Security Architect - Zero Trust

Innosoft CorporationBethesda, MD
Hybrid

About The Position

The Security Architect will serve as the technical authority for the NIH/OD -OIT security architecture and will be responsible for key engineering deliverables, including the Baseline Zero Trust Security Architecture Reference Documents and the Data Center Privileged Access Standard Operating Procedure. This role involves leading the design, documentation, and implementation of Zero Trust security solutions across both on-premises and cloud environments, aligning with OMB Memorandum M -22 -09. The architect will also provide strategic guidance to the OD CISO on security engineering, emerging threats, and modernization efforts.

Requirements

  • Bachelor’s degree in computer science Security, Information Technology, or a related field.
  • 10+ years in security engineering or architecture for enterprise or federal environments, including 3+ years designing or implementing Zero Trust architectures referencing OMB M -22 -09, NIST SP 800 -207, and/or the CISA Zero Trust Maturity Model.
  • CISSP -ISSAP (or CISSP plus SABSA/TOGAF with documented Zero Trust delivery).
  • Hands -on architectural command of at least four of: enterprise SIEM, EDR, NGFW, WAF, DLP, PAM, IDS/IPS, CASB/cloud security — in hybrid (on -premises plus cloud) environments.
  • Demonstrated authorship of Government -approved architecture reference documents or SOPs — written deliverables are a core output of this position, not an afterthought.
  • Experience within FISMA Moderate environments; fluency in NIST SP 800 -53 Rev. 5 control architecture implications.

Nice To Haves

  • Master's Degree in IT Security/ Zero Trust preferred.
  • Zero Trust implementation at HHS/NIH or another federal health agency; familiarity with research -computing and PHI/PII data -protection contexts.
  • Cloud security architecture certification (CCSP, or AWS/Azure security specialty).
  • Experience designing SOAR/automation -enabled operations and AI -security overlays; NIST AI RMF 1.0 exposure supports SOW 5.10 requirements for AI/ML systems.

Responsibilities

  • Develop, document, and drive Government approval of Zero Trust reference architectures and security patterns for cloud and on-premises systems; define the maturity roadmap across the five Zero Trust pillars (identity, devices, networks, applications/workloads, data).
  • Architect privileged access controls (PAM, formalized RDP/SSH access points) and author the Privileged Access SOP; align enforcement with Zero Trust policy goals.
  • Provide senior engineering direction across the contractor-managed security stack — SIEM, EDR, next-generation firewall, WAF, DLP, PAM, IDS/IPS, and cloud security — including gap identification, tool optimization, and the System Administration and Engineering Gaps Remediation Reports.
  • Support enhanced incident response capability design within Zero Trust architectures; advise Tier 2/3 forensics and SOC engineering on detection and containment patterns.
  • Contribute architecture input to RMF authorization boundaries, FedRAMP package reviews, and C -SCRM third -party risk assessments; brief executives and produce decision -quality architecture artifacts.

Benefits

  • Standard Employee Benefits.
  • 50% Health Insurance Paid by Innosoft
  • Paid Vacation
  • 401K Match
  • STD LTD and AD&D paid by Innosoft.
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service