Principal / Senior Principal, Security Architect

We’re looking for a Principal Security Architect to lead the security architecture for cloud applications operating at FedRAMP IL5 and IL6, while also shaping enterprise-wide security architecture and engineering. This is a hands-on leadership role—your work will directly enable secure product delivery at speed. You’ll lead the design, implementation, and authorization of FedRAMP IL5/IL6 systems, then scale that success by building reusable security platforms, patterns, and practices across the organization. You will define and deliver secure cloud architectures that meet the highest federal standards while staying practical and engineer friendly. Your designs will become the foundation for multiple systems and scale across teams and environments. FedRAMP IL5 / IL6 security architectures co-owned with Application Architects and applied across multiple systems Deployable security designs grounded in NIST 800-53 Rev. 5, DoD Cloud SRG (IL5/IL6), and FedRAMP Core security building blocks, including: Identity, credential, and access management (ICAM) Network segmentation, trust boundaries, and secure data flows Encryption, key management, and secrets handling Zero Trust architecture (NIST 800-207) implemented in production—not just documented Reusable security platforms and patterns, including: IAM and access control Secrets management and key lifecycle Logging, monitoring, and detection Secure CI/CD and Infrastructure as Code Enterprise reference architectures supporting both FedRAMP and non-FedRAMP systems Compliance-aware designs that minimize authorization scope through control inheritance, reuse, and standardization Automated compliance evidence pipelines that reduce manual effort and improve audit readiness Security-by-design integrations embedded into product engineering and cloud infrastructure Architectural support for resilience and response, including threat modeling, risk assessment, incident response, and forensic readiness Security controls are designed once and reused across applications and platforms Compliance evidence is automated, repeatable, and scalable Engineering teams adopt security patterns naturally, without friction Security architecture accelerates delivery instead of slowing it down This role is for someone who wants to build durable, reusable security architecture that scales beyond one system—and enables high-assurance cloud delivery at speed. This is not a policy-only or governance-only position.