Today
Top Secret/SCI
Senior Level Career (10+ yrs experience)
IT - Security
Fort Meade, MD (On-Site/Office)
Senior Cross Domain Solutions Technical Lead
Clearance Requirement: TS/SCI
Location: Fort Meade, Maryland/Columbia, Maryland/Linthicum, Maryland/Aberdeen Proving Ground, Maryland, or other federal contractor cleared locations within Maryland (IC and DoD mission support)
Position Summary
The Senior Cross Domain Solutions (CDS) Technical Lead provides strategic, technical, and operational leadership for the design, integration, accreditation, and sustainment of cross domain technologies in support of classified missions systems across multiple security enclaves. The individual leads engineering and governance initiatives, ensuring strict compliance with NSA’s Raise the Bar (RTB) standards and NCDSMP CDS policies. This position is based in Maryland and supports the Department of Defense (DoD), Intelligence Community (IC), and Federal Civilian agency missions
Key Responsibilities
• Lead cross-functional CDS engineering and security teams through full lifecycle development: requirements, architecture, implementation, accreditation, and O&M
• Develop and oversee the implementation of secure unidirectional (e.g., OWL) and bidirectional (e.g., HAGs, CDGs) data transfer mechanisms between domains
• Interface with NSA NCDSMO, DISA, and authorizing officials (Aos) to guide systems through CDS approval/accreditation (e.g., CDTAB)
• Author and validate CDS artifacts such as Risk Assessments, Security Architectures, Test Plans, Filtering Strategies, Interface Control Documents (ICDs), and Security Impact Assessments (SIAs)
• Guide integration of CDS with Zero Trust Architecture (ZTA), cloud enclaves, data lakes, and secure DevSecOps pipelines
• Represent the program to senior government stakeholders, vendors, and mission partners on all CDS-related matters
• Maintain enterprise awareness of emerging CDS technologies, high assurance architectures, and NCDSMO/NSA policy updates
• Conduct hands on reviews of Guard filtering logic (e.g., structured/unstructured filters, protocol break) and interface enforcement logic
• Evaluate and recommend commercial, GOTS, and open source CDS tools, including both Transfer Solutions and Access Solutions
Required Qualifications
• Active TS/SCI
• Bachelor’s degree in computer science, Information Assurance, Systems Engineering, or related field
• 10+ years of experience in cybersecurity, system architecture, or secure communications with at least 5+ years in CDS design and implementation
• Demonstrated leadership in delivering accredited CDS solutions within IC, DoD, or Federal Civilian mission environments
• Understanding of:
o NSA Raise the Bar (RTB)
o NCDSMO governance
o DoDI 8540.01/8500.01/RMF/CDTAB/CDSE process
• Experience with:
o Data Diodes/One Way Links (e.g., Owl, Fox-IT)
o High Assurance Guards (e.g., Radiant Mercury, ISSE Guard, Forcepoint Data Guards, SDoT)
o Transfer Guards (e.g., Trusted Gateway System (TGS), Downgrade Server)
o Access Solutions (e.g., Nester, Lightfoot, Lagrange, SecureView)
• Hands on knowledge of interface filtering, metadata tagging, DLP integration, protocol break, AV/Sandbox chaining
• Familiarity with STIGs, NIAP, CDSE Validation Testing, and insider threat prevention controls
Preferred Certifications
• CDS Engineer Certification (via NSA or commercial equivalents)
• CISSP, CISM, or CASP+
• CCSP or AWS Certified Security (for cloud based CDS implementation)
• PMP (for leadership roles interfacing with government stakeholders
Relevant Technologies
High Assurance Guards
• Radiant Mercury
• ISSE Guard
• SDoT Security Gateway (Rohde & Schwarz)
• Trusted Gateway System (TGS)
One Way Transfer Systems/Data Diodes
• Owl Cyber Defense
• Fox DataDiode
• Warefall Security
• Nexor Data Diode
CDS Transfer Solutions
• Forcepoint Trusted Thin Client
• Downgrade Servers (Text/Imagery Guards)
• BAE Systems XTS Guard
Access Solutions
• Nester (NSA/IC)
• Lagrange (IC)
• SecureView (AFRL)
• Lightfoot (IC Community)
Policy Accreditation Standards
• NSA Raise the Bar (RTB)
• DISA CDS STIGs
• NCDSMO Approval Process
• Cross Domain Transfer Appliance (CDTA) Lifecycle
• CDTAB/CDSE Testing Process
Clearance Requirement: TS/SCI
Location: Fort Meade, Maryland/Columbia, Maryland/Linthicum, Maryland/Aberdeen Proving Ground, Maryland, or other federal contractor cleared locations within Maryland (IC and DoD mission support)
Position Summary
The Senior Cross Domain Solutions (CDS) Technical Lead provides strategic, technical, and operational leadership for the design, integration, accreditation, and sustainment of cross domain technologies in support of classified missions systems across multiple security enclaves. The individual leads engineering and governance initiatives, ensuring strict compliance with NSA’s Raise the Bar (RTB) standards and NCDSMP CDS policies. This position is based in Maryland and supports the Department of Defense (DoD), Intelligence Community (IC), and Federal Civilian agency missions
Key Responsibilities
• Lead cross-functional CDS engineering and security teams through full lifecycle development: requirements, architecture, implementation, accreditation, and O&M
• Develop and oversee the implementation of secure unidirectional (e.g., OWL) and bidirectional (e.g., HAGs, CDGs) data transfer mechanisms between domains
• Interface with NSA NCDSMO, DISA, and authorizing officials (Aos) to guide systems through CDS approval/accreditation (e.g., CDTAB)
• Author and validate CDS artifacts such as Risk Assessments, Security Architectures, Test Plans, Filtering Strategies, Interface Control Documents (ICDs), and Security Impact Assessments (SIAs)
• Guide integration of CDS with Zero Trust Architecture (ZTA), cloud enclaves, data lakes, and secure DevSecOps pipelines
• Represent the program to senior government stakeholders, vendors, and mission partners on all CDS-related matters
• Maintain enterprise awareness of emerging CDS technologies, high assurance architectures, and NCDSMO/NSA policy updates
• Conduct hands on reviews of Guard filtering logic (e.g., structured/unstructured filters, protocol break) and interface enforcement logic
• Evaluate and recommend commercial, GOTS, and open source CDS tools, including both Transfer Solutions and Access Solutions
Required Qualifications
• Active TS/SCI
• Bachelor’s degree in computer science, Information Assurance, Systems Engineering, or related field
• 10+ years of experience in cybersecurity, system architecture, or secure communications with at least 5+ years in CDS design and implementation
• Demonstrated leadership in delivering accredited CDS solutions within IC, DoD, or Federal Civilian mission environments
• Understanding of:
o NSA Raise the Bar (RTB)
o NCDSMO governance
o DoDI 8540.01/8500.01/RMF/CDTAB/CDSE process
• Experience with:
o Data Diodes/One Way Links (e.g., Owl, Fox-IT)
o High Assurance Guards (e.g., Radiant Mercury, ISSE Guard, Forcepoint Data Guards, SDoT)
o Transfer Guards (e.g., Trusted Gateway System (TGS), Downgrade Server)
o Access Solutions (e.g., Nester, Lightfoot, Lagrange, SecureView)
• Hands on knowledge of interface filtering, metadata tagging, DLP integration, protocol break, AV/Sandbox chaining
• Familiarity with STIGs, NIAP, CDSE Validation Testing, and insider threat prevention controls
Preferred Certifications
• CDS Engineer Certification (via NSA or commercial equivalents)
• CISSP, CISM, or CASP+
• CCSP or AWS Certified Security (for cloud based CDS implementation)
• PMP (for leadership roles interfacing with government stakeholders
Relevant Technologies
High Assurance Guards
• Radiant Mercury
• ISSE Guard
• SDoT Security Gateway (Rohde & Schwarz)
• Trusted Gateway System (TGS)
One Way Transfer Systems/Data Diodes
• Owl Cyber Defense
• Fox DataDiode
• Warefall Security
• Nexor Data Diode
CDS Transfer Solutions
• Forcepoint Trusted Thin Client
• Downgrade Servers (Text/Imagery Guards)
• BAE Systems XTS Guard
Access Solutions
• Nester (NSA/IC)
• Lagrange (IC)
• SecureView (AFRL)
• Lightfoot (IC Community)
Policy Accreditation Standards
• NSA Raise the Bar (RTB)
• DISA CDS STIGs
• NCDSMO Approval Process
• Cross Domain Transfer Appliance (CDTA) Lifecycle
• CDTAB/CDSE Testing Process
group id: 91134553
