Cloud Security Architect, Lead

Cloud Security Architect, Lead

A high‑impact role focused on designing secure, scalable cloud environments for Department of War (DoW) initiatives. The Cloud Security Architect defines cloud security requirements, translates policy into actionable processes, and supports the development of accreditation frameworks, security policies, and baseline controls. The role guides systems through accreditation and authorization, collaborates with stakeholders, security and compliance teams, and architects to implement secure cloud solutions, design assessment methodologies, and establish continuous monitoring strategies.

• 8+ years of experience in cloud security architecture, engineering, or cloud cyber operations in AWS or Azure
• 5+ years of experience designing and implementing secure baselines for cloud networking, identity, secrets management, encryption, logging, monitoring, and compliance
• 3+ years of experience with FedRAMP, DoW SRG, or government cloud accreditation models
• Experience with network boundary technology, such as F5 or Palo Alto firewalls, and working with NIST frameworks, RMF, STIGs, Zero Trust, and cloud governance models
• Experience with IaC (Terraform, Cloud Formation, or CDK), container platforms, Kubernetes security, and Dev Sec Ops  pipelines
• Ability to translate complex security requirements into scalable architecture solutions and articulate rationale to technical and non‑technical stakeholders
• Secret clearance
• HS diploma or GED
• DoD 8570 / 8140 IAM Level III certification such as CCSP, CISSP, or CISM
• Ability to obtain a Professional‑level Cloud Security certification within 60 days of start date

• Experience defining security control baselines and overlays
• Experience developing assessment methodologies and accreditation workflows
• Experience supporting continuous monitoring strategy and execution
• Experience assessing enterprise cloud platforms such as AWS, Azure, or Oracle Cloud
• Experience reviewing architecture diagrams, system boundaries, and data flows
• Knowledge of cloud security domains, including IAM, logging, encryption, and network security
• Possession of strong client‑facing and stakeholder engagement skills
• TS/SCI clearance
• Bachelor’s degree

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information;
Secret clearance is required.

The projected compensation range for this position is $99,000.00 to $ (annualized USD). Salary is determined by factors including location, education, skills, and experience. The posting will close within 90 days from the posting date.

Full‑time and part‑time employees working at least 20 hours per week are eligible for Booz Allen’s benefits program, which includes health, life, disability, financial, and retirement benefits, paid leave, professional development, tuition assistance, work‑life programs, and dependent care. Employees meeting the threshold are eligible for all health benefits. Additional program details are available on the Careers site.

All qualified applicants will receive consideration for employment without regard to disability, veteran status, or any other status protected by applicable federal, state, local, or international law.