Cloud Security Architect jobs in United States
cer-icon
Apply on Employer Site
company-logo

BigBear.ai · 19 hours ago

Cloud Security Architect

positionAnnapolis Junction, MD
timeFull-time
remoteOnsite
senioritySenior Level, Lead/Staff
date10+ years exp

BigBear.ai is a leading provider of AI-powered decision intelligence solutions for national security, supply chain management, and digital identity. They are seeking a Cloud Security Architect to design and implement secure cloud architectures that support an ATO Automation Platform deployment while ensuring compliance with federal security requirements.

Artificial Intelligence (AI)GovernmentInformation TechnologyMachine LearningNational SecurityService Industry
badNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Design secure reference architectures for deploying an ATO Automation Platform in AWS GovCloud, Azure Government, and on-premises environments
Implement secure API integrations between the ATO Automation Platform and cloud service provider platforms for real-time configuration analysis
Configure cloud security services (AWS GuardDuty, Azure Security Center) to feed security findings into the ATO Automation Platform’s compliance monitoring
Establish security boundaries and authorization scopes for systems under the ATO Automation Platform’s management
Implement data protection controls including encryption at rest and in transit for compliance artifacts processed by the ATO Automation Platform
Design network security architectures supporting the ATO Automation Platform deployment in classified environments
Conduct security assessments of an ATO Automation Platform components and validate compliance with customer security overlays
Develop cloud infrastructure-as-code templates that incorporate security controls mappable by the ATO Automation Platform
Design AWS GovCloud reference architecture for deploying the ATO Automation Platform in FedRAMP High environment with appropriate VPC segmentation and encryption
Configure the ATO Automation Platform’s integration with Azure Government APIs to enable automated analysis of NSG rules and Key Vault configurations
Implement cross-account IAM roles enabling the ATO Automation Platform to perform read-only assessments of 50+ AWS accounts across an agency
Design hybrid cloud architecture supporting the ATO Automation Platform deployment for systems spanning on-premises data centers and commercial cloud
Conduct security assessment of the ATO Automation Platform’s LLM processing to ensure compliance with agency data handling requirements

Qualification

Cloud security architecturesAWS GovCloudAzure GovernmentFedRAMP authorizationCloud IAM designNetwork security architectureEncryption technologiesAPI securityCloud compliance frameworksInfrastructure as CodeZero-trust architectureContainer securityCompliance automationTechnical concentration degreeSoft skills

Required

Bachelor's Degree with a Technical concentration with at least 10 years of professional experience
TS/SCI with an active Poly clearance
Deep expertise in cloud security architectures across AWS GovCloud and Azure Government
Strong understanding of cloud security services and compliance capabilities
Experience with FedRAMP authorization processes and cloud security requirements
Proficiency in cloud IAM design and least-privilege access models
Knowledge of network security architecture including VPCs, security groups, and network segmentation
Experience with encryption technologies and key management services
Understanding of API security and secure integration patterns
Familiarity with cloud compliance frameworks (AWS Security Best Practices, Azure Security Benchmark)

Preferred

Experience deploying security platforms in classified cloud environments (AWS Secret/Top Secret regions, Azure Government Secret)
Knowledge of DoD Cloud Computing Security Requirements Guide (SRG) implementation
Prior experience with compliance automation platform deployments
Certifications: AWS Certified Security Specialty, Azure Security Engineer Associate, CCSP (Certified Cloud Security Professional)
Understanding of zero-trust architecture principles and implementation
Experience with Infrastructure as Code security scanning (Checkov, tfsec, Terrascan)
Familiarity with container security in cloud environments
Background in federal cloud migration projects and Cloud Smart strategy

Company

BigBear.ai

twittertwittertwitter
company-logo
BigBear.ai's mission is to deliver clarity for the world's most complex decisions.
dateFounded in 2020
location
Fairfax, Virginia, USA
people-size501-1000 employees
web-link
https://www.bigbear.ai

Funding

Current Stage
Public Company
Total Funding
$225M
2023-01-17Post Ipo Equity· $25M
2021-12-08Post Ipo Debt· $200M
2021-12-08IPO

Leadership Team

leader-logo
Sean Ricker
Chief Financial Officer
linkedin

Recent News

The Motley Fool
Huge News: BigBear.ai Eliminates Debt and Resets the Story
2026-01-16
Morningstar.com
BigBear.ai Partners with the Kraft Group and New England Patriots to Drive Digital Transformation Efficiencies
2026-01-11
thefly.com
BigBear.ai forms AI-driven partnership with Kraft Group and Patriots
2026-01-11
Company data provided by crunchbase