Data Security Architect, Zero Trust (TS/SCI) jobs in United States
cer-icon
Apply on Employer Site
company-logo

Kentro ยท 2 weeks ago

Data Security Architect, Zero Trust (TS/SCI)

positionTampa, FL
timeFull-time
remoteOnsite
senioritySenior Level, Lead/Staff
date15+ years exp

Kentro is a company dedicated to innovation and collaboration, seeking a Data Security Architect to lead the technical authority for the USSOCOM Zero Trust Data Visibility, Labeling, and Governance program. This role involves defining the enterprise-wide data strategy and ensuring compliance with Zero Trust principles across various networks.

Information Technology & Services
badNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Enterprise Architecture Strategy: Serve as the Technical Authority for the Data Pillar, defining the high-level architecture for data discovery, classification, and protection across NIPR, SIPR, and Top Secret networks
Metadata & Taxonomy Design: Define and enforce the enterprise data taxonomy and metadata schemas (specifically adhering to NIST 8112) to standardize how "Trust Attributes" (Pedigree, Verifier, Assurance Level) are ingested and utilized for ABAC decisions
Cross-Enclave Integration: Ensure architectural consistency between the cloud-native NIPR stack (Microsoft Purview/Sentinel) and the on-premise SIPR/Top Secret stacks (BigID, Kiteworks, NetApp BlueXP), ensuring policy logic remains uniform even when tools differ
ABAC & Identity Integration: Design the integration points between the Data Pillar and the ICAM Pillar, defining the requirements for how User Attributes from SailPoint and Entra ID are consumed by Policy Decision Points (PDPs) like Kiteworks and Purview
Standards & Compliance: Lead the development of System Design Documents (SDDs) and validate that all architecture aligns with the USSOCOM Zero Trust Reference Architecture and DoD 8140/8570 compliance requirements

Qualification

Zero Trust ArchitectureAttribute-Based Access ControlMicrosoft PurviewData Security ArchitectureNIST 8112BigIDCISSPCloud Security CertificationTechnical LeadershipCommunication Skills

Required

Master's degree (MA/MS) in Computer Science, Information Security / Cybersecurity, Information Systems, Data Science, or a closely related technical field
15+ years of relevant experience
Extensive experience acting as an Architect or Lead Engineer for large-scale DoD or Federal enterprise security transformations
Deep expertise in Zero Trust Architecture principles, specifically Data Object-Level Protection (DOLP) and Attribute-Based Access Control (ABAC)
Proven experience designing architectures that utilize Microsoft Purview (Information Protection/DLP) and Digital Rights Management (DRM) technologies (e.g., Kiteworks, Virtru)
Ability to design security solutions for Disconnected, Degraded, Intermittent, and Limited Bandwidth (DDIL) and air-gapped environments
Required: IAT III: CISSP-ISSEP (Information Systems Security Engineering Professional) OR CISSP
DoD 8570 Compliance: Must meet IAT Level III and IASAE II requirements
Active Top-Secret clearance with SCI eligibility

Preferred

Experience with BigID for data discovery and NetApp BlueXP for storage-level classification
Knowledge of NIST Internal Report 8112 (Attribute Metadata) and its application to identity-centric security
Background in supporting USSOCOM or Special Operations Forces (SOF) missions

Benefits

Paid time off
Healthcare benefits
Supplemental benefits
401k including an employer match
Discount perks
Rewards
Education reimbursement for certifications, degrees, or professional development

Company

Kentro

twitter
company-logo
IT Concepts has transformed into Kentro - your center for innovation, excellence, and growth.
location
McLean, Virginia, US
people-size501-1000 employees
web-link
http://www.kentro.us

Funding

Current Stage
Late Stage
Company data provided by crunchbase