Senior Solution Architect Federal

About The Position

Requirements

• 12+ years in networking, security, systems, platform, or automation engineering roles
• Demonstrated mastery of:
• Bash
• PowerShell
• JavaScript
• Linux systems administration
• REST APIs and automation
• Strong experience with identity systems (Active Directory, DNS, PKI, SAML/OIDC)
• Experience supporting Federal or other high-assurance environments
• Ability to obtain or maintain a U.S. security clearance
• Ability to work extended hours / flextime as needed to meet customer needs / deadlines / escalations
• There are times when this role requires more than 40 hours a week
• Flexibility and ability to travel to meet project and customer needs
• Travel requirements will vary depending on project and for some projects can exceed 50%

Nice To Haves

• AI/ML Security: Forward-thinking experience in governing access to AI/LLM workloads and agent platforms.
• Expertise with Zero Trust Network and Univeral ZTNA concepts and Software Defined Perimeter desirable
• Single Packet Authorization or port knocking familiarity desired

Responsibilities

• Serve as a technical authority for Linux-based Zero Trust enforcement infrastructure
• Operate and manage systems via SSH, including secure key-based access and privilege separation
• Develop and maintain JavaScript-based logic executed on Appgate appliances to enable integration and automation
• Build and troubleshoot REST API integrations with external systems, including:
• Architect Zero Trust access enforcement for containerized and microservices-based workloads
• Support Kubernetes environments, including:
• Design and implement Infrastructure as Code (IaC) using Terraform
• Implement Configuration as Code (CaC) and GitOps workflows for:
• Integrate Zero Trust deployments into CI/CD pipelines aligned with Federal DevSecOps standards
• Architect identity-centric access solutions using enterprise identity systems as the authoritative control plane
• Design and troubleshoot DNS architecture and resolution behavior across:
• Support authentication mechanisms including:
• Architect-level knowledge of VMware, ESXi, and KVM for private cloud deployments
• Public Cloud: Demonstrate architect-level design and implementation of security services within AWS (GovCloud), Azure (Government), and Google Cloud Platform (GCP), with a specific focus on native networking (VPCs, VNets, Transit Gateways) and IAM policy enforcement.
• Design and troubleshoot endpoint-executed scripts used for posture checks, integrations, and access decisions
• Architect-level understanding of:
• Deep knowledge of:
• Familiarity with:
• Demonstrate Architect level knowledge and experience designing, articulating, and implementing complex Network integrations and Cybersecurity solitons
• Diagnose failures using:
• Support STIG compliance for Linux-based platforms
• Working knowledge of SCAP, including:
• Support RMF and ATO efforts through technical evidence and explanation
• Communicate effectively with ISSMs, ISSEs, and assessors
• Architect interoperability between Appgate and adjacent Federal systems:
• Enable Appgate to operate as a composable Zero Trust control within multi-vendor Federal architectures
• Support integrators and partners implementing joint solutions
• Serve as final escalation point for the most complex Federal deployments
• Lead deep technical architecture reviews with government and integrator teams
• Mentor senior Solution Architects and engineers
• Influence product direction related to automation, integration, and operability