Cloud Network Security Architecture Manager (TIC 3.0)

GDIT has an opportunity for a Cloud Network Security Architecture Manager supporting the Department of Veterans Affairs (VA). This role leads secure network and cloud architecture design, TIC 3.0 modernization, and enterprise gateway operations. The manager partners with stakeholders, guides technology decisions, and ensures security, compliance, and performance across hybrid and multi‑cloud environments.

HOW YOU WILL MAKE AN IMPACT

• Partner with internal teams and customer groups to define strategy, design solutions, and support implementation.
• Collaborate with stakeholders and vendors to ensure solutions meet technical and business requirements.
• Communicate technical status, risks, and impacts to leadership and customers.
• Evaluate new technologies, perform pilots, assess vendors, and recommend solutions.
• Resolve escalations by analyzing issues, providing guidance, and implementing fixes.
• Mentor engineering staff on key technologies and processes.
• Develop and execute test plans to validate solutions.
• Establish timelines, coordinate delivery, and support budgeting decisions.
• Write functional and technical requirements and solution documentation.
• Stay current on cloud, security, and network technology trends.
• Support selection, implementation, and operationalization of new technologies.

WHAT YOU’LL NEED TO SUCCEED

• Bachelor’s Degree or 4+ additional years of experience in lieu of a degree.

• 10+ years in cloud, network, or platform engineering/architecture supporting enterprise‑scale environments.

• 3+ years leading AWS/Azure hybrid or multi‑cloud environments in regulated or federal settings.
• Experience supporting large federal agencies or customers.

• Support 24×7×365 TIC operations, including critical incident bridge participation.
• Lead TIC 3.0 policy enforcement, DNS filtering, SSL decryption, IPS/IDS signature deployment.
• Manage DHS Cyber Hygiene, ED 19‑01, BOD 18‑01/19‑02 compliance and remediation actions.
• Oversee external connections (BPE/S2S VPN) approval, audits, and configuration lifecycle.
• Deliver required weekly TIC reports, vulnerability rollups, and compliance status updates.
• Lead TIC technical refresh, architecture redesign, and next‑generation gateway modernization.

Additional Experience:
• Experience designing landing zones, secure network/identity patterns, and CI/CD/IaC pipelines.
• Knowledge of NIST 800‑53/RMF, Zero Trust, TIC 3.0, FedRAMP services, and continuous monitoring.
• Experience delivering Kubernetes/OpenShift platforms with DR, RTO, and RPO requirements.
• Leadership in multi‑vendor/SIAM environments with cross‑domain change coordination and incident response.

Technical Skills:

• Cloud Platforms: AWS, Azure, IAM/Entra ID, landing zones, cloud networking, security, monitoring.
• Networking & Identity: VPC/VNet design, hub‑and‑spoke, SD‑WAN, DNS, NAT, firewalls, service mesh, SSO, PIV/FIDO2.
• Automation & Delivery: Terraform, CloudFormation/Bicep, Ansible, Packer, Helm, GitOps, policy as code.
• Containers & Platforms: Kubernetes/OpenShift operations, lifecycle management, security.
• Observability & SRE: OpenTelemetry, Prometheus/Grafana, SIEM/log analytics, SLOs/error budgets.
• Data & Storage: Managed databases, backup/restore, immutability, replication.
• Security & Compliance: CIS/STIGs, vulnerability orchestration, encryption, secrets management.
• Cost & Performance: FinOps fundamentals, autoscaling, rightsizing, performance tuning.

Preferred Certifications:

• AWS Solutions Architect – Professional
• Microsoft Azure Solutions Architect Expert
• VMware Certified Professional / Advanced Professional
• CKA/CKAD or OpenShift Administrator
• HashiCorp Terraform Associate / Authoring and Operations Professional

LOCATION: Hybrid, based out of Martinsburg, WV or Austin, TX.

CLEARANCE: Must be able to obtain and maintain a Public Trust clearance.

Visa sponsorship will not be provided for this position.

GDIT IS YOUR PLACE
At GDIT, the mission is our purpose, and our people are at the center of everything we do.
● Growth: AI-powered career tool that identifies career steps and learning opportunities
● Support: An internal mobility team focused on helping you achieve your career goals
● Rewards: Comprehensive benefits and wellness packages, 401K with company match, and competitive pay and paid time off
● Community: Award-winning culture of innovation and a military-friendly workplace

OWN YOUR OPPORTUNITY
Explore an enterprise IT career at GDIT and you’ll find endless opportunities to grow alongside colleagues who share your desire to drive operations forward.