Cyber Architect

Cyber Architect

Apply Now

Cyber Security Architect: 

Clearance Level: Must have an Active Secret Clearance to be considered for this opportunity- Must be US Citizen 

At Aquila Technology, you will see our team’s passion every day, whether we are building a robust, policy-compliant IT system or stress-testing a system to identify gaps and security vulnerabilities. To own the advantage, we ensure our team owns results and gets the work done right the first time by deploying smart, purposeful solutions that work. Aquila is the right people with the right skills driving the right outcomes. We call this the Aquila Advantage.

About the Role:

Aquila is seeking a Cyber Security Architect to join our team in supporting one of the country’s premier defense research organizations. The team is seeking a highly skilled and experienced Cybersecurity Architect with a specialized focus on Cross Domain Solutions (CDS) and Cloud environments. The candidate will be a subject matter expert in the application of the Risk Management Framework (RMF) for cloud-based systems, ensuring compliance with DoD customers “Raise the Bar,” (RTB) requirements. This role demands a deep understanding of CDS architecture, cloud security principles, policy development, hands-on implementation, and the ability to develop and deliver effective policy, and training programs.

There are a few requirements for the position:

  • Must be a U.S CitizenMust have an Active Secret Clearance (Green Cards / Visas do not qualify)
  • Willingness to undergo a comprehensive background investigation and maintain a personal security clearance. (Aquila would sponsor you for the security clearance.)
  • Must be within 100 miles of worksite (Lexington, MA)

Responsibilities:

RMF Implementation & Compliance:

  • Lead and execute all phases of the RMF process (Categorization, Selection, Implementation, Assessment, Authorization, Monitoring) for CDS and Cloud systems, ensuring strict adherence to NIST SP 800-37, CNSSI 1253, ICD 503, and NSA RTB requirements.
  • Provide guidance for required RMF documentation, to successfully assess and authorize cloud technologies and CDS.
  • Conduct comprehensive security control assessments, vulnerability analyses, and risk assessments for CDS and cloud architectures.
  • Cross Domain Solution (CDS) Expertise:
  • Architect, design, and implement secure CDS solutions, ensuring compliance with NSA RTB requirements and best practices.
  • Provide expert guidance on CDS accreditation processes, and data flow security.
  • Evaluate and recommend CDS technologies and configurations to meet specific mission requirements while maintaining a high security posture.
  • Cloud Security Architecture & Engineering:
  • Design, implement, and secure cloud environments (e.g., AWS, Azure Government, DAF Cloud Works) in accordance with RMF, FedRAMP, DoD SRG, and NSA RTB guidelines.
  • Develop secure cloud network architectures, identity and access management (IAM) strategies, data encryption solutions, and security monitoring within cloud platforms.
  • Provide guidance on secure cloud migration strategies and container security.
  • Policy & Procedure Development:
  • Develop, write, and refine cybersecurity policies, standards, and procedures specifically tailored for CDS and cloud environments, ensuring alignment with NSA RTB and other relevant government regulations.
  • Translate complex security requirements into actionable policy and guidance for technical teams.
  • Implementation & Remediation:
  • Oversee and actively participate in the implementation of security controls and countermeasures for CDS and cloud systems.
  • Provide technical guidance and support to engineering teams to ensure secure system design and configuration.
  • Track and manage POA&Ms, working with stakeholders to ensure timely implementation of CSD and cloud technologies.
  • Training
  • Design, develop, and deliver comprehensive training programs and materials on RMF, CDS security, cloud security best practices, and NSA RTB requirements.

Required Qualifications:

  • Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or a related field.
  • 8+ years of experience in cybersecurity, with at least 5 years directly focused on RMF implementation and accreditation.
  • 3+ years exp designing, architecting, and implementing Cross Domain Solutions (CDS).
  • 3+ years exp securing cloud environments (e.g., AWS GovCloud, Azure Government) at an enterprise level.
  • Proven experience in writing and implementing cybersecurity policies and procedures specific to CDS and cloud.
  • Experience in developing and delivering technical training programs.
  • In-depth understanding of NIST SP 800-37, CNSSI 1253, NIST SP 800-145, DoD Cloud Computing SRG, ICD 503, DoDI 8540.01, and other relevant government cybersecurity frameworks.
  • Hands-on experience with security tools for vulnerability scanning, penetration testing, and security monitoring in cloud environments.
  • Excellent written and verbal communication skills, with the ability to articulate complex technical concepts to diverse audiences.

Preferred Certifications:

  • CISSP (Certified Information Systems Security Professional)
  • CCSP (Certified Cloud Security Professional)
  • CASP+ (CompTIA Advanced Security Practitioner)
  • AWS Certified Security – Specialty
  • Azure Security Engineer Associate
  • Relevant vendor-specific CDS certifications

Must Have

  • Degree Level: Bachelor’s Degree
  • 3 years – Cloud security best practices and tools.
  • 3 years – Experience in managing cloud security, networking, and storage solutions
  • 5 years – Security plans (i.e. RMF), procedures, and compliance with DoD directive 8140
  • 5 years – Networks
  • 5 years – Penetration testing
  • 8 years – Security
  • 8 years – Cyber Experience
  • 2 years – Cyber Operational Readiness Assessment (CORA) process & maintaining an inspection ready environment
  • 8 years – Cyber security operations systems best practices
  • 3 years – Experience designing, architecting, and implementing Cross Domain Solutions (CDS)
  • 6 years – Experience with vulnerability scanning and auditing tools and processes
  • 5 years – NIST SP 800-37
  • 5 years – Risk Management Framework (RMF)
  • 5 years – Security controls and the RMF process
  • 3 years – Systems
  • 3 years – Classified Cloud
  • 3 years – Cloud computing platforms (e.g., AWS, Azure, GCP)

Nice to Have

  • Certification: CCSP (Certified Cloud Security Professional)
  • Certified Information Systems Security Professional (CISSP)
  • Cloud certifications (e.g., AWS Certified Solutions Architect, Microsoft Azure Certification)
  • Security+ CE, CASP, CISSP, or similar security certification

Our interview process is designed to let you get to know us as much as for us to get to know you!

You’ll meet with someone from our Recruiting team so we can learn more about you and answer some of your questions.
You’ll meet with the Hiring Manager to learn more about the team, and the role, and get to tell us more about what you’d bring to the team
You’ll meet team members who will be your peers to help you get a feel for a “real day in the life” at Self.

Benefits and Perks:

Aquila team members experience the opportunity to be part of a fast-paced, customer-focused, and technically innovative work environment. Aquila strives to deliver the best of the best in technical services to our customers. Candidates that possess a love for technical challenges, a desire to constantly learn, and the desire to establish themselves as critical players within a team will enjoy calling Aquila Technology home.

Our Perks Include:

  • PTO – 15 days (vacation/sick) 10 paid holidays – 6 standard (New Year’s, Memorial Day, Independence Day, Labor Day, Thanksgiving, and Christmas) – 4 floating holidays prorated based on your day of hire
  • 1.5 paid days, or 12 hours, for approved volunteer work
  • 1 week of paid maternity/paternity LOA after 1 year of Full-time employment
  • Tuition & Training Reimbursement – 5K annually for pre-approved, job-related tuition, certification, or professional conferences
  • 401K with Fidelity 100% immediate vesting; Plan eligibility begins 90 days following the date of hire. Aquila matches 50 cents on the dollar, up to 6%.
  • Cell Phone & Internet Reimbursed up to $150 monthly to cover cell phone, data, and home internet expenses.
  • Buy Your Own Device (BYOD) Allowance Reimbursed up to $1500 for the purchase of a qualified technology device. Eligible after 90 days of employment, and benefit renews every three years.

Clearance Level: Must have an Active Secret Clearance – Must be US Citizen

Location: Hybrid: 3-5 days/wk onsite; candidate can expect to be onsite at a minimum of 3 days; they will be onsite up to 5 during training and test cycles. Must be local to MA at the start of the assignment

Interviews: 2 rounds Zoom Interviews

We are an Equal Opportunity Employer

Apply Now

Back To Top