Zero Trust Architect Level 3

Job Title: Zero Trust Architect Level 3

Job Category: Engineering

Time Type: Full time

Minimum Clearance Required to Start: TS/SCI

Employee Type: Regular

Percentage of Travel Required: Up to 10%

Type of Travel: Local

* * *

The Opportunity:

CACI is seeking a skilled and experienced Zero Trust Architect (Level 3) to join our dynamic team to support a DoD client in Suitland, MD. The ideal candidate will possess a Top Secret Clearance with SCI (TSC/SCI) and have extensive experience in designing, implementing, and maintaining Zero Trust architectures. This role requires a deep understanding of cybersecurity principles, networking protocols, and advanced security technologies.

Responsibilities:

• Effective interpersonal, organizational, time management, writing/documentation, and briefing skills with strong attention to detail.
• Strong analytical, conceptual, and problem-solving skills.
• Communicate effectively with all levels of management, mission stakeholders, and customers; developing/presenting presentations; conveying complex technical issues in business terms.
• Think outside the box by providing innovative, creative solutions to complex cybersecurity issues.
• Prioritize, execute, and complete tasks with little to no direction in a high-pressure environment.
• Utilize Federal, DoD, IC, and industry standards in the creation of "best practices," manuals, and standard operating procedures.
• Work with the System/Software Development Life Cycle (SDLC) Process.
• Write technical documents addressing complex, sensitive issues.
• Design and implement Zero Trust architectures, including but not limited to secure access, network segmentation, endpoint security, and cloud security.
• In-depth knowledge of identity and access management (IAM) systems, multi-factor authentication (MFA), single sign-on (SSO), and related technologies such as SAML, OpenID Connect, and OAuth2.
• Apply your extensive experience with Zero Trust Network Access (ZTNA) technologies and integrating them with existing security infrastructure (e.g., VPNs, SD-WANs, firewalls).
• Apply your expert knowledge of microservices and containerized environments (e.g., Kubernetes, Docker) and their security implications within a Zero Trust model.
• Work with cloud security and integration of Zero Trust principles within AWS, Azure, and Google Cloud platforms, with a focus on identity management, data protection, and secure access control.
• Use tools and solutions for microsegmentation (e.g., VMware NSX, Cisco Secure Workload, Illumio, and Guardicore), with a proven ability to configure and maintain segmented security zones and control east-west traffic.
• Dynamic data tagging and classification to enforce Zero Trust access controls, ensure secure data handling, and simplify data security audits and compliance.
• Data tagging for sensitive and regulated data (e.g., SECRET, TOP SECRET, etc.), ensuring appropriate security policies are applied based on data classification levels and user access privileges.
• Security Information and Event Management

Qualifications:

• BA/BS in Computer Science, Information Technology, Information Assurance, or a related field is desired; a Master’s degree is preferred.
• Without a degree, 15+ years of relevant professional experience in those fields is required.
• 10+ years of professional experience with Local Area Network (LAN)/Wide Area Network (WAN) technologies, networking protocols, file systems, ports, services, and commands (Windows and Unix/Linux).
• 8+ years of concentrated experience in the Computer Network Defense (CND) discipline.
• 6+ years of professional experience in information technology solution installation, integration, configuration, administration, maintenance, and performance of Risk Management Framework (RMF) functions.
• Expert-level knowledge of Zero Trust security principles, frameworks, and architectures, including micro-segmentation, least-privilege access, and identity-centric security models.
• TS/SCI Clearance

-

What You Can Expect:

 A culture of integrity.

At CACI, we place character and innovation at the center of everything we do. As a valued team member, you’ll be part of a high-performing group dedicated to our customer’s missions and driven by a higher purpose – to ensure the safety of our nation.

An environment of trust.

CACI values the unique contributions that every employee brings to our company and our customers - every day. You’ll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality.

A focus on continuous growth.

Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground — in your career and in our legacy.

Pay Range:

There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits.

The proposed salary range for this position is:

$131,800 - $290,000