Cybersecurity Architect, Senior

Cybersecurity Architect, Senior

The Opportunity:

We are seeking a highly skilled and experienced Senior Cybersecurity Architect to support the implementation and operationalization of a Protected Business Network (PBN) capability program. This pivotal role provides a unique opportunity to lead the architecture and integration of a secure, scalable, and resilient multi-cloud enterprise platform operating at a classified level. The successful candidate will design solutions integrating cutting-edge cybersecurity toolsets and frameworks, ensuring compliance with security documentation and standards, integrating governance and risk management processes, and meeting accreditation requirements for digital operations.

The position involves collaboration with global stakeholders, Commercial Cloud Service Providers (CCSPs), and multi-disciplinary teams to implement advanced security architectures across Microsoft Azure and AWS cloud environments. The ideal candidate will combine technical expertise, strategic vision, and leadership capabilities to ensure the successful delivery of the foundational PBN platform while meeting compliance and security standards required for classified operations.

What You’ll Work On:

• Focus on delivering a fully operationalized, secure, and cloud-based PBN platform.
• Create and implement a comprehensive security architecture across multiple cloud environments, including Microsoft Azure and AWS, while ensuring scalability, resilience, and regulatory compliance.
• Architect security solutions involving Identity and Access Management (IAM), Privileged Access Management (PAM), Cloud Security Posture Management (CSPM), Zero Trust Network Access (ZTNA), Security Orchestration, Automation, and Response (SOAR), Security Information and Event Management (SIEM), Data Loss Prevention (DLP), Governance, Risk, and Compliance (GRC) frameworks, and DevSecOps tooling.
• Design architectures that integrate security operations center (SOC) capabilities to support operations at a classified level, maintaining robust detection and response measures.
• Guide implementation to achieve security control compliance with frameworks such as NIST 800-53, SOC 2, Zero Trust architecture, FedRAMP, and other applicable governance standards.
• Support all security documentation required for system accreditation and integration with GRC tools.
• Provide architectural guidance to global teams and ensure effective collaboration across multiple NATO member countries.
• Drive security analysis and proactive solutions to optimize ongoing compliance for both current and future capabilities, ensuring a secure digital workplace environment.
• Work closely with partners, commercial stakeholders, and engineering teams to align platform performance with operational requirements.

Join us. The world can’t wait.

You Have:

• 8+ years of experience designing and securing advanced multi-cloud enterprise environments, including Microsoft Azure and AWS
• Experience with tools such as Entra ID, Ping Identity for multi-cloud and multi-tenant configurations, Microsoft Defender, Microsoft Sentinel, Azure Policy, AWS Security Hub, NSGs, Azure Premium Firewalls, and Zscaler
• Experience leading multi-disciplinary, international teams within mission-critical environments
• Knowledge of cybersecurity frameworks such as Zero Trust, FedRAMP, CMMC, NIST 800-53, and SOC2, along with the implementation of security controls and performing compliance analysis
• Top Secret clearance
• Bachelor's degree in CS, IT, or Cybersecurity
• Professional Certifications such as CISSP, Security+, CySA+, and Azure Security Engineer Associate (AZ-500) Certification

Nice If You Have:

• Experience implementing Identity, Credentialing, and Access Management (ICAM) and PAM solutions across multi-cloud architectures
• Experience designing and implementing DevSecOps tooling to support software development lifecycles securely in cloud environments
• Experience designing enhanced SOC capabilities in support of enterprise organizations or military or commercial classified environments
• Experience with security documentation and supporting activities for system accreditation
• Knowledge of secure cloud migration practices, including integration of CCSP-provided solutions tailored for highly regulated environments
• Ability to build and maintain strong relationships with cross-functional stakeholders
• Possession of excellent communication, organizational, and interpersonal skills
• Possession of excellent collaboration skills

Clearance: 

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Top Secret clearance is required.

Compensation

At Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen’s benefit programs. Individuals that do not meet the threshold are only eligible for select offerings, not inclusive of health benefits. We encourage you to learn more about our total benefits by visiting the Resource page on our Careers site and reviewing Our Employee Benefits page.

Salary at Booz Allen is determined by various factors, including but not limited to location, the individual’s particular combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability and organizational requirements. The projected compensation range for this position is $112,800.00 to $257,000.00 (annualized USD). The estimate displayed represents the typical salary range for this position and is just one component of Booz Allen’s total compensation package for employees. This posting will close within 90 days from the Posting Date.

Identity Statement

As part of the hiring process, we will ask you to complete an identity verification process that leverages advanced biometrics and artificial intelligence to ensure authenticity and protect against identity fraud. You are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud.

Candidate AI Usage Policy

AI is a part of our daily work at Booz Allen, and we are committed to the responsible and ethical use of AI tools. However, we want to ensure a fair candidate process based on your own skills and knowledge. As part of this commitment, the use of artificial intelligence (AI) or other tools to assist with responses during interviews (whether in-person or virtual) is prohibited unless permission is explicitly provided.

Work Model
Our people-first culture prioritizes the benefits of collaboration, whether it occurs in person or virtually. To support engagement and effective communication, employees working virtually are generally expected to have their cameras on during meetings.

• Remote: If this position is listed as remote, there may still be occasions when you are required to work in person at a Booz Allen or customer facility.

• Hybrid: If this position is listed as hybrid, you will be expected to work from a Booz Allen facility frequently, in alignment with leadership expectations and the needs of the role. You may also be required to work from or visit a customer facility.

• Onsite: If this position is listed as onsite, work will primarily be performed at a Booz Allen office or customer facility, where employees will collaborate directly with colleagues and customers as required by the role.

Commitment to Non-Discrimination

All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, local, or international law.