AWS Security Architect, GovCloud / IL5

About The Position

Requirements

• Comfortable moving between implementation and documentation.
• Understand how AWS is architected.
• Understand how controls are actually implemented.
• Understand how to produce evidence.
• Understand how to drive remediation.
• Understand how to keep the broader security program aligned as Legion moves into IL5/IL6 environments.
• Experience with AWS security architecture.
• Experience with regulated AWS environments (GovCloud, IL5/IL6).
• Experience with security documentation (SSP, POA&Ms, policies, procedures).
• Experience with compliance frameworks (NIST 800-171, CMMC).
• Experience with AWS account architecture, IAM, logging, monitoring, encryption, networking, segmentation, backup, and vulnerability management.
• Experience translating compliance findings into actionable remediation.
• Experience with supply-chain risk management, vulnerability management, and incident response.

Nice To Haves

• Experience supporting customer ISSM/ISSO conversations.
• Experience providing documentation/evidence for ATO/IATT or equivalent deployment paths.

Responsibilities

• Support and mature Swarm’s existing company-wide SSP and CMMC program.
• Maintain and improve security documentation, policies, procedures, POA&Ms, audit artifacts, control evidence, and compliance workflows.
• Help ensure company-wide controls remain aligned with NIST 800-171, CMMC, and applicable federal/customer requirements.
• Feed Legion-specific requirements and findings back into the broader IT security and compliance program where appropriate.
• Coordinate with internal stakeholders, external auditors, customer security teams, and government security representatives.
• Work closely with Legion to support IL5/IL6 deployment readiness.
• Help create and maintain the separate Legion-specific SSP, POA&M, remediation framework, implementation evidence, test evidence, SOPs, incident response documentation, and customer security artifacts.
• Partner with DevSecOps and Engineering to identify control gaps, document remediation requirements, and track closure.
• Support customer ISSM/ISSO conversations and provide documentation/evidence needed for ATO/IATT or equivalent deployment paths.
• Help Legion move quickly while keeping security, compliance, and IT governance aligned.
• Own Swarm’s AWS security architecture from the IT side.
• Be responsible for the security posture of existing AWS deployments and future regulated AWS environments.
• Review and guide AWS account architecture, IAM, logging, monitoring, encryption, networking, segmentation, backup, vulnerability management, and secure deployment patterns.
• Support AWS GovCloud, IL5/IL6, and other regulated deployment architectures.
• Establish repeatable AWS security baselines that can support Legion and future customer environments.
• Work with DevSecOps and Engineering to ensure implementation matches compliance requirements, not just policy language.
• Translate compliance findings into actionable remediation work.
• Maintain POA&M/remediation tracking across company-wide and Legion-specific security programs.
• Ensure documentation stays current as AWS configurations, containers, software releases, and security tooling change.
• Support supply-chain risk management, vulnerability management, incident response, and ongoing audit readiness.
• Help create a sustainable operating model where IT, Legion, DevSecOps, and Engineering are aligned on who owns documentation, implementation, evidence, and remediation.

Benefits

• Meaningful equity in a high-growth defense technology company
• Competitive base salary commensurate with experience
• Medical, dental, vision, and 401k
• PTO and paid sick leave
• Monthly wellness stipend
• Daily catered lunch (office)
• Paid parental leave