Lead Solutions & Security Architect jobs in United States
cer-icon
Apply on Employer Site
company-logo

Diné Development Corporation · 5 hours ago

Lead Solutions & Security Architect

positionUnited States
timeFull-time
remoteRemote
seniorityLead/Staff
date9+ years exp

Diné Development Corporation is a Navajo Nation owned family of companies that delivers IT, professional, and environmental solutions. They are seeking a Lead Solutions & Security Architect to guide the technical and cybersecurity architecture modernization efforts, ensuring secure and compliant system architecture while leading risk management and Zero Trust implementation.

Executive Office
badNo H1BnoteU.S. Citizen Onlynote

Responsibilities

Lead end-to-end technical architecture for the platform, including application, data, API, and integration layers across the IL5 cloud environment
Define and refine system blueprints aligned with modular microservices, the Strangler Pattern, and Oracle-backed operational data store design to support consolidation of eight disparate legacy subsystems
Drive Zero Trust Architecture implementation including Identity, Credential, and Access Management (ICAM), role-based access control, encryption, and network segmentation
Guide Agile development teams on technical direction, enforce DevSecOps controls, and ensure alignment with containerized delivery in GitLab CI/CD pipelines
Architect and oversee Azure cloud deployments, ensuring secure use of Azure services such as Azure Kubernetes Service (AKS), Azure API Management, Azure Monitor, Azure Key Vault, Azure Storage, and Azure Active Directory (AAD)
Design secure, scalable, and compliant system architecture that meets the requirements for modernizing a system to serve 2.9 million end users
Implement cloud-native enterprise architecture solutions specifically leveraging Microsoft Azure, including IL5-compatible services, Azure PaaS/SaaS capabilities, and Azure Government cloud offerings
Develop long-term cybersecurity strategy, aligning with DoD Zero Trust roadmap and DFARS compliance
Oversee RMF and FISMA compliance efforts including generation and review of the System Security Plan (SSP), Business Impact Analysis (BIA), Contingency Plan (ISCP), and POA&Ms
Conduct architecture and security risk assessments, design mitigation strategies, and lead security reviews during sprint closeouts
Interface with DFAS Cybersecurity teams, DISA, and system owners to support ATO submission and ongoing continuous monitoring
Oversee vulnerability management across development and production environments using Fortify, WebInspect, ACAS, and other approved tools
Collaborate with cross-functional teams including product owners, infrastructure teams, and application developers to validate architecture decisions that meet performance, scalability, and auditability requirements
Ensure proper configuration and governance of Azure cloud resources, including network topology, identity management, cloud security baselines, and logging/monitoring through Azure-native tools

Qualification

Cloud-native architectureDoD cybersecurity frameworksZero Trust implementationAzure cloud deploymentsInfrastructure-as-code toolsCI/CD security integrationData architecture best practicesAnalytical skillsLeadership abilitiesCommunication skillsAdaptability

Required

Bachelor's degree in computer science, Information Systems, Cybersecurity, Engineering, or related technical field (Masters preferred)
9+ years of experience in enterprise solution design and architecture
5+ years of experience in cybersecurity leadership roles
DoD-approved 8140/8570 CISSP/IA System Architecture & Engineering baseline cybersecurity certification
Public Trust / IT II Security clearance eligibility
Expert-level proficiency in cloud-native enterprise architecture, with experience in major cloud platforms (AWS, Azure, GCP)
Hands-on experience architecting, deploying, and securing solutions in Microsoft Azure (Azure Government and/or DoD IL5 environments preferred)
Advanced understanding of service-oriented design and microservices architecture
Experience with containerization and cloud-agnostic deployment strategies
Proficiency in infrastructure-as-code tools such as Terraform, including Azure Resource Manager (ARM) or Bicep templates as a plus
Advanced understanding of Zero Trust Architecture principles, maturity models, and implementation
Expert knowledge of NIST SP 800-53, 800-207, 800-218, and Risk Management Framework (RMF)
Experience with FedRAMP, FISMA, and DoD cybersecurity directives including DoDI 8510.01, 8570.01-M
Working knowledge of ATO documentation, eMASS, audit logging, and system boundary definition
Experience implementing Azure-specific security features including Azure Policy, Azure Security Center/Defender for Cloud, AAD Conditional Access, and Key Vault secrets management, MS Defender for cloud / Sentinel and PIM (Privileged Identity Management)
Proficiency in architecture tools such as CAST Imaging
Experience with CI/CD security integration using tools like Fortify and GitLab
Familiarity with DevSecOps practices and automated security controls
Understanding of API design and integration patterns
Experience using Azure DevOps or GitLab runners deployed within Azure environments is a plus
Familiarity with data architecture best practices and Oracle database systems
Knowledge of SFIS/SLOA compliance requirements
Experience with encryption at rest and in transit implementation
Understanding of data retention policies per NARA requirements
Experience designing data pipelines or data services within Azure (e.g., Azure SQL, Cosmos DB, Azure Data Factory) preferred
Strong leadership abilities with experience guiding technical teams and architecture decisions
Excellent communication skills for interfacing with government stakeholders, cybersecurity teams, and technical staff
Ability to work effectively in fast-paced Agile environments while maintaining security and compliance standards
Strong analytical and problem-solving skills for complex enterprise architecture challenges
Adaptability to evolving security requirements and emerging technologies in government environments

Preferred

Professional certifications such as CCSP, AWS/Azure Solutions Architect, and DoD 8140/8570.01 IASAE Level II or CSSLP Infrastructure Support baseline certification
Azure-specific certifications highly desirable (e.g., Azure Solutions Architect Expert, Azure Security Engineer Associate, Azure Administrator Associate)
Azure security-related certifications highly desirable (e.g., Microsoft Certified Cybersecurity expert, Azure Security Engineer Associate)
Experience with DFAS systems or DoD financial management environments
Knowledge of government pay systems and financial regulations
Experience with Strangler Pattern implementation for legacy system modernization
Familiarity with Oracle database architecture and optimization
Experience working with DISA, DFAS Cybersecurity teams, or similar government cybersecurity organizations
Knowledge of continuous monitoring tools and vulnerability management in government environments
Experience with GitLab CI/CD pipelines and automated security testing integration
Understanding of federal audit requirements and compliance frameworks
Experience leading ATO processes and security documentation development

Company

Diné Development Corporation

twitter
company-logo
Diné Development Corporation (DDC) is a family of companies that delivers IT, engineering, and professional services solutions that solve the dynamic challenges of federal agencies.
dateFounded in 2004
location
Scottsdale, Arizona, US
people-size501-1000 employees
web-link
http://ddc-dine.com/

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Austin Tsosie, MBA
Chief Executive Officer
linkedin
leader-logo
Jacqueline Murray
Chief Operating Officer
linkedin
Company data provided by crunchbase