SECURITY ARCHITECTURE & ENGINEERING SME
Zermount, Inc.
Zermount Inc. is seeking a Cybersecurity Architect & Engineer SME who can create government solutions that will withstand even the most complex of IT and Cyber threats. The SME will support a federal client's enterprise cybersecurity and Continuous Authorization to Operate (cATO) initiative(s). The SME provides technical expertise, architectural recommendations, and engineering oversight across hybrid environments (on‑prem, cloud, and Cloud). The role focuses on designing secure enterprise architectures, engineering automated control assessments and evidence pipelines, and operationalizing zero trust and cATO capabilities. You will coordinate with a dynamic team of thought leaders and experts to determine the right tools and methods to translate your client's IT needs and future goals into a plan that delivers secure and efficient solutions. You will assist the client through a critical approach to innovative solutions design, suggesting alternatives and tweaking capabilities to maintain a balance between security and mission needs. The candidate must have experience in delivering measurable improvements in security posture, automation, and compliance maturity. Duties And Responsibilities Develop, maintain, and evolve the Enterprise Security Reference Architecture (ESRA). Provide architectural input to the organization's Cybersecurity Roadmap and Strategy, addressing: Continuous ATO (cATO) and automated control testing maturity. Cloud security standards, compliance, and improvements to ATO timelines. Cloud monitoring, detection, response, and security operations. Privacy, continuous monitoring, and vulnerability assessment modernization. Integration of security scanning into cloud pipelines. Implementation of EO 14028 (ZTA) and SCRM requirements. Architect and implement continuous monitoring pipelines for automated evidence collection (SIEM, XDR, scanners, cloud APIs, CI/CD). Develop and manage OSCAL profiles, inheritance models, and evidence data contracts. Integrate telemetry and evidence into AO‑grade dashboards. Support ATO intake, assessment workflows, and vulnerability scanning processes. Conduct RMF‑aligned security reviews for compliance and best practices. Develop security architectural patterns that expedite ATO by pre‑meeting control requirements. Collaborate with the Cybersecurity Authorizations & Compliance Branch to design systems supporting cATO, reduce ATO processing times, provide data‑call responses, and participate in working groups. Design and deploy native cloud security services across AWS, Azure, and Google Cloud. Lead the development of enterprise cloud security blueprints, including security in Infrastructure‑as‑Code (IaC) templates. Conduct proofs‑of‑value for cloud‑native, COTS, third‑party, or open‑source security tools. Provide security architecture input for DevSecOps strategy, including vulnerability scanning, automated assessments, and implementation of security controls. Conduct requirements‑gathering sessions and cATO current‑state assessments. Recommend security requirements, architectural direction, and support testing for enterprise initiatives such as: cATO, automated assessments, ZTA, SASE, CASB, SWG, TIC 3.0, ICAM, CMDB, etc. Collaborate with operational teams to improve cloud security monitoring, including ingestion and analysis of API, application, database, and flow logs into SIEM platforms. Support development of cloud event analysis and alert tuning to increase detection fidelity. Identify vulnerabilities across the SDLC and help contain, minimize, and remediate associated risks. Provide system engineering and architectural design support, including: Studies and analyses of operational changes; End‑to‑end architecture trade‑off assessments Development of strategic and tactical plans; Evaluation of new program requirements Research and assessment of new technologies for operational enhancement Conduct architectural risk assessments, threat modeling, and secure design reviews. Support backlog refinement, sprint planning, capacity planning, and retrospectives. Ensure teams deliver high‑value increments meeting the Definition of Done. Facilitate stakeholder collaboration as needed. Requirements High level of attention to detail, needs minimal guidance, effective verbal, and written communications. Adept at both the strategic and operational/technical level. Able to adapt to new and changing requirements / priorities and manage work accordingly. At least 5 years (preferred 10 years) of network, systems, applications experience, in areas such as: LAN/WAN, WAF/CDN/DDOS, Network Firewalls, IDS/IPS, Virtualization, hypervisor security, container security, Application development, serverless security, microservices, CICD. At least 5 years of designing and/or implementing security in Cloud environments (AWS and Azure; GCP is also preferred but not required). Operational experience with the following is preferred. Multi-Cloud, Hybrid Cloud, IaaS, PaaS, SaaS, shared responsibility model. AWS Security Hub, Audit Manager, Config., Guard Duty, CloudTrail, CloudWatch, Lambda. Azure E3/E5, AD, Blob, Azure Security Center, Key Vault, SSE, Monitor, Log Analytics, Policy. Experience with DevSecOps strategy and implementation and designing architecture in accordance to RMF, CSF, FISMA, and Fedramp. Knowledge of ZTA and SASE Framework, ICAM (OKTA), CWPP, SOC Operations, Vulnerability Threat Management, and Compliance.
EDUCATION
Engineering, Computer Science, Information Technology (IT), Cybersecurity, or a similar technical field. The resume may reference another major, so long as the resume is clear that the degree addressed at a minimum one of the following: cyber security engineering, systems administration, information systems security, software development security, systems engineering, information systems or IT.CERTIFICATIONS
The candidate must have a: Certified Information Systems Security Professional (CISSP), and At Least One Of The Following, Or Equivalent Certified Cloud Security Professional (CCSP), AWS Certified Solutions Architect Associate, AWS Certified Security Specialist, Microsoft Azure Solutions Architect, Google Professional Cloud Architect.CLEARANCE
Minimum Background InvestigationLOCATION
Hybrid - Primary location is Alexandria, VA. Remote work is authorized. Occasional travel to the primary location may be required. #J-18808-Ljbffr Zermount, Inc.- Hiring Our Heroes seeks a Cybersecurity Architecture & Engineering Technical SME who will design secure enterprise architectures and implement cloud security solutions. Candidates should possess significant experience in enhancing security posture, with a focus on automation...SuggestedRemote work
$175k - $190k
...technologies, elite talent, and agility. Information System Security Engineer - SME Location: Washington, DC Clearance: TS with ability to... ...consistency. Act as the senior technical authority for security architecture decisions, secure configurations, and remediation...SuggestedTemporary workFor contractors$91.3k - $184.9k
...ingenuity for clients across defense, national security, public safety, civilian, and military... ...! The work The Network security Engineer will be responsible for implementing... ...and provide technical security architecture guidance in the assessment, design and...SuggestedLive inWork at officeLocal area- ...Piper Companies is seeking a Senior Network Security Engineer to support a government-focused organization. This position is onsite... ...designing, implementing, and maintaining advanced network security architectures, with a strong emphasis on Cisco and Juniper technologies....SuggestedFor contractors
$166k - $220k
...Security Engineer Anduril Industries is a defense technology company with a mission to transform U.S. and allied military capabilities... ...this role, you'll design and implement advanced security architecture that protects our global network while serving as a critical...SuggestedFull timeWork experience placementImmediate start$140k - $160k
Edgewater is currently seeking an Application Security Engineer who will be a hands‑on subject‑matter expert in Microsoft Azure cloud technologies, application security, security architectures, security tools, and methodologies. The Application Security Engineer will support...Contract workLocal areaRemote work- A leading technology company located in Washington, DC is seeking a candidate with over 8 years of experience in business analysis and performance testing. The ideal candidate should hold a Bachelor's Degree in a technical field and possess excellent communication and analytical...
- Electrosoft in Washington, DC, is seeking a Security Engineer III to lead enterprise security modernization initiatives and define Zero Trust-aligned architectures. You will provide technical authority for complex security control deployments. The ideal candidate has a...
- Xtreme Solutions Corporate is seeking a Lead Cyber Security Analysis SME to anchor the cybersecurity engineering team supporting the Congressional Budget Office. This senior, hands-on leadership role will own the full security stack and govern government-facing documentation...Work at office
- Abacus Technology is seeking a Cyber Security Engineering SME to provide security and test & evaluation support for the RETS program in Washington, DC. The role is full-time and focuses on maintaining a robust security posture across DoD information systems. The candidate...Full time
- Cyber Security Engineering SME Job Locations: US-DC-Washington Overview Abacus Technology is seeking a Cyber Security Engineering SME to provide security and test and evaluation support for the RDT&E Engineering and Technical Support (RETS) program. This is a full-time...Full time
- Nelson Enterprise Technology Services (NETS) is seeking a Program Analyst SME for Cyber Warfare to provide strategic support and resource management for Cyber and C2 initiatives. The ideal candidate will have at least 15 years of experience and a Bachelor's degree. Responsibilities...Remote job
- ...Incident Response Team (HIRT) secures the nation’s infrastructure.... ...response subject matter expert (SME), applying in-depth knowledge... ...understanding of network architecture/security Experience performing... ..., Cyber Security, Computer Engineering, or related degree; or HS Diploma...Immediate start
$240k - $270k
...and growing industry. Job Description Cybersecurity Engineer - Infrastructure & Endpoint Security Engineer (Tech Lead) Job Family: Cybersecurity Engineering... ...Workstation operational leadership Secure Browsing Architecture: Architect, engineer, and enforce enterprise-wide...Full timeContract workTemporary workWork experience placementWork at officeLocal areaFlexible hours$86.8k - $198k
...Job Number: R0242325 Data Security Engineer The Opportunity: Architect, deploy, and configure data security solutions across various... ...for DoD, IC, and civilian federal clients. Create new architectures to meet client requirements adhering to Zero Trust best practices...Full timeContract workPart timeWork at officeLocal areaRemote work$174k - $239k
Secure Every Identity, from AI to Human Identity is the key to unlocking the potential... .... We are looking for a Staff Software Engineer that will join the Auth0 Security Engineering... ...: Define the security standards for VPC architecture, edge networking, and cross-account...Permanent employmentFull timeLocal areaWorldwideFlexible hours$145k - $192.5k
...Description Bank of America’s Global Information Security (GIS) team is looking for a Cyber Threat Defense AI Security Senior Engineer to lead the integration of advanced AI... ...enhancements to security controls and architecture. Drive the technical implementation of AI...Shift workDay shift- ...you will be instrumental in securing complex systems, conducting... ...assessments, designing secure system architectures, and ensuring compliance... ...in systems security engineering and architecture. Key Responsibilities... ...Serve as the cybersecurity SME, providing guidance to...Full timeRemote work
$146k - $234k
Peraton is seeking a Cybersecurity Engineer (CSfC Specialist) in Washington, DC. The role involves designing, implementing, and maintaining secure communications solutions compliant with NSA CSfC architectures, focusing on modernizing infrastructure and security assessments...$140.5k - $210.5k
...endpoint protection, data analysis platforms, security information and event management (SIEM)... ...an expert understanding of system architecture to identify security weaknesses,... ...assessments to support information security engineering decisions, ensuring Board information and...Work at officeRelocation$140.5k - $210k
...defense in depth solution with a central security information and event management (SIEM)... ...an expert understanding of system architecture and the ability to identify security weaknesses... ...to support information security engineering decisions to ensure Board information and...Full timeWork at office- ...seeking an Apple/macOS Subject Matter Expert (SME) in Washington, DC, responsible for providing advanced engineering and technical support in macOS environments. The... ...manage endpoint imaging, patch management, and security compliance while ensuring system stability. Applicants...
$100k - $258k
...small, highly motivated, and focused on engineering excellence. This organization is for... ...talented and motivated Infrastructure Security Engineer to join our security team. In... ...* Design and implement secure cloud architectures across multiple cloud platforms (e.g.,...Full timeTemporary workRelocation- ...ingenuity for clients across defense, national security, public safety, civilian, and military... ...into the organization's Agentic AI architecture, improving speed, accuracy, and... ...management, SOC, threat-intelligence, and engineering teams to drive remediation activities....For contractors
$126.3k - $243.1k
...ingenuity for clients across defense, national security, public safety, civilian, and military... ...into the organization’s Agentic AI architecture, improving speed, accuracy, and... ...management, SOC, threat‑intelligence, and engineering teams to drive remediation activities....For contractorsLive inWork at officeLocal area$134.6k - $184.5k
...clients remotely across the U.S. This role requires approximately 10-15 years of experience, and expertise in technical architecture, especially with security solutions like Microsoft Defender and CrowdStrike. Candidates must possess strong interpersonal and communication...Remote job- Job Title Cybersecurity Engineer - Senior Location Washington, DC Eligibility Due to... ...Senior Cybersecurity Engineer to support security initiatives in Washington, DC. This... ...provide technical leadership across security architecture, risk management, and continuous...Contract work
- ...have issued innovative bitcoin-backed securities and have been the leader in bitcoin treasury... ...Job Description Application Security Engineer Strategy (Nasdaq: MSTR) * Tysons... ...attack vectors and improve security architecture. DevSecOps Enablement: Support and...Full timeShift work
- ...Solutions is recruiting for a Senior Security Risk Management Engineer to support our proposal effort for... ...control implementation Security architecture risk analysis Continuous Monitoring... ...The Senior Security Risk Management SME must have at least two (2) years of...Contract workTemporary workLocal area
- ...GuidePoint Security provides trusted cybersecurity expertise, solutions and services that... .... We are growing our federal presales engineering team and looking for technically... ...design of a worldwide network security architecture Administer configuration changes on...Contract workFor contractorsRemote workFlexible hours
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to SECURITY ARCHITECTURE & ENGINEERING SME. Be the first to apply!
- IT security engineer Arlington, VA
- sr security engineer Arlington, VA
- information technology security engineer Arlington, VA
- endpoint security engineer Arlington, VA
- application security engineer Arlington, VA
- senior application security engineer Arlington, VA
- aws cloud security engineer Arlington, VA
- security engineer Arlington, VA
- senior security operations engineer Arlington, VA
- physical security engineer Arlington, VA

