Multi Cloud Engineer Architect SME

Description

Leidos Digital Modernization is seeking an experienced Multi Cloud Engineer Architect SME to support large-scale migration and operations on a large, high-profile DOD contract. The I3TS program provides enterprise-wide IT support to enable DTRA's Information Management & Technology Directorate (ITD) to consolidate, modernize, and continuously innovate the delivery of IT services and mission capabilities to DTRA's internal and external mission partners operating in CONUS and OCONUS locations.

The Multi-Cloud Engineer/Architect SME will lead the design and deployment of secure, scalable, and compliant cloud environments spanning Microsoft Azure, AWS, and hybrid on-premises systems.. This role will be responsible for tech requirement definition, feasibility studies, pilot projects and implementations plans, as well as diagnosing and troubleshooting outages, monitoring networks, infrastructure and systems, and proving proactive mitigation strategies.

This role is part of a highly skilled technical team responsible for designing and deploying secure, scalable, and compliant hybrid- and multi-cloud architectures that enable mission success across complex defense environments.

The ideal candidate will bring deep expertise in cloud architecture, identity and access management (IAM), zero-trust frameworks, and multi-cloud governance, with proven experience implementing solutions within DoD IL4/IL5-accredited environments. This role directly supports the modernization goals DTRA's mission-critical cloud transformation efforts. The selected candidate will design and implement Zero Trust-aligned, IL4/IL5-accredited solutions integrating Azure, AWS, and on-premises systems in accordance with DoD cybersecurity requirements.

Primary Responsibilities:

• Architect, design, and implement multi-cloud (Azure, AWS, hybrid) solutions that meet DoD mission objectives and cybersecurity requirements.

• Lead the configuration, integration, and optimization of Microsoft Entra ID (Azure AD) and AWS Identity Center (formerly AWS SSO) for federated identity and centralized access control.

• Develop and enforce IAM governance, Zero Trust Architecture (ZTA) principles, and role-based access controls (RBAC) across cloud and on-premises systems.

• Design and implement cross-cloud identity federation and SSO solutions using SAML 2.0, OIDC, and SCIM protocols.

• Integrate Azure Policy, AWS Service Control Policies (SCPs), and Terraform/Bicep automation for compliance enforcement and least-privilege security.

• Collaborate with cybersecurity and compliance teams to align architectures with DISA STIGs, DoD Cloud Computing SRG (IL4/IL5), NIST 800-53, and FedRAMP High baselines.

• Provide architectural leadership for hybrid cloud connectivity, data protection, and cross-domain security.

• Guide cloud adoption and migration strategies that enhance operational agility while maintaining security posture.

• Create and maintain architectural documentation, diagrams, and compliance traceability artifacts. Develop and maintain architectural documentation, identity diagrams, and compliance traceability.

• Stay current on Azure and multi-cloud capabilities relevant to DoD, federal, and intelligence mission systems.

Basic Qualifications:

• Active DoD Top Secret clearance with SCI Eligibility.

• DoD 8570 IAT Level II certification.

• BS degree and 12+ years of prior relevant experience or a Masters degree with 10+ years of prior relevant experience, additional years of experience may be considered in lieu of a degree.

• 7+ years of experience designing and implementing secure Azure-based solutions in enterprise or government environments.

• Active AWS Certified Solutions Architect - Professional and/or Microsoft Certified: Azure Solutions Architect Expert certification.

• Proven expertise with IAM, federated identity, and multi-cloud access management.

• Demonstrated experience integrating Microsoft Entra ID (Azure AD), AWS Identity Center, and on-premises Active Directory.

• Strong understanding of federated identity, SAML/OIDC protocols, and cross-cloud authentication mechanisms.

• Hands-on experience with Infrastructure as Code (IaC) tools such as Terraform, CloudFormation, and Bicep.

• Familiarity with DoD cybersecurity frameworks including DISA STIGs, CMMC, and Zero Trust Architecture guidance.

• Strong communication skills and ability to collaborate effectively with government stakeholders, security teams, and engineering personnel.

• Familiarity with Azure Government (DoD), FedRAMP, and DISA STIG compliance frameworks.

• Hands-on experience with Terraform, Bicep, Azure CLI, and CI/CD automation.

• Must be able to work as part of a team to troubleshoot and resolve complex issues.

• Excellent written and verbal communication skills. This includes drafting SOPs, architectural plans and drawings, and technical documentation as well as communication with senior program and customer leadership.

Preferred Qualifications:

• Experience with Zero Trust implementation in DoD or federal mission systems.

• Familiarity with AWS GovCloud (US), Azure Government, and hybrid integrations.

• Knowledge of multi-cloud networking, enclave isolation, and cross-domain solution (CDS) patterns.

• Experience with Kubernetes (EKS/AKS), containerized workloads, and DevSecOps pipelines.

• Advanced certifications such as CISSP, CCSP, or Microsoft Cybersecurity Architect Expert.

• Prior experience supporting DISA, USCYBERCOM, or similar Joint Cloud modernization programs (JADC2, DEOS).

• Experience providing technical leadership and oversight of teams of junior, intermediate, and senior Engineers.

If you're looking for comfort, keep scrolling. At Leidos, we outthink, outbuild, and outpace the status quo - because the mission demands it. We're not hiring followers. We're recruiting the ones who disrupt, provoke, and refuse to fail. Step 10 is ancient history. We're already at step 30 - and moving faster than anyone else dares.

For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

The Leidos pay range for this job level is a general guideline onlyand not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.

About Leidos

Leidos is an industry and technology leader serving government and commercial customers with smarter, more efficient digital and mission innovations. Headquartered in Reston, Virginia, with 47,000 global employees, Leidos reported annual revenues of approximately $16.7 billion for the fiscal year ended January 3, 2025. For more information, visit www.Leidos.com.

Pay and Benefits

Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available at www.leidos.com/careers/pay-benefits.

Securing Your Data

Beware of fake employment opportunities using Leidos' name. Leidos will never ask you to provide payment-related information during any part of the employment application process (i.e., ask you for money), nor will Leidos ever advance money as part of the hiring process (i.e., send you a check or money order before doing any work). Further, Leidos will only communicate with you through emails that are generated by the Leidos.com automated system - never from free commercial services (e.g., Gmail, Yahoo, Hotmail) or via WhatsApp, Telegram, etc. If you received an email purporting to be from Leidos that asks for payment-related information or any other personal information (e.g., about you or your previous employer), and you are concerned about its legitimacy, please make us aware immediately by emailing us at LeidosCareersFraud@leidos.com.

If you believe you are the victim of a scam, contact your local law enforcement and report the incident to the U.S. Federal Trade Commission.

Commitment to Non-Descrimination

All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.