Solutions Architect, Principal

Credence Management Solutions, LLC (Credence) is seeking a MULTI-INT Engineering to support our Distributed Common Ground System (DCGS) program at Robins AFB, GA. The Air Force Distributed Common Ground System (AF DCGS) is an intelligence enterprise system, comprised of 27 active duty, Air National Guard (ANG), and mission partner sites, interconnected by a robust communications infrastructure spanning the globe.

The Solutions Architect will be responsible for having an in-depth understanding of cloud-based architecture solutions for DoD and Intelligence Community (IC) modernization efforts. The Solutions Architect will be responsible to have experience in deploying enterprise scale applications to production using cloud-based infrastructure. The Solutions Architect will need to be able to perform analysis, design, develop, and deliver cloud-based enterprise architecture models in support of AF DCGS Open Architecture and joint interoperability certification requirements. The Contractor will be required to use engineering process to assess opportunities for interoperability and integration of enterprise ISR systems, while maintaining security posture defined by the ICD 503, National Institute of Standards and Technology (NIST), and/or other policy standards.

Analyze, evaluate, and facilitate the optimization of applications with focus on security.
• Architect cloud security solutions accounting for cloud Diodes and how to architect with on premise cross domain solutions.
• Ensure ICD-503 compliance with existing and new DCGS cloud architecture through validation and testing.
• Manage the DCGS cloud architecture (to include storage and compute) ensuring security compliance.
• Architect the cloud architecture to ensure cost optimization throughout operations.
• Design and manage the continuous Authority to Operate (ATO) architecture and process In concert with the ART engineers, analyze DCGS applications for to determine migration approach
• Architect for cloud operations for automated scaling, elasticity, and failover
• Build detailed cloud migration approach and roadmap accounting for application cloud maturity.
• Operate and maintain secure cloud environments for AF DCGS
• Build/update cloud migration strategy.
• Provide guidance and expertise on secure architecture for applications.
• Provide guidance on cloud/security best practices.
• Provide guidance on NIST, Certification and Accreditation (C&A), ICD 503, STIGs, ATO, automation, and operations in the cloud.
• Provide guidance on monitoring, logging, scanning, encryption, and accountability.
• Provide guidance on the secure designing, deploying, scaling, integrating, testing, and delivering of cloud-based solutions.
• Recommend security cloud services to meet and support application requirements.
• Training and guidance with focus on cloud security
• Develop new ideas, develop strategic relationships and be able to demonstrate understanding of both DoD and IC organization and related system architectures; Experience designing horizontally scalable services and capabilities.

Required Experience and Skills:

• Top Secret security clearance with Sensitive Compartmented Information (TS/SCI) eligibility is required.
• Amazon Web Services (AWS) Identity and Access Management, CloudWatch, CloudTrail, Key Management Services, Amazon Virtual Private Cloud, Elastic Compute Cloud, Amazon S3/ Simple Cloud Storage Service. Minimum of 2 years' experience implementing and supporting AWS or equivalent cloud enterprise solutions.
• Understanding and experience working in the following environments: Scaled Agile Framework environment, Development Operations (DevOps) and agile sprint planning Strong experience with network security concepts such as IPSEC, Virtual Private Network (VPN), Secure Shell protocol (SSH), and Transport Layer Security (TLS), also experience with application solutions such as load balancing, forward/reverse proxy, monitoring, and packet inspection/troubleshooting, hosting and/or Data Center Consolidation
• Knowledge and experience working with some of the following: NIST, ICD 503, SCCA, SRG, Federal Risk and Authorization Management Program (FedRAMP) policies and guidance.
• Experience collaborating in a DevOps environment and using Atlassian Suite products (Jira, BitBucket and Bamboo). Also, Puppet, Terraform, Consul, Kubernetes, Docker Swarm, Microservice architecture, FedRAMP knowledge.
• Experience with Architecture tools such as Cameo and SparX Enterprise Architect
• Experience with supporting a DoD or IC System Program Office (SPO) in architecture development and integration.
• Strong understanding and technical experience with industry best security practices to involve monitoring, logging, scanning, encryption, accountability, analysis, and implementing security solutions for an enterprise environment.
• Understanding of the IC/DoD C&A process to achieve ATO.
• AWS certifications including Solutions Architect Associate, Professional is preferred, but not required.
• AWS certifications including Developer, Systems Operations (SysOps), DevOps is preferred, but not required.
• Ten years of experience in technical leadership for DoD or IC systems or in Government IT strategy, projects, and programs.

Required Professional Qualifications

• Bachelor's degree in cyber security, engineering, or related technical discipline from ABET accredited school in Engineering or Cybersecurity is required with 25 years of experience and 15 years being in the DoD.
• Or, Master's degree in cyber security, engineering, or related technical discipline is preferred with at least 20 years of experience, with 12 years being in the DoD but not required.
• Or, 30 years of directly related experience with proper certifications as described in the PWS labor category performance requirements, 20 years of which must be in the DoD.
• Cybersecurity Qualification is required for Work Role ID 652 Security Architect
• Acquisition Qualification is desired.

Job may require the employee to be:

• Willingness to travel if required.
• In a stationary position 50% of the time
• Able to ascend/descend stairs as required
• Able to move equipment not to exceed 25 lbs as needed

#Li-Onsite