Solutions Architect

Job#: 3039331

Job Description:
Solutions Architect

Location: Remote, may require travel to Arlington, VA

Role Overview

The Solutions Architect will serve as a Key Personnel role, owning the target-state design of a complex, hybrid DevSecOps platform. This position involves translating enterprise architecture directives into actionable platform blueprints, enabling development teams to deliver securely with minimal intervention. The role requires hands-on design authority over a self-managed enterprise DevSecOps toolchain and the ability to harden the platform to federal security standards.

Key Responsibilities

• Own the DevSecOps platform architecture across a hybrid estate, including Azure, AWS, and mainframe environments, producing and maintaining Architecture Decision Records.
• Design self-managed platform deployments for tools such as JFrog Artifactory/Xray, SonarQube, and GitHub Enterprise Server on Azure Kubernetes Service (AKS).
• Establish immutable infrastructure and GitOps patterns for the AKS platform, authoring Terraform and Bicep templates for repeatable provisioning.
• Design CI/CD pipeline architecture for a large pipeline estate, integrating security gates including SAST/SCA, IaC scanning, DAST, and container scanning.
• Architect Zero Trust controls aligned to OMB M-22-09 and CISA ZTMM 2.0, and design policy-as-code enforcement for infrastructure guardrails.
• Define continuous authorization (cATO) architecture, including continuous compliance monitoring and automated evidence collection.
• Design integration patterns connecting cloud pipelines to mainframe build and deployment workflows.
• Serve as the technical authority and primary architecture point of contact, leading architecture working sessions and ensuring changes meet governance requirements.
• Mentor senior engineers on architecture patterns, infrastructure-as-code standards, and secure pipeline design.
• Author and maintain architecture runbooks, pattern libraries, and design standards.

Required Qualifications

• Bachelor's degree in Computer Science, Computer Engineering, Information Systems, Electrical Engineering, or a related technical discipline. Four additional years of directly relevant experience may be substituted in lieu of a degree.
• 12+ years of progressive IT experience, with 5+ years in senior solutions architecture or enterprise architecture roles (or a Master's degree with 10 years).
• Demonstrated experience with architecture ownership of self-managed GitHub environments and hands-on design of tools like JFrog Artifactory, SonarQube, and GitHub Advanced Security on AKS.
• Proven experience authoring production-grade Terraform modules for regulated environments and integrating CI/CD pipelines across hybrid estates.
• GitHub (Enterprise Server, Cloud, Actions, Advanced Security), JFrog Artifactory/Xray, SonarQube.
• Azure (AKS, ACR, App Gateway, Key Vault, Policy, Monitor) and AWS integration patterns.
• Terraform, Bicep, Packer, Helm, Flux (GitOps), Docker, and Kubernetes.
• Policy-as-code (OPA/Gatekeeper, Azure Policy).
• NIST 800-53, NIST 800-207, OMB M-22-09, CISA ZTMM 2.0, and FIPS compliance requirements.
• Secrets management architectures (e.g., CyberArk, Azure Key Vault).
• Observability tools such as Splunk, Dynatrace, and Azure Monitor.

Preferred Qualifications

• Active Certifications: Microsoft Certified: Azure Solutions Architect Expert (AZ-305), AWS Certified Solutions Architect - Professional, CKA/CKAD, CISSP/CCSP, or HashiCorp certifications.
• Architecture experience at enterprise scale across hybrid on-premises and multicloud environments.
• Hands-on design of CI/CD architectures spanning both mainframe and cloud-native workloads.
• Experience with test automation tools like Subject7, Selenium, or JMeter.
• Architecture ownership for enterprise middleware platforms (e.g., MuleSoft, WebLogic, Oracle, SAP).
• Experience implementing Section 508-compliant architecture patterns for enterprise applications.

PLEASE NOTE: Candidates must be able to obtain and/or maintain a Public Trust clearance as a condition and continuation of employment.

Work Environment

The position is primarily remote but requires the ability to be on-site in the Washington, DC Metro Area on short notice. The role may involve participation in on-call or surge-support activities for critical incidents. Up to 30% domestic travel may be required. Collaboration is conducted using Microsoft Teams.

Everforth Apex is a world-class IT services company that serves thousands of clients across the globe. When you join Everforth Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRateds Best of Staffing in Talent Satisfaction in the United States and Great Place to Work in the United Kingdom and Mexico.

Everforth Apex uses a virtual recruiter as part of the application process. Click for more details. By applying for this job, you agree to receive calls, AI-generated calls, text messages, or emails from Everforth Apex and its affiliates, and contracted partners. Frequency varies for text messages. Message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You can reply STOP to cancel and HELP for help. You can access our privacy policy at

Everforth Apex Benefits Overview: Everforth Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Everforth Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Everforth Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Everforth Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our 'Welcome Packet' as well, which an Everforth Apex team member can provide.

Everforth Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Everforth Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law.

If you require an accommodation under the Americans with Disabilities Act to participate in an interview with a virtual recruiter or to use our website for a search or application, please contact our Benefits Department at or . Please note that this contact information is strictly to be used for medical ADA accommodations and that no other inquiries will be answered.

UnitedHealthcare creates and publishes the Transparency in Coverage Machine-Readable Files on behalf of Everforth Apex Systems.