Secure Intranet Architect

About The Position

Requirements

• 5+ years in secure web application architecture (LAMP, Java/Spring, or Python/Django).
• Experience operating in air-gapped or offline environments.
• IAM integration experience (LDAP, AD, SAML).
• Proficiency in Docker or Podman.
• Experience managing internal package repositories and secure patching processes.
• U.S. Person status (ITAR compliant).
• Bachelor's Degree in Computer Science, required

Nice To Haves

• Experience in DoD, aerospace, or defense manufacturing environments.
• Familiarity with NIST 800-171, CMMC, or zero-trust architectures.
• Background in secure knowledge management systems.
• Master's degree in information systems or information technology, preferred

Responsibilities

• Design and deploy a secure, air-gapped intranet platform (SharePoint, XWiki, Drupal, or Plone).
• Architect infrastructure within mixed Linux/Windows offline environments.
• Implement secure local AI and train on internal knowledge assets.
• Establish high-availability and redundancy strategies for internal networks.
• Implement Role-Based Access Control (RBAC) and integrate with LDAP/Active Directory/SAML.
• Enforce Zero Data Egress standards and harden systems (SELinux/AppArmor, firewall controls).
• Conduct security audits, vulnerability assessments, and compliance reviews.
• Eliminate external telemetry and external dependencies.
• Maintain local package repositories and secure update processes.
• Deploy and manage containerized services (Docker/Podman).
• Maintain secure internal container registries and isolated application environments.
• Develop architecture documentation, configuration baselines, and operational playbooks.
• Support cybersecurity audits and provide internal training.

Benefits

• Medical, Dental, Vision insurance
• Health Savings Account (HSA) & Flexible Spending Account (FSA)
• Life insurance
• Paid time off
• Professional development assistance
• Employee Assistance Program (EAP)
• Retirement plan
• Relocation assistance