AWS/Microsoft Enterprise Cloud Architect SME

About The Position

Requirements

• Current Secret security clearance with the ability to obtain and maintain a Top Secret (TS) security clearance with Sensitive Compartmented Information (SCI).
• Minimum 12 years of experience designing and operating enterprise cloud architectures for DoW environments.
• Experience migrating workloads to AWS and Azure cloud environments using networking and security services.
• Proven experience architecting and engineering secure multi-cloud solutions using AWS and Microsoft Azure services.
• Demonstrated expertise in Zero Trust security frameworks and implementation of security-by-default controls in cloud environments.
• Strong problem-solving and decision‑making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate solution.
• Highly developed interpersonal and oral/written communication skills, with the ability to effectively and professionally interact with a diverse set of stakeholders (from peers to end-users to executive management).

Responsibilities

• Architects enterprise cloud environments supporting WDP Core Integration modernization objectives across Unclassified and NIPR, Secret and SIPR, and Top Secret and JWICS enclaves by designing integrated infrastructure solutions that span compute, networking, storage, identity, logging, auditing, configuration management, continuity operations, and DevSecOps factory components.
• Leads cloud transformation initiatives that migrate legacy mission workloads into scalable, resilient, and secure architectures using AWS Organizations, Azure Active Directory, Azure Landing Zones, Amazon Virtual Private Cloud, Transit Gateway, Azure Virtual WAN, and hybrid identity services.
• Builds multi-cloud governance frameworks incorporating role-based access control models, encryption key management, SIEM integrations, log routing pipelines, and enclave-specific security controls aligned with Department of War cybersecurity directives.
• Conducts architecture assessments, alternatives-of-analysis evaluations, and technical design reviews to validate operational suitability for mission partners including Combatant Commands, Joint Staff elements, and interagency consumers.
• Develops advanced security reference architectures using AWS GuardDuty, AWS Security Hub, Microsoft Defender for Cloud, Azure Sentinel, and enclave monitoring strategies to strengthen threat detection and compliance.
• Directs proof-of-concept and pilot implementations demonstrating cross-domain interoperability, zero-trust segmentation models, automated provisioning patterns, and cloud-native resilience capabilities.
• Delivers expert training, engineering playbooks, and modernization guidance that elevate cloud engineering proficiency across infrastructure, cybersecurity, DevSecOps, and mission application teams, advancing War Data Platform (WDP) Core Integration enterprise cloud readiness and transformation outcomes.
• Performs other duties as assigned.