Sr. Advisory Security Architect
FTI Defense - Frontier Technology Inc. · Huntsville, AL · 1 wk ago
On-siteInformation TechnologyFull-time
Responsibilities
- Architect, design, and implement secure infrastructure solutions across Windows, RHEL Linux, virtualization, storage, and networking technologies in classified environments.
- Develop cybersecurity and infrastructure architectures from concept through deployment, integrating security controls, systems hardening, and DISA STIG compliance.
- Carry out architecture assessments to identify risks, gaps, and mitigation strategies; ensure designs support mission needs, scalability, resilience, and operational readiness.
- Lead RMF and ATO-aligned systems engineering activities, including compliant infrastructure design, control implementation, documentation, and remediation.
- Design secure network segmentation, access control strategies, virtualization architectures, and system integration approaches.
- Implement centralized logging, monitoring, auditing, and SIEM solutions to enhance visibility and security posture.
- Support resilience initiatives through backup, recovery, failover, and continuity architecture for mission-critical systems.
- Develop technical architecture documentation, infrastructure standards, and repeatable deployment processes.
- Collaborate closely with engineering, cybersecurity, ISSO, and mission teams to drive secure, integrated infrastructure solutions and modernization initiatives.
- Provide technical leadership during architecture reviews, incident investigations, and complex implementation efforts.
Requirements
- Must be a U.S. Citizen with an active U.S. Dept. of Defense Secret clearance (minimum), must also be TS/SCI eligible.
- Ability to travel up to 50%.
- BS in IT, Cybersecurity, Computer Science, Information Systems, Data Science, or Software Engineering.
- 6+ years of experience in enterprise infrastructure or security architecture within DoD or classified environments.
- Demonstrated experience designing secure enterprise infrastructure and supporting RMF/ATO accreditation.
- Expertise in secure Windows, RHEL Linux, enterprise virtualization, network segmentation, and infrastructure engineering.
- Strong understanding of networking, systems architecture, security integration, and risk mitigation.
- Proficiency with DISA STIGs, systems hardening, and security compliance.
- Experience designing or integrating SIEM and enterprise monitoring solutions.
- Ability to develop technical documentation and independently drive technical decisions.
- CompTIA CASP+, CISSP, or equivalent DoD 8140 DCWF 652 Intermediate certification.
Qualifications
- Required: Must be a U.S. Citizen with an active U.S. Dept. of Defense Secret clearance (minimum), must also be TS/SCI eligible.
- Preferred: Experience as a Security Architect, Systems Engineer, Infrastructure Engineer, or Enterprise Architect in DoD environments.
- Preferred: Experience supporting Navy mission systems, classified enclaves, or enterprise mission infrastructure.
- Preferred: Familiarity with OT, weapon systems, proprietary software integration, and RDT&E network environments.
- Preferred: Experience with VMware, Hyper-V, Nutanix, or similar enterprise virtualization platforms.
- Preferred: Experience leading greenfield infrastructure deployments.
- Preferred: GIAC GDSA, GICSP, ISC2 ISSAP, or other DoD 8140 DCWF 652 Advanced certification.
- Preferred: Expertise in Zero Trust architecture design and implementation for DoD agencies.