Information Security Architect 4
Role details
Job location
Tech stack
Job description
The architect will work closely with system owners, GRC teams, and mission stakeholders to ensure compliance with frameworks such as CNSSI 1253, NIST SP 800171, NIST SP 800172, and ISO/IEC 27001:2022 while enabling scalable, resilient, and modern security capabilities., * Design and implement security architectures for onprem, cloud (AWS/Azure), hybrid, and edge environments supporting A&D mission systems.
- Engineer secure configurations aligned with CNSSI 1253, 80053/171/172, and ISO 27001:2022 controls.
- Develop and maintain security technical implementation guides (STIGs), hardening standards, baselines, and IaCbased secure configurations.
- Support the buildout of Zero Trust capabilities, including identity, microsegmentation, continuous monitoring, and datacentric security models.
- Support implementation of security tooling such as SIEM, EDR/XDR, vulnerability scanning, compliance automation, and cloudnative security services.
- Architect secure data pipelines, API integrations, and containerized workloads using Kubernetes/OpenShift or similar platforms.
- Design security controls for AI, ML, and LLMbased systems, focusing on data privacy, model integrity, secure MLOps, and adversarial threat mitigation.
- Implement cloud security technologies such as KMS, IAM, Key Vault/Secrets Manager, network security groups, CNAPP, and other cloudnative security tools.
- Collaborate with GRC and RMF teams to support SSP development, POA&M remediation, system authorizations, and continuous monitoring.
- Identify and remediate vulnerabilities, misconfigurations, and architectural risks across complex mission systems.
- Participate in incident response efforts by providing technical expertise and performing deepdive engineering analysis.
Requirements
Minimum of 6 years of related work experience, * Bachelor's degree in a STEM (Science, Technology, Engineering, Mathematics) field from an accredited college or university
- Four years of directly related exempt work experience may be used to satisfy the bachelor's degree requirement
- Experience building or maintaining secure cloud architecture (AWS, Azure)
- Understanding of NIST SP 80053, 800171/172, CNSSI 1253, and/or ISO 27001 technical security controls
- Handson experience with security tools such as SIEM, EDR, CNAPP, vulnerability scanners, or infrastructureascode frameworks
- Strong understanding of network security, identity management, and system hardening principles in a hybrid onsite/cloud environment, * Experience supporting A&D, DoD, IC, or other highly regulated environments
- Experience designing and securing AI/ML workloads, LLM integrations, or model deployment pipelines
- Certifications such as CISSP, CCSP, CEH, GSEC, GCSA, AWS/Azure Security Specialty, or equivalent
- Experience with Kubernetes security, container hardening, and supplychain security practices
- Knowledge of secure DevSecOps processes, CI/CD pipelines, and automated compliance tooling
Benefits & conditions
We offer our employees competitive pay and benefits including:
- 401(k) match plus an additional employer contribution
- Discretionary annual incentive bonus for eligible employees
- Generous paid time off
- Flexible work environments
Additionally, most salaried ULA team members work a "9/80 schedule," meaning they enjoy every other Friday off.
Benefits and work schedules may vary for union-represented hourly positions and are described in the applicable collective bargaining agreement.