Zero Trust Architect

Overview

DecisionPoint seeks a Senior Zero Trust Architect to lead the enterprise-wide implementation of Zero Trust principles across a large federal and DoD-aligned mission environment. This role provides strategic leadership and technical direction for Zero Trust capabilities spanning all core pillars, including Identity, Device, Network/Environment, Application & Workload, Data, and Automation & Orchestration.

The Zero Trust Architect will develop enterprise Zero Trust strategies, roadmaps, policy baselines, and implementation plans while ensuring alignment with the DoD Zero Trust Framework. This role partners with cybersecurity, cloud engineering, network architecture, and application development teams to guide adoption, integration, and continuous maturation of Zero Trust capabilities across mission systems.

This position is fully remote.

Note: By applying to this position, you acknowledge and consent to having your resume included in an active competitive government contract bid.

Duties & Responsibilities

The Zero Trust Architect will:

• Lead enterprise Zero Trust architecture design, implementation planning, and multi-year roadmap development.

• Oversee Zero Trust maturity assessments, gap analyses, target-state mapping, and alignment with DoD Zero Trust standards.

• Develop Zero Trust policies, configuration baselines, enforcement controls, and integration patterns.

• Provide architecture guidance across all Zero Trust pillars, including identity management, device posture, network segmentation, application security, and data protection.

• Lead integration efforts with identity systems, boundary security platforms, cloud environments, endpoint security tools, and application workloads.

• Guide the adoption of Zero Trust technologies, including identity-based access controls, microsegmentation, continuous authentication, and automated policy enforcement.

• Collaborate with cybersecurity teams to align Zero Trust capabilities with RMF, IL5 security requirements, and continuous monitoring outcomes.

• Work with cloud and network engineering teams to design secure access patterns, segmentation models, and control enforcement points.

• Provide technical leadership during implementation, testing, and validation of Zero Trust capabilities.

• Deliver Zero Trust architecture artifacts including diagrams, standards, playbooks, and reference models.

• Lead stakeholder briefings, executive presentations, and knowledge-sharing sessions to promote Zero Trust adoption.

• Support incident response by advising on Zero Trust behavior indicators, segmentation impacts, and containment strategies.

• Drive continuous improvement and iterative advancement of Zero Trust maturity across the enterprise.

Qualifications

Clearance Requirement

Must hold an active Top Secret clearance, supported by a Tier 5 background investigation.

Education (Required)

Bachelor's degree in Cybersecurity, Computer Science, Information Assurance, or a related discipline.

Experience (Required)

• Minimum 10 years of experience in cybersecurity architecture, enterprise security engineering, or Zero Trust implementation.

• Demonstrated experience designing or implementing Zero Trust capabilities in a federal or DoD environment.

• Experience developing security architecture roadmaps, policies, standards, and technical baselines.

• Experience working with identity management solutions, segmentation technologies, data protection tools, and cloud security architectures.

• Experience collaborating with engineering, network, cloud, and application teams to integrate security controls.

Technical Knowledge (Required)

• In-depth understanding of the DoD Zero Trust Framework and its seven pillars.

• Strong knowledge of identity access management, MFA, authorization policies, and user behavior security.

• Expertise in network and application segmentation, secure access patterns, and boundary-less architecture.

• Understanding of cloud security architectures for IL5 or similar high-assurance environments.

• Knowledge of data classification, encryption, and secure data access controls.

Technical Knowledge (Preferred)

• Experience with automation/orchestration for Zero Trust policy enforcement.

• Familiarity with Zero Trust-enabling technologies (e.g., microsegmentation, identity providers, EDR, CASB, ZTNA).

• Experience implementing Zero Trust in hybrid or multi-cloud environments.

Certifications

Required:

• CISSP

Preferred:

• CCSP

• Additional DoD 8570/8140 cybersecurity architecture certifications

Skills

• Strong leadership skills to drive enterprise-level architecture and modernization efforts.

• Excellent communication and presentation abilities for technical and executive audiences.

• Ability to translate strategic security objectives into implementable technical designs.

• Strong analytical skills for evaluating architectures, identifying gaps, and recommending solutions.

• Ability to guide multi-disciplinary teams and lead cross-functional engineering discussions.

• Commitment to secure design principles, mission resilience, and continuous improvement.

Our Equal Employment Opportunity Policy

• EEO and Affirmative Action Policy: DecisionPoint Corporation is an Equal Employment Opportunity and Affirmative Action employer. It is the policy of DecisionPoint Corporation to provide equal employment opportunity in accordance with all applicable Equal Employment Opportunity/Affirmative Action laws, directives and regulations to all employees and qualified applicants without regard to race, ethnicity, color, religion, national origin, sex, age, disability status, pregnancy, sexual orientation, gender identity, genetic information, protected veteran status, or any other protected status under Federal, State or Local laws.
• Pay Transparency Policy: In accordance with Presidential Executive Order 13665, DecisionPoint Corporation will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information.
• Authorization to Share Resume and Personal Information: By expressing your interest and submitting your resume for this position, you authorize DecisionPoint Corporation to share your resume, as well as personal information included on the resume, with its subsidiaries, affiliates and teaming partners for the purpose of considering you for this position and other available positions requiring comparable skills, education and experience. Should DecisionPoint Corporation. or its affiliates and teaming partners wish to initiate pre-employment discussions, you will be asked to complete an employment application and related employment documents.