AI Enterprise Security Architect focusing on AI Security architectural standards and integrating security measures into AI development lifecycle. Leading a global team in securing AI systems.
About the role
- Security Lead managing GSA cloud applications security architecture. Collaborating with teams to ensure compliance with federal security standards and best practices.
Responsibilities
- Serve as the primary authority for system security architecture and compliance
- Collaborate directly with GSA security personnel to define and implement security and compliance controls required for cloud-based applications
- Ensure development teams adhere to approved security architecture and control implementations
- Establish and maintain security documentation, policies, and procedures aligned with federal standards
- Ensure compliance with FISMA and agency-specific security policies governing federal information systems.
- Lead the system through the full Authorization to Operate (ATO) lifecycle for applications
- Develop and maintain System Security Plans (SSPs), security control documentation, and supporting artifacts
- Manage Plans of Action and Milestones (POA&Ms) and track remediation activities
- Support security control assessments and coordinate responses to findings
- Align controls with guidance from the National Institute of Standards and Technology (NIST), FedRAMP requirements, and Trusted Internet Connections (TIC)/cloud security guidance
- Embed automated security controls into CI/CD pipelines to enable secure, continuous delivery
- Promote secure coding practices and continuous monitoring across development teams
- Conduct security risk assessments and oversee vulnerability scanning and penetration testing activities
- Manage security incident response coordination and reporting
- Maintain continuous monitoring practices and ensure audit readiness for all system components
- Support ongoing authorization and continuous ATO practices through automated control monitoring and real-time risk visibility.
Requirements
- Demonstrated experience serving as a Security Lead (or equivalent role) on federal IT programs
- Extensive hands-on experience implementing federal security architectures aligned with NIST guidance, FedRAMP, and TIC/cloud security requirements
- Proven track record leading systems through the full ATO lifecycle, including SSP development and POA&M management
- Deep understanding of integrating security controls into CI/CD pipelines consistent with DevSecOps principles
- Expert-level knowledge securing applications and infrastructure in AWS cloud environments
- Experience conducting risk assessments, vulnerability management, and maintaining audit readiness
- Strong written and verbal communication skills
Benefits
- Health insurance
- 401(k) matching
- Flexible work hours
- Paid time off
- Remote work options
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Cloud Security Engineer supporting and securing client environments across AWS and hybrid infrastructures. Collaborating with Cloud Operations to monitor, investigate, and remediate security events.
Cybersecurity Risk Coordinator at Globo ensuring operational security across digital content. Analyzing risks and developing strategies to enhance business resilience.
Account Cybersecurity Lead providing cybersecurity governance and oversight at Capgemini. Leading client relationships, security management systems, and risk compliance oversight.
Senior SAP Security Specialist managing SAP Security responsibilities and projects. Collaborating on security tools and conducting workshops in Hamburg.
Sales Account Manager for Cyber Security and Awareness role at HvS - Consulting GmbH. Providing holistic consulting on Cyber Security services and managing client relationships.
Security Engineer at PRC - Saltillo safeguarding IT infrastructure from cyber threats. Collaborating with IT teams to design and maintain security controls in a hybrid work environment.
Information Security Manager leading cyber security initiatives at NVISO, enhancing clients’ security posture and managing a team of consultants in Germany.
Cybersecurity Assessment Expert at IT - Strat managing A&A of information systems for U.S. federal clients. Ensuring compliance with DOD cybersecurity policies and standards in complex IT environments.
Director leading Information Security at KPMG Budapest, developing programs and policies to align with global priorities and strategy.