Apply Now

Trusted Internet Connections 3.0 Cloud Network Security Architect

Remote in Washington, DC, US • Posted 2 days ago • Updated 8 hours ago

Full Time

On-site

USD $160,000.00 - 190,000.00 per year

Fitment

Dice Job Match Score™

👾 Reticulating splines...

Job Details

Skills

FOCUS
Internet
Security Controls
Collaboration
Virtual Machines
Firewall
Security Policy
Orchestration
Terraform
Management
Virtual Private Network
SD
WAN
Cloud Computing
Virtual Private Cloud
Network
Documentation
Supervision
Amazon Web Services
Computer Networking
Palo Alto
Network Security
Security Clearance
Insurance

Summary

Trusted Internet Connections 3.0 Cloud Network Security Architect

Location: Fully Remote (East Coast)
Clearance: Public Trust, Secret Clearance preferred
Employment Type: Full-time

Salary: $160,000-$190,000

Role Overview

The Trusted Internet Connections 3.0 Cloud Network Security Architect will focus on architecting, implementing, and maintaining secure, compliant network environments in AWS with an emphasis on Trusted Internet Connections (TIC) 3.0 principles. This role involves hands-on deployment and management of Palo Alto VM-Series firewalls, infrastructure as code (IaC), hybrid connectivity, and Zero Trust/TIC-aligned security controls, often functioning independently to support federal client requirements.

Responsibilities

Architect and manage complex AWS network environments to meet TIC 3.0 and federal security standards.
Deploy and manage Palo Alto VM-Series firewalls in AWS, including configuration of GlobalProtect, Panorama, and security policy orchestration.
Use Terraform or CloudFormation to deploy major networking components via Infrastructure as Code (IaC), ensuring repeatable, documented, and auditable environments.
Configure, troubleshoot, and maintain hybrid connectivity solutions, including AWS Direct Connect, Site-to-Site VPNs, and SD-WAN integrations.
Design and implement Transit Gateway architecture and VPC Peering in multi-account AWS environments.
Apply Zero Trust principles and TIC 3.0 requirements within AWS and Palo Alto ecosystems to enhance application and network security.
Serve as the primary (or sole) Network Architect/Engineer responsible for discovery, documentation, design, and execution of network security solutions with minimal supervision.
Collaborate with stakeholders to ensure secure, compliant network designs that support mission-critical federal applications.

Requirements

Minimum Qualifications

5+ years of experience architecting and managing complex AWS network environments
3+ years of experience deploying and managing Palo Alto VM-Series firewalls within a public cloud environment (AWS), including with Global Protect, Panorama, and security policy orchestration
2+ years of experience with Terraform or CloudFormation, including using IaC to deploy major networking components to ensure repeatable, documented environments
Experience with Hybrid Connectivity and WAN, including configuring and troubleshooting AWS Direct Connect, Site-to-Site VPNs, and SD-WAN integrations to maintain hybrid-cloud connectivity
Knowledge of Transit Gateway architecture and VPC Peering in multi-account environments
Knowledge of implementing Zero Trust AND TIC 3 principles within an AWS or Palo Alto ecosystem
Ability to function as the sole Network Architect or Engineer to be responsible for discovery, documentation, and execution with minimal supervision
Ability to obtain and maintain a Public Trust or Suitability/Fitness determination based on client requirements
HS diploma or GED

Preferred Qualifications

AWS Certified Advanced Networking - Specialty Certification
Palo Alto Networks Certified Network Security Engineer (PCNSE) Certification
Bachelors degree
Active Secret clearance

Benefits

Salary: $160,000-$190,000

Benefits include Health, Vision, and Dental Insurance, and PTO.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

Dice Id: 91164126
Position Id: df4bb2e6bf859d16d078daa61d9659d2
Posted 2 days ago

Create job alert

Never miss an opportunity! Create an alert based on the job you applied for.

Similar Jobs

Senior Network Security Engineer II

Remote or Washington, District of Columbia

•

Today

As a Senior Network Security Engineer II you will lead the design, implementation, and maintenance of our organization's network security infrastructure. The ideal candidate will have a strong background in network security, a passion for building secure systems, and proven leadership experience in managing engineering teams and design, implement, and maintain secure network infrastructures for and cloud environments. The ideal candidate will have deep expertise in network security technologies,

Full-time

Senior Solution Architect

Hybrid in McLean, Virginia

•

Today

Job Number: R0239945 Solution Architect, Senior The Opportunity: An exceptional opportunity exists for a Solution Architect with a strong background in designing, deploying, and optimizing complex enterprise network infrastructures. Develops solution architecture (SA) and resolves complex issues in a variety of projects through the implementation of requirements analysis, expertise support and project supervision. Applies advanced advisory skills or extensive technical expertise with full indus

Full-time

USD 99,000.00 - 225,000.00 per year

Infrastructure Engineer (Cloud / Cisco)

Washington, District of Columbia

•

Today

Description: Washington, DC Hybrid, 3 days onsite / 2 days remote Our client seeks a Senior Infrastructure Engineer to manage and optimize on-premises and cloud network environments. The role supports network hardware, monitoring tools, and core services across data centers and cloud platforms. It requires collaboration across infrastructure teams, implementation of network security best practices, and participation in after-hours maintenance twice per month. This hybrid position is based in W

Contract

Network Engineer

Suitland-Silver Hill, Maryland

•

Today

About Agile Defense At Agile Defense we know that action defines the outcome and new challenges require new solutions. That's why we always look to the future and embrace change with an unmovable spirit and the courage to build for what comes next. Our vision is to bring adaptive innovation to support our nation's most important missions through the seamless integration of advanced technologies, elite minds, and unparalleled agility-leveraging a foundation of speed, flexibility, and ingenuity

Full-time

USD 130,000.00 - 138,000.00 per year

Search all similar jobs