Zero Trust Architect

The Challenge:

Are you looking for an opportunity to not just define and enhance security solutions, but to build solutions that will help drive modernization initiatives to support national security? As an Enterprise Security Architect focused on Zero Trust Architectures, you can help build and enhance complex and diverse security and data-intensive systems based upon documented requirements.

We’re looking for an architect to implement Zero Trust infrastructure with data security controls, including enhanced Zero Trust detection capabilities and improved event analysis, in large enterprises. You will also review, analyze, and architect Zero Trust security configurations, designs, and solutions. In this role, you will drive the Zero Trust security of some of the nation’s most advanced, data intensive systems. We need a Zero Trust architect who will apply threat modeling techniques for developing custom tailored Zero-Trust controls that apply to secure design and architecture methodologies for network, data, and application deployments. Work to infuse Zero Trust design principles across all pillars in a Zero Trust model. Lead enterprise-wide, end-to-end Zero Trust architecture projects involving cutting edge technologies and concepts, such as SD-WAN, SASE, edge computing, cloud technologies, enterprise identity, microservices, containers, encryption, tokenization, AI, ML, SIEM, SOAR, UEBA, and threat modeling. You will help consult on Zero Trust security technologies, tools and techniques and communicate the complexities of security with a wide variety of audiences, including senior management.

You Have:

  • 5+ years of experience with enterprise security architectural experience designing, building, and maintaining enterprise IT systems

  • Experience with common, enterprise grade network security or SIEM technologies

  • Experience with enterprise cloud systems

  • Knowledge of Federal environments and standards

  • TS/SCI clearance with a polygraph

  • BA or BS degree

  • Security+ CE Certification

Nice If You Have:

  • Experience with solutioning across Zero Trust pillars

  • Experience with data classification standards and controls in U.S. government environments and classified data handling

  • Experience in scripting languages, including PowerShell, Bash, Shell, Python or any front end/backend code

  • Knowledge of U.S. security requirements related to regulations/standards, including NIST SP 800-171, 800-53, RMF, ISO 27001, or SOX

  • Knowledge of Zero Trust principles, frameworks, and implementation strategies

  • Knowledge of end-to-end product/solution sets to implement Zero Trust

  • CISSP, Cloud+ Certification

  • Forrester Zero Trust Strategy Certification


Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance with polygraph is required.

Build Your Career:
Rewarding work, fun challenges, and a ton of investment in our people—that’s Booz Allen cyber. When you join Booz Allen, we’ll help you develop the career you want.

  • Competitions — From programming competitions at our PyNights (Python competition and learning events) to competing in CTFs, we’ve got plenty of chances for you to show off your skills.

  • Paid Research — Have an innovative idea to explore or hypothesis to test? You can participate in challenges via our crowdsourcing platform, the Garage, and other programs to be awarded dedicated time and/or funding to advance your skills.

  • Cyber University — CyberU has more than 5000 instructor-led and self-paced cyber courses, a free online library that you can access from just about anywhere—including your phone—and certification exam prep guides that include practical assessments to prepare you for your exam.

  • Academic Partnerships — In addition to our tuition reimbursement benefit, we’ve partnered with University of Maryland Global Campus to offer two graduate certificate programs in cybersecurity—fully funded without a tuition cap.

  • Maker/Hackerspaces — Race drones, print 3D gadgets, drink coffee from our Wi-Fi coffee maker, and get hands-on training on tools and tech from in-house experts in our dedicated maker and hackerspaces.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristic—to fearlessly drive change.

Not ready to apply? Join our talent community and sign up for job alerts.