Job Requirements
Remote
Secret Polygraph not specified
Senior Level Career (10+ yrs experience)
$175,000 - $190,000
Job Description
Position Summary:
We are seeking an AWS Cloud Architect to design, implement, and mature the loud platform and security architecture of our platform while leading its journey toward FedRAMP High authorization and broader federal compliance.
This role serves as a senior technical leader responsible for enterprise security architecture, secure cloud design, compliance engineering, and platform hardening. The ideal candidate is a hands-on architect who partners directly with engineering teams to build secure, scalable, cloud-native systems that meet stringent federal security requirements.
The position blends deep AWS cloud expertise with federal compliance leadership, ensuring we are ready for deployment across highly regulated government environments.
Key Responsibilities:
AWS Cloud & Infrastructure Security
Architect secure AWS environments (Commercial & GovCloud), including:
VPC, Transit Gateway, PrivateLink, Route 53
Direct Connect and hybrid architectures
Leverage AWS native security services:
GuardDuty, Security Hub, Inspector, KMS
Implement:
Secure network segmentation strategies
CI/CD pipelines with DevSecOps and supply chain protections
Infrastructure as Code (Terraform, CloudFormation)
Lead container and platform security (EKS/ECS, Kubernetes)
Establish vulnerability management and remediation programs
Product Security & DevSecOps
Integrate security across the full software development lifecycle (SDLC)
Establish secure coding standards and automated testing practices
Evaluate and deploy security tooling and platforms
Guide cryptographic implementations and key management strategy
Support AI governance and platform security controls
Enable cloud-native and serverless architectures (Lambda, API Gateway, microservices)
Security Architecture & Engineering
Design, implement, and maintain Darkstrike’s enterprise security architecture
Define and enforce secure-by-design principles across all platform components
Develop reference architectures for commercial and federal (GovCloud) deployments
Establish patterns for:
Authentication & authorization (IAM, Zero Trust)
Encryption & key management (FIPS 140-3 aligned)
Logging, monitoring, and data protection
FedRAMP & Compliance Leadership
Lead FedRAMP High readiness and authorization efforts
Align platform controls with:
NIST 800-53
FedRAMP
NIST 800-171
CMMC
Support ATO processes and 3PAO assessments
Coordinate with auditors, assessors, and government stakeholders
Drive continuous compliance and compliance-as-code initiatives
Collaboration & Leadership
Partner with:
Engineering and DevOps teams
Compliance and audit organizations
Technical writers and documentation teams
Required Qualifications
10+ years of Cloud Engineering experience
5+ years in security architecture, cloud architecture, or principal security engineering roles
Experience with:
FedRAMP and NIST 800-53 control frameworks
AWS cloud architecture and security
Identity and Access Management (IAM) and Zero Trust
Cloud-native and container security
Secure software development and DevSecOps
Experience leading FedRAMP or highly regulated compliance programs
Strong experience building secure cloud-native environments
Proficiency in:
Infrastructure as Code (Terraform, CloudFormation)
CI/CD pipelines
Security automation
Strong communication skills across executive, engineering, and government stakeholders
Preferred Qualifications
Prior experience leading a FedRAMP authorization (Moderate or High)
AWS Certifications (Solutions Architect Professional, Security Specialty)
Experience with AWS GovCloud environments
Knowledge of compliance automation / compliance-as-code frameworks
Familiarity with:
AI security and governance frameworks
National security, defense, or critical infrastructure missions
Experience supporting federal agencies or large GovCon programs
Work Environment (Typical)
Remote (U.S.-based), with proximity to federal hubs (DC/VA preferred)
Standard business hours with occasional surge during audits or ATO milestones
Active Secret Clearance or higher
We are seeking an AWS Cloud Architect to design, implement, and mature the loud platform and security architecture of our platform while leading its journey toward FedRAMP High authorization and broader federal compliance.
This role serves as a senior technical leader responsible for enterprise security architecture, secure cloud design, compliance engineering, and platform hardening. The ideal candidate is a hands-on architect who partners directly with engineering teams to build secure, scalable, cloud-native systems that meet stringent federal security requirements.
The position blends deep AWS cloud expertise with federal compliance leadership, ensuring we are ready for deployment across highly regulated government environments.
Key Responsibilities:
AWS Cloud & Infrastructure Security
Architect secure AWS environments (Commercial & GovCloud), including:
VPC, Transit Gateway, PrivateLink, Route 53
Direct Connect and hybrid architectures
Leverage AWS native security services:
GuardDuty, Security Hub, Inspector, KMS
Implement:
Secure network segmentation strategies
CI/CD pipelines with DevSecOps and supply chain protections
Infrastructure as Code (Terraform, CloudFormation)
Lead container and platform security (EKS/ECS, Kubernetes)
Establish vulnerability management and remediation programs
Product Security & DevSecOps
Integrate security across the full software development lifecycle (SDLC)
Establish secure coding standards and automated testing practices
Evaluate and deploy security tooling and platforms
Guide cryptographic implementations and key management strategy
Support AI governance and platform security controls
Enable cloud-native and serverless architectures (Lambda, API Gateway, microservices)
Security Architecture & Engineering
Design, implement, and maintain Darkstrike’s enterprise security architecture
Define and enforce secure-by-design principles across all platform components
Develop reference architectures for commercial and federal (GovCloud) deployments
Establish patterns for:
Authentication & authorization (IAM, Zero Trust)
Encryption & key management (FIPS 140-3 aligned)
Logging, monitoring, and data protection
FedRAMP & Compliance Leadership
Lead FedRAMP High readiness and authorization efforts
Align platform controls with:
NIST 800-53
FedRAMP
NIST 800-171
CMMC
Support ATO processes and 3PAO assessments
Coordinate with auditors, assessors, and government stakeholders
Drive continuous compliance and compliance-as-code initiatives
Collaboration & Leadership
Partner with:
Engineering and DevOps teams
Compliance and audit organizations
Technical writers and documentation teams
Required Qualifications
10+ years of Cloud Engineering experience
5+ years in security architecture, cloud architecture, or principal security engineering roles
Experience with:
FedRAMP and NIST 800-53 control frameworks
AWS cloud architecture and security
Identity and Access Management (IAM) and Zero Trust
Cloud-native and container security
Secure software development and DevSecOps
Experience leading FedRAMP or highly regulated compliance programs
Strong experience building secure cloud-native environments
Proficiency in:
Infrastructure as Code (Terraform, CloudFormation)
CI/CD pipelines
Security automation
Strong communication skills across executive, engineering, and government stakeholders
Preferred Qualifications
Prior experience leading a FedRAMP authorization (Moderate or High)
AWS Certifications (Solutions Architect Professional, Security Specialty)
Experience with AWS GovCloud environments
Knowledge of compliance automation / compliance-as-code frameworks
Familiarity with:
AI security and governance frameworks
National security, defense, or critical infrastructure missions
Experience supporting federal agencies or large GovCon programs
Work Environment (Typical)
Remote (U.S.-based), with proximity to federal hubs (DC/VA preferred)
Standard business hours with occasional surge during audits or ATO milestones
Active Secret Clearance or higher
group id: 10106647