Security Readiness Architect, GRC specialist

- Design systems to facilitate authorization across FedRAMP, DoD RMF, CMMC, and associated federal cybersecurity frameworks - Convert requirements sourced from NIST SP 800-53, NIST SP 800-171/172, and DoD security directives into actionable architecture patterns and engineering strategies - Establish secure reference architectures encompassing identity management, network segmentation, platform security, data safeguarding, logging, monitoring, and system boundary design - Collaborate directly with engineering and DevSecOps teams to integrate security controls within platform architecture, CI/CD workflows, and operational processes - Perform security architecture assessments and design evaluations for applications, platforms, and infrastructures that support federal objectives - Advise teams on structuring systems for efficient authorization, including strategies for control inheritance, system boundary definition, and shared service architectures - Lead or assist in GRC program tasks such as planning for control implementation, conducting risk assessments, and preparing for authorization - Aid in the creation of authorization documents like System Security Plans (SSPs), control narratives, architecture documentation, and POA&Ms - Offer expertise on DoD Cloud Computing environments (IL4/5/6), National Security Systems (NSS), and environments managing Controlled Unclassified Information (CUI) and National Security Information - Execute DISA STIG analysis and secure configuration evaluations for operating systems, platforms, and infrastructure - Work alongside DevSecOps teams to introduce automated compliance validation, continuous monitoring, and security telemetry - Share architecture guidance and readiness briefings with engineering teams, leadership, and governmental stakeholders - Stay informed on advancing federal cybersecurity policies and convert new requirements into architecture and GRC program advice