Senior Cross-Domain Transfer Engineer

About The Position

Requirements

• Current Secret security clearance with the ability to obtain and maintain a Top Secret (TS) security clearance with Sensitive Compartmented Information (SCI).
• IAT III‑level security certification (CompTIA CASP+ CE, ISC² CISSP or Associate, GIAC GCED, GIAC GCIH, or Cisco CCNP Security).
• Minimum 10 years of experience implementing cross‑domain transfer solutions, artifact scanning frameworks, and policy‑as‑code enforcement within classified or federal multi‑enclave environments.
• Demonstrated hands‑on expertise with scanning and pipeline‑security tools—including Kubernetes, GitLab CI, SonarQube, and Tenable Nessus—with proven ability to develop and enforce cross‑domain gating logic, tune vulnerability rule sets, and manage IAVA‑driven patching alignment across NIPRNet, SIPRNet, and JWICS.
• Proven experience maintaining enclave‑parity scanning and policy enforcement across SIPR and JWICS, including adaptation of rule sets to enclave‑specific constraints and management of exception‑handling workflows in collaboration with multi‑national and cross‑service engineering partners.
• Strong problem‑solving and decision‑making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate solution.
• Highly developed interpersonal and oral/written communication skills, with the ability to effectively and professionally interact with a diverse set of stakeholders (from peers to end‑users to executive management).

Responsibilities

• Implements cross-domain transfer scanning stages and policy-as-code enforcement for artificial intelligence and machine-learning serving artifacts within unclassified War Data Platform (WDP) Core Integration deployment pipelines supporting Department of War missions, Joint Staff analysts, Combatant Command elements, and Senior Executive Service leadership.
• Develops scanning logic, rule sets, and enforcement patterns that validate artifact integrity, security posture, dependency provenance, and configuration compliance prior to deployment across enterprise serving environments.
• Applies Kubernetes, GitLab Continuous Integration, SonarQube, Tenable Nessus, Elastic Stack, VMware environments, and hardened artifact repositories to execute vulnerability assessments, integration checks, and policy-driven gating actions aligned with mission assurance requirements.
• Conducts rule tuning, signature refinement, and policy updates to maintain alignment with evolving security architectures, IAVA-driven patching requirements, and DevSecOps supply-chain standards.
• Maintains higher-domain parity for scanning and policy enforcement across SIPR and JWICS enclaves by adapting rule sets, resolving enclave-specific constraints, and coordinating exception-handling workflows with multi-national engineering teams and cross-service mission partners.
• Produces mission-critical deliverables—including scanning policy documentation, policy-as-code modules, exception-handling records, vulnerability disposition reports, operational risk assessments, and deployment-readiness artifacts.
• Strengthens program value by advancing supply-chain integrity, reinforcing deployment consistency, and supporting mission assurance across all enclaves.
• Supports Tier-4 incident-response actions by providing authoritative scanning evidence, policy-compliance documentation, and remediation guidance required for operational continuity and sustained mission performance.
• Performs other duties as assigned.