Zero Trust Architect SME

Type of Requisition:

Regular

Clearance Level Must Currently Possess:

Top Secret

Clearance Level Must Be Able to Obtain:

Top Secret/SCI

Public Trust/Other Required:

None

Job Family:

Cyber and IT Risk Management

Job Qualifications:

Skills:

Identity and Access Managment (IAM), Secure Network Architecture, Zero Trust

Certifications:

None

Experience:

15 + years of related experience

US Citizenship Required:

Yes

Job Description:

Advance your career while impacting our national security in cyber as a Zero Trust Architect Subject Matter Expert (SME) at GDIT. Here, technologists have many paths to grow a meaningful career supporting cyber missions and operations across the federal government.

We are seeking a Zero Trust Architect SME to drive Zero Trust strategy, architecture, and implementation for a mission-critical defense program in Oahu, Hawaii. This individual will serve as the senior technical authority responsible for designing, integrating, and operationalizing Zero Trust principles across enterprise IT systems, cloud environments, tactical networks, and classified infrastructures. 

The ideal candidate brings deep cybersecurity architecture expertise, strong knowledge of DoD Zero Trust guidance, and experience implementing identity-centric and data-centric security controls in complex environments. 

Key Responsibilities 

• Design and implement Zero Trust architectures aligned with DoD Zero Trust Strategy and Reference Architecture.
• Develop phased implementation roadmaps for Zero Trust maturity progression.
• Architect identity, device, network, application, and data protections across multi-domain environments.
• Ensure alignment with enterprise cybersecurity, cloud, and network modernization initiatives. 

Identity & Access Management (IAM) 

• Architect and integrate identity-driven security controls including:
  • Multi-factor authentication (MFA)
  • Privileged Access Management (PAM)
  • Identity governance and lifecycle management
  • Conditional access policies 
• Lead implementation of least privilege and continuous verification principles. 

Network & Micro-Segmentation 

• Design micro-segmentation and software-defined perimeter solutions.
• Integrate Zero Trust principles into enterprise routing, switching, SD-WAN, and remote access solutions.
• Support secure access for hybrid and tactical environments.  

Data Protection & Endpoint Security 

• Architect data-centric security controls including:
  • Data classification and labeling
  • Data Loss Prevention (DLP)
  • Encryption in transit and at rest 
• Integrate endpoint detection and response (EDR/XDR) into Zero Trust framework.
• Ensure device compliance enforcement prior to resource access.  

Cloud & Hybrid Integration 

• Apply Zero Trust principles to hybrid cloud environments (e.g., AWS GovCloud, Azure Government).
• Secure containerized and virtualized workloads.
• Integrate Zero Trust controls into DevSecOps pipelines. 

Governance, Compliance & Risk Management 

• Ensure compliance with:
  • DoD Zero Trust guidance
  • Risk Management Framework (RMF)
  • DISA STIG requirements 
• Support ATO activities and cybersecurity inspections.
• Develop policy documentation and implementation standards.  

 

Required Qualifications 

• Active Top Secret clearance (SCI eligibility strongly preferred).
• Bachelor’s degree in Cybersecurity, Computer Science, Engineering, or related field (Master’s preferred).
• 15+ years of progressive cybersecurity experience.
• Demonstrated experience implementing Zero Trust principles in DoD or federal environments.
• Deep expertise in:
  • Identity and Access Management (IAM)
  • Micro-segmentation technologies
  • Endpoint security (EDR/XDR)
  • Secure network architecture
  • Cloud security architecture 
• Strong understanding of:
  • DoD Zero Trust Strategy and Target Level framework
  • RMF and ATO processes
  • Cross-domain solutions
  • Classified network environments (e.g., SIPR/JWICS)

Certifications (Preferred / Desired) 

• CISSP
• CISM or CRISC
• Certified Zero Trust Professional (CZTP) or equivalent
• CCSP (Cloud Security)
• CASP+

Preferred Qualifications 

• Experience supporting Pacific or INDOPACOM-based missions.
• Experience transitioning legacy perimeter-based architectures to Zero Trust models.
• Experience integrating Zero Trust into operational/tactical environments.
• Familiarity with automation and policy-as-code security enforcement.

GDIT IS YOUR PLACE

At GDIT, the mission is our purpose, and our people are at the center of everything we do.

• Growth: AI-powered career tool that identifies career steps and learning opportunities
• Support: An internal mobility team focused on helping you achieve your career goals
• Rewards: Comprehensive benefits and wellness packages, 401K with company match, and competitive pay and paid time off
• Community: Award-winning culture of innovation and a military-friendly workplace

OWN YOUR OPPORTUNITY

Explore a career in cyber at GDIT and you’ll find endless opportunities to grow alongside colleagues who share your focus on defending and protecting what matters.

#DefendTheIndoPacific

The likely salary range for this position is $169,604 - $229,464. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.

Scheduled Weekly Hours:

40

Travel Required:

None

Telecommuting Options:

Onsite

Work Location:

USA HI Honolulu

Additional Work Locations:

Total Rewards at GDIT:

Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.

We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.

Join our Talent Community to stay up to date on our career opportunities and events at

gdit.com/tc.

Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans