FedRAMP Enterprise Security Architect

FedRAMP Enterprise Security Architect

The FedRAMP Enterprise Security Architect is a senior technical and governance authority responsible for architecting, securing, and maturing the organization's cloud platforms in alignment with federal requirements. This role blends deep, hands‑on security engineering expertise with program leadership‑driving FedRAMP authorization, continuous monitoring, technical control execution, and cross‑functional security enablement across multi‑cloud environments.

You will directly influence the enterprise's security posture, working across engineering, product, operations, compliance, public sector programs, and external assessors to ensure federal‑grade trust, security and compliance.

As a FedRAMP Enterprise Security Architect, you will:

• Architect and integrate secure solutions across AWS, Azure, GCP, and modern application platforms including containers and Kubernetes.
• Build, evaluate, and refine authorization boundary diagrams, network/data flow diagrams, and enterprise security design patterns.
• Execute technical security controls within production federal environments.
• Enhance detection and monitoring capabilities by identifying gaps and implementing improved logging, alerting, and analytics.

• Partner with engineering, product, Dev Ops, and operations to embed security early in the development lifecycle.
• Translate complex NIST and audit requirements into clear engineering tasks and architectural recommendations.
• Act as a trusted security advisor during customer engagements, proposal reviews, and technical deep dives.
• Review vendor and customer contracts to ensure alignment with federal security standards.

• Contribute to broader enterprise compliance programs including ISO 27001, SOC 2, PCI‑DSS, and others.
• Maintain and evolve core security policies, standards, incident response plans, and contingency plans.

• Act as a trusted advisor for cloud security across AWS, Azure, and GCP environments supporting federal workloads.
• Conduct architecture reviews to ensure federal architecture requirements are incorporated into new platform features and services.
• Collaborate with engineering, Dev Ops, compliance, and public‑sector stakeholders to address security challenges and drive improvements.
• Support new FedRAMP authorizations and significant change processes in collaboration with 3
  
  PAOs.
• Stay current with FedRAMP, DISA, NIST, CC SRG, and STIG requirements and ensure timely remediation of compliance gaps.
• Build detailed FedRAMP‑compliant diagrams including ABD, NFD, and DFD using tools such as Lucid Chart or Visio.

You're a fit for the role of FedRAMP Enterprise Security Architect if your background includes:

• 10+ years in cloud security architecture, engineering, or related roles (federal workloads preferred).
• Demonstrated expertise for FedRAMP, NIST RMF, and NIST SP 800‑53 Rev 5 controls.
• Deep technical expertise in securing cloud‑native platforms: AWS, Azure, Kubernetes, containers, microservices, and modern app architectures.
• Experience both shaping compliance strategy and implementing technical controls hands‑on.
• Proven ability to influence cross‑functional leaders and drive organizational change.
• Experience providing executive‑level updates and navigating Agile environments.

• 3+ years supporting public sector cloud programs (FedRAMP, DoD, state/local).
• Experience with IaC, CI/CD, automation (Terraform, Git Ops, etc.).
• Knowledge of DISA STIGs, CC SRG, FIPS 140‑2/3, and federal encryption requirements.
• Experience collaborating with 3
  
  PAOs or participating in assessment cycles.

As the FedRAMP Enterprise Security Architect, you will define and influence the security backbone for critical cloud services powering federal missions. This is a high‑impact role for a security leader who thrives in environments where architecture, compliance, and hands‑on engineering converge.

• Hybrid Work Model: We’ve adopted a flexible hybrid working environment (2–3 days a week…