Information Security Architect 4

United Launch Alliance
Centennial, United States of America
8 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Senior
Compensation
$ 220K

Job location

Centennial, United States of America

Tech stack

Kubernetes Security
Artificial Intelligence
Amazon Web Services (AWS)
Azure
Cloud Computing
Cloud Computing Security
Computer Security
Data Security
Identity and Access Management
Information Systems Security Architecture Professional
Network Security
Openshift
Zero Trust Network Access
Security Information and Event Management
Large Language Models
Containerization
Kubernetes
Machine Learning Operations
Devsecops
Api Management
Key Vault
Plan of Action and Milestones
Vulnerability Analysis

Job description

The architect will work closely with system owners, GRC teams, and mission stakeholders to ensure compliance with frameworks such as CNSSI 1253, NIST SP 800171, NIST SP 800172, and ISO/IEC 27001:2022 while enabling scalable, resilient, and modern security capabilities., * Design and implement security architectures for onprem, cloud (AWS/Azure), hybrid, and edge environments supporting A&D mission systems.

  • Engineer secure configurations aligned with CNSSI 1253, 80053/171/172, and ISO 27001:2022 controls.
  • Develop and maintain security technical implementation guides (STIGs), hardening standards, baselines, and IaCbased secure configurations.
  • Support the buildout of Zero Trust capabilities, including identity, microsegmentation, continuous monitoring, and datacentric security models.
  • Support implementation of security tooling such as SIEM, EDR/XDR, vulnerability scanning, compliance automation, and cloudnative security services.
  • Architect secure data pipelines, API integrations, and containerized workloads using Kubernetes/OpenShift or similar platforms.
  • Design security controls for AI, ML, and LLMbased systems, focusing on data privacy, model integrity, secure MLOps, and adversarial threat mitigation.
  • Implement cloud security technologies such as KMS, IAM, Key Vault/Secrets Manager, network security groups, CNAPP, and other cloudnative security tools.
  • Collaborate with GRC and RMF teams to support SSP development, POA&M remediation, system authorizations, and continuous monitoring.
  • Identify and remediate vulnerabilities, misconfigurations, and architectural risks across complex mission systems.
  • Participate in incident response efforts by providing technical expertise and performing deepdive engineering analysis.

Requirements

Minimum of 6 years of related work experience, * Bachelor's degree in a STEM (Science, Technology, Engineering, Mathematics) field from an accredited college or university

  • Four years of directly related exempt work experience may be used to satisfy the bachelor's degree requirement
  • Experience building or maintaining secure cloud architecture (AWS, Azure)
  • Understanding of NIST SP 80053, 800171/172, CNSSI 1253, and/or ISO 27001 technical security controls
  • Handson experience with security tools such as SIEM, EDR, CNAPP, vulnerability scanners, or infrastructureascode frameworks
  • Strong understanding of network security, identity management, and system hardening principles in a hybrid onsite/cloud environment, * Experience supporting A&D, DoD, IC, or other highly regulated environments
  • Experience designing and securing AI/ML workloads, LLM integrations, or model deployment pipelines
  • Certifications such as CISSP, CCSP, CEH, GSEC, GCSA, AWS/Azure Security Specialty, or equivalent
  • Experience with Kubernetes security, container hardening, and supplychain security practices
  • Knowledge of secure DevSecOps processes, CI/CD pipelines, and automated compliance tooling

Benefits & conditions

We offer our employees competitive pay and benefits including:

  • 401(k) match plus an additional employer contribution
  • Discretionary annual incentive bonus for eligible employees
  • Generous paid time off
  • Flexible work environments

Additionally, most salaried ULA team members work a "9/80 schedule," meaning they enjoy every other Friday off.

Benefits and work schedules may vary for union-represented hourly positions and are described in the applicable collective bargaining agreement.

About the company

ULA is a participant in the federal E-Verify Program. Posters in PDF format pertaining to this program can be accessed by clicking on the links identified below. E-Verify Participation poster (English / Spanish) and Right to Work Poster (English / Spanish). Colorado Equal Pay for Equal Work Act requires covered employees to follow a post selection notification process. A hired candidate may opt out of this process by notifying the hiring manager in writing at the time the offer is accepted ULA is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, national origin, disability, protected veteran status or any other categories protected by law.

Apply for this position