security Architecture and Zero Trust
• Architect Zero Trust controls aligned to OMB M-22-09 and CISA ZTMM 2.0 at Optimal maturity; map identity (Entra/CyberArk), device, network, application, and data pillars to the DevSecOps toolchain.
• Design policy-as-code enforcement (OPA/Gatekeeper, Azure Policy) for Kubernetes admission control and IaC guardrails; ensure CyberArk and Azure Key Vault secrets management patterns meet FIPS 140-2/3 and PQC (FIPS 203/204/205) requirements.
• Define cATO (continuous ATO) architecture: continuous compliance monitoring via Splunk and DynaTrace, automated evidence collection, and alignment to NIST 800-37/800-53/800-88/800-207 control families for FISMA-moderate boundary.
• Establish container security architecture integrating Aqua, Trivy, Trufflehog, and GHAS/CodeQL scanning into build and release pipelines; ensure secrets + peer-review gates at Develop stage are architecturally enforced.
• Lead architecture reviews through enterprise architecture and change governance boards (EA fitness gate), CCB, ISSM/ISSO, and OCISO coordination bodies; produce fitness-gate artifacts that prevent rework.
• Hybrid and Mainframe Integration Architecture
• Design integration patterns connecting Azure/AKS cloud pipelines to mainframe z/OS/Endevor build and deploy workflows; ensure CI/CD coverage spans both cloud and mainframe application portfolios within the full enterprise application scope.
• Architect API and event-driven integration patterns for MuleSoft, Appian, Salesforce, and Power Platform workloads; define DevSecOps onboarding playbooks for each platform tier.
• Produce reference architectures for WebLogic/WebSphere, Oracle, PeopleSoft, and SAP Data Services application pipelines, covering build, scan, test (Selenium/Playwright/JMeter/Subject7), and release stages.
• SLA, Observability, and Reliability Architecture
• Architect the observability stack (Splunk, DynaTrace, Azure Monitor) to enforce >99.5% availability SLAs for the 83 Mission Essential/Critical applications and Critical/High security-finding remediation within <=30 days and Moderate within <=90 days.
• Design capacity and resilience patterns for AKS clusters and self-managed tool infrastructure to absorb high volumes of ServiceNow requests without degradation.
• Technical Leadership and Governance
• Serve as the technical authority and primary architect point of contact for FDIC, resolving architecture ambiguities autonomously to minimize client intervention.
• Lead architecture working sessions, produce decision briefs for enterprise architecture and change governance boards and OCISO, and ensure all platform changes pass EA fitness gates before implementation.
• Mentor senior engineers and DevSecOps leads on architecture patterns, IaC standards, and secure-by-default pipeline design.
• Author and maintain architecture runbooks, pattern libraries, and design standards that become the program's shared engineering baseline., Bethesda, MD*On-Site DoDAF Genesys Innovation Zachman Framework Rational Rhapsody Systems Engineering Time Off Management Value-Added Services Enterprise Architecture Systems Modeling Language Unified Modeling Language Employee Assistance Programs Continuous Improvement Process Model Based Systems Engineering The Open Group Architecture Framework (TOGAF) Top Secret-Sensitive Compartmented Information (TS/SCI Clearance) +0

Google Business Intelligence

Salesforce Admin Enterprise Architect V2X Bethesda, MD*On-Site DoDAF Genesys Innovation Zachman Framework Rational Rhapsody Systems Engineering Time Off Management Value-Added Services Enterprise Architecture Systems Modeling Language Unified Modeling Language Employee Assistance Programs Continuous Improvement Process Model Based Systems Engineering The Open Group Architecture Framework (TOGAF) Top Secret-Sensitive Compartmented Information (TS/SCI Clearance) +0

Google Business Intelligence

Salesforce Admin Systems Architect Leidos Odenton, MD*On-Site Refining Equities Leadership Management Checklists Scalability Market Data Coordinating Communication Microsoft Teams Change Advisory Ancient History Microsoft Office

demonstrated ability to harden that platform to FISMA-moderate, NIST 800-53/800-207, OMB M-22-09, and CISA Zero Trust Maturity Model 2.0 (target: Optimal) standards., * Bachelor's degree in Computer Science, Computer Engineering, Information Systems, Electrical Engineering, or a closely related technical discipline. In lieu of degree, additional years experience may be required.

• Must be able to obtain and maintain a Public Trust clearance.
• Minimum 12 years of progressive IT experience with at least 5 years in senior solution/enterprise architecture roles (or a Master's degree with 10 years).
• Demonstrated hands-on architecture ownership (current experience, typically within the past 1-2 years) of a self-managed GitHub Enterprise Server (GHES) and GitHub Cloud/Actions environment at enterprise scale (hundreds of repositories and active pipelines).
• Recent, hands-on experience designing and operating JFrog Artifactory/Xray, SonarQube, and GitHub Advanced Security (GHAS)/CodeQL as self-managed, AKS-hosted services - not SaaS consumption only.
• Proven, recent experience authoring production-grade Terraform IaC modules and Kubernetes/AKS manifests for a regulated federal or financial-sector environment; immutable infrastructure and policy-as-code patterns required.
• Experience leading architecture through formal EA governance bodies (equivalent to enterprise architecture fitness-gate boards, CCB, or ATO boards) in a FISMA-moderate or higher environment.
• Recent architecture experience integrating CI/CD pipelines across a hybrid estate that includes both cloud-native AKS workloads and mainframe or host-based build/deploy environments (z/OS, Endevor, or equivalent); candidate must demonstrate design authority over both sides of the hybrid boundary, not cloud-only coverage.
• GitHub Enterprise Server (self-managed), GitHub Cloud, GitHub Actions, GitHub Advanced Security (GHAS), CodeQL, GitHub Copilot
• JFrog Artifactory / Xray, SonarQube, Aqua, Trivy, Trufflehog (self-managed, AKS-hosted deployment and operations)
• Azure: AKS, ACR, App Gateway, Key Vault, Azure Policy, Azure Monitor; AWS: integration and landing-zone patterns
• Terraform IaC, Bicep, Packer; Helm, Flux (GitOps); Docker; Kubernetes (AKS)
• Policy-as-code: OPA/Gatekeeper, Azure Policy, admission controller patterns
• NIST 800-53 / 800-207, OMB M-22-09, CISA ZTMM 2.0, FISMA-moderate, FIPS 140-2/3
• CyberArk, Azure Key Vault secrets management; FIPS 140-2/3 cryptographic boundaries
• Splunk, DynaTrace, Azure Monitor for observability and compliance evidence collection

PREFERRED QUALIFICATIONS

• Certifications (strongly preferred)
• Microsoft Certified: Azure Solutions Architect Expert (AZ-305) - active
• AWS Certified Solutions Architect - Professional - active
• Certified Kubernetes Administrator (CKA) or Certified Kubernetes Application Developer (CKAD)
• CISSP (Certified Information Systems Security Professional) or CCSP (Certified Cloud Security Professional)
• HashiCorp Terraform Associate (003) or HashiCorp Infrastructure Automation Certification
• Experience Differentiators
• Architecture experience at enterprise scale across hybrid on-prem and multi-cloud environments.
• Hands-on design of CI/CD pipeline architectures covering mainframe (z/OS, Endevor) alongside cloud-native AKS workloads in the same DevSecOps platform.
• Experience designing Subject7 test automation platform deployment and integration within a DevSecOps pipeline (alongside Selenium, Playwright, JMeter).
• Architecture ownership for enterprise middleware platforms in a DevSecOps context: MuleSoft, WebLogic/WebSphere, Oracle, PeopleSoft, SAP Data Services.
• cATO architecture and continuous compliance automation in a FISMA-moderate boundary; experience producing evidence packages accepted by an ISSM/ISSO without rework.
• Experience with PQC migration planning (FIPS 203/204/205) and FIPS 140-3 cryptographic module selection.
• 12 CFR 366 (FDIC contractor conduct standards) or equivalent financial-regulator contractor compliance experience.
• Section 508 architecture patterns for enterprise web and portal applications., Computer Science Command Controls Agile Methodology Change Management Strategy Execution Workflow Management Systems Engineering Workflow Automation Microsoft SharePoint Performance Analysis Systems Architecture Functional Requirement Collaborative Software Communications Systems Technical Documentation Enterprise Architecture Configuration Management Engineering Change Order Federated Database Systems Continuous Improvement Process Top Secret-Sensitive Compartmented Information (TS/SCI Clearance) +0

Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available at www.leidos.com/careers/pay-benefits .

If you're looking for comfort, keep scrolling. At Leidos, we outthink, outbuild, and outpace the status quo - because the mission demands it. We're not hiring followers. We're recruiting the ones who disrupt, provoke, and refuse to fail. Step 10 is ancient history. We're already at step 30 - and moving faster than anyone else dares., Leidos is an industry and technology leader serving government and commercial customers with smarter, more efficient digital and mission innovations. Headquartered in Reston, Virginia, with 47,000 global employees, Leidos reported annual revenues of approximately $16.7 billion for the fiscal year ended January 3, 2025. For more information, visit www.Leidos.com .