Own your opportunity to work with the largest government agency in the nation. Make an impact by advancing the Department of Defense’s mission to keep our country safe and secure.
Job DescriptionGDIT is seeking a Senior Cloud Solutions Architect with specific experience working cloud solutions for DoD IT missions to join our Defense Division CTO team. The primary requirement for this position is a deep technical understating and experience across a broad set of cloud technologies from a variety of Cloud Service Providers (CSP). In-depth knowledge the DoD domain related to the use of cloud services, plus experience supporting strategic business development is also required. Qualified candidates will demonstrate at least five (5) years of experience using authorized commercial cloud services to deliver integrated IT solutions to DoD customers, plus at least ten (10) years of general IT industry experience as an engineer, technical consultant, or solutions architect.
The work environment is fast-paced and collaborative with all members of the team leaning into objectives laid out by the Defense Division CTO. This role is dynamic, requiring a high degree of individual initiative and domain specific knowledge to help craft strategies, approaches, and technical solutions to deliver cloud services that effectively meet the needs of common DoD IT missions.
Candidates local to Falls Church VA will be preferred, although 100% remote + up to 25% travel for an ideal candidate outside of Northern Virginia will be considered.
Responsibilities:
Provide consulting services to cloud service providers and/or private cloud service development teams regarding the architecture, design, and successful operation of cloud services targeting DoD IT missions in classified and unclassified environmentsSupport functional and technical requirements definition for cloud services that address mandatory security controls defined by FedRAMP Medium/High, DoD IL-4/5/6 and classified overlays.Provide direct technical support as needed to verify the capability and operation of individual cloud services (IaaS, PaaS and cloud native support services) in the context of security control compliance and customer usabilitySupport integration of cloud native identity and authorization services with DoD PKI natively or via federated identity providers.Facilitate engagements between CSP engineering teams and security teams preparing assessable control responses and evidenceSupport development of DoD specific customer engagement and cloud onboarding processes that considers DoD Cloud SRG and contract specific requirementsProactively identify and describe elements of cloud service architecture or design that may conflict with DoD use or other security requirements and recommend alternatives to resolve those conflictsCreate elegant and effective architecture, design and workflow process diagrams covering new cloud servicesWriting in support of a variety of documentation artifacts including technical, operations and security topicsDevelop collaborative, trusted relationships based on integrity, competence, and performance between a variety of project stake holdersQuickly learn the technical intricacies of new cloud services as necessary to understand how customers will use those service in real-world scenarios, and identify relative strengths, weaknesses, opportunities and innovations of those services in the context of industry state of the artREQUIRED QUALIFICATIONS:
US Citizen with active DoD TS security clearanceBachelors Degree in related technical discipline OR equivalent additional work experience in lieu of degree10+ years overall IT industry experience architecting/engineering large scale service provider or enterprise IT systems and services5+ years of experience supporting the development and delivery of commercial cloud services5+ years of experience supporting DoD IT solutions including the use of commercial and private cloud servicesHigh degree of self-motivation and initiative to learn new cloud oriented products and technologiesStrong interpersonal communication skills capable of communicating complex technical concepts to audiences of different levels of technical knowledge and sophistication with a demeanor that encourages a collaborative exchange of ideas and quickly resolves conflictsExperience serving as a technical lead / cloud subject matter expert consultant with organizations delivering cloud services to DoDExperience supporting cloud services through the FedRAMP (Med/High) and DoD IL-4/5/6 assessment and authorization processExperience developing solutions and hands-on use of hyperscale cloud services from leading CSPs in support of DoD IT missions (Amazon, Microsoft, Oracle, Google)Familiarity with DoD Cloud SRG and related operational requirements for onboarding new DoD customer accounts and systemsExperience working with and thorough understanding of cloud service APIs, CLIs and related automation solutions in support of cloud service orchestration and Infrastructure as Code (IaC)Basic familiarity with container runtimes (Docker, containerd, CRI-O) and cluster orchestration (Kubernetes)Basic familiarity with running server vs. serverless applications in the cloudBasic familiarity with Secure Cloud Computing Architecture (SCCA) services as defined in the DoD Cloud SRGBasic understanding of TCP/IP network routing, switching, and security boundariesBasic understanding of DoD RMF certification and accreditation process including rules surrounding ATO and IATTDoD 8570 IAT or IAM Level II certification(s) (e.g. Security+ CE, CASP+ CE)Certified Solution Architect Associate level certification from one or more CSPsDESIRED QUALIFICATIONS:
DoD 8570 IAT or IAM Level III certifications (e.g. CISSP, CISA)Certified Solution Architect Professional level certification from one or more CSPsCoding skills – Python, BASH, PowerShell, YAML, JSON, using Visual Studio Code or similar IDETechnical understanding of CI/CD pipelines, tool chains and repositories (e.g. Git, Jenkins, Ansible, Vault, etc.)Hands on experience architecting and implementing IT solutions using cloud services from multiple CSPs (e.g. Amazon, Microsoft, Oracle, Google)Experience adapting cloud services to meet residual CNSSI 1253 controls for RMF accreditation not directly inherited from authorized cloud environmentExperience migrating DoD systems and applications to IL4/5/6 cloud environmentsTechnical knowledge of and experience with automation tools like Ansible, Terraforms, AWS Cloud Formations, Azure Resource Manager, and/or Google Deployment manager.Direct experience building a cloud service for a CSP and/or supporting a CSP through the FedRAMP+DoD authorization process