Zero Trust Architect SME

Clearance Level
Top Secret
Category
Cyber and IT Risk Management
Location
Honolulu, Hawaii
(Onsite Workplace)
Key Skills For Success

Identity and Access Managment (IAM)

Secure Network Architecture

Zero Trust

REQ#: RQ215851
Public Trust: None
Requisition Type: Regular
Job Description

Advance your career while impacting our national security in cyber as a Zero Trust Architect Subject Matter Expert (SME) at GDIT. Here, technologists have many paths to grow a meaningful career supporting cyber missions and operations across the federal government.

We are seeking a Zero Trust Architect SME to drive Zero Trust strategy, architecture, and implementation for a mission-critical defense program in Oahu, Hawaii. This individual will serve as the senior technical authority responsible for designing, integrating, and operationalizing Zero Trust principles across enterprise IT systems, cloud environments, tactical networks, and classified infrastructures. 

The ideal candidate brings deep cybersecurity architecture expertise, strong knowledge of DoD Zero Trust guidance, and experience implementing identity-centric and data-centric security controls in complex environments. 

Key Responsibilities 

  • Design and implement Zero Trust architectures aligned with DoD Zero Trust Strategy and Reference Architecture.
  • Develop phased implementation roadmaps for Zero Trust maturity progression.
  • Architect identity, device, network, application, and data protections across multi-domain environments.
  • Ensure alignment with enterprise cybersecurity, cloud, and network modernization initiatives. 

Identity & Access Management (IAM) 

  • Architect and integrate identity-driven security controls including:
    • Multi-factor authentication (MFA)
    • Privileged Access Management (PAM)
    • Identity governance and lifecycle management
    • Conditional access policies 
  • Lead implementation of least privilege and continuous verification principles. 

Network & Micro-Segmentation 

  • Design micro-segmentation and software-defined perimeter solutions.
  • Integrate Zero Trust principles into enterprise routing, switching, SD-WAN, and remote access solutions.
  • Support secure access for hybrid and tactical environments.  

Data Protection & Endpoint Security 

  • Architect data-centric security controls including:
    • Data classification and labeling
    • Data Loss Prevention (DLP)
    • Encryption in transit and at rest 
  • Integrate endpoint detection and response (EDR/XDR) into Zero Trust framework.
  • Ensure device compliance enforcement prior to resource access.  

Cloud & Hybrid Integration 

  • Apply Zero Trust principles to hybrid cloud environments (e.g., AWS GovCloud, Azure Government).
  • Secure containerized and virtualized workloads.
  • Integrate Zero Trust controls into DevSecOps pipelines. 

Governance, Compliance & Risk Management 

  • Ensure compliance with:
    • DoD Zero Trust guidance
    • Risk Management Framework (RMF)
    • DISA STIG requirements 
  • Support ATO activities and cybersecurity inspections.
  • Develop policy documentation and implementation standards.  

 

Required Qualifications 

  • Active Top Secret clearance (SCI eligibility strongly preferred).
  • Bachelor’s degree in Cybersecurity, Computer Science, Engineering, or related field (Master’s preferred).
  • 15+ years of progressive cybersecurity experience.
  • Demonstrated experience implementing Zero Trust principles in DoD or federal environments.
  • Deep expertise in:
    • Identity and Access Management (IAM)
    • Micro-segmentation technologies
    • Endpoint security (EDR/XDR)
    • Secure network architecture
    • Cloud security architecture 
  • Strong understanding of:
    • DoD Zero Trust Strategy and Target Level framework
    • RMF and ATO processes
    • Cross-domain solutions
    • Classified network environments (e.g., SIPR/JWICS)

Certifications (Preferred / Desired) 

  • CISSP
  • CISM or CRISC
  • Certified Zero Trust Professional (CZTP) or equivalent
  • CCSP (Cloud Security)
  • CASP+

Preferred Qualifications 

  • Experience supporting Pacific or INDOPACOM-based missions.
  • Experience transitioning legacy perimeter-based architectures to Zero Trust models.
  • Experience integrating Zero Trust into operational/tactical environments.
  • Familiarity with automation and policy-as-code security enforcement.

GDIT IS YOUR PLACE

At GDIT, the mission is our purpose, and our people are at the center of everything we do.

  • Growth: AI-powered career tool that identifies career steps and learning opportunities
  • Support: An internal mobility team focused on helping you achieve your career goals
  • Rewards: Comprehensive benefits and wellness packages, 401K with company match, and competitive pay and paid time off
  • Community: Award-winning culture of innovation and a military-friendly workplace

OWN YOUR OPPORTUNITY

Explore a career in cyber at GDIT and you’ll find endless opportunities to grow alongside colleagues who share your focus on defending and protecting what matters.

#DefendTheIndoPacific

Work Requirements
Years of Experience

15 + years of related experience

* may vary based on technical training, certification(s), or degree

Certification

Travel Required

None

Citizenship

U.S. Citizenship Required

Salary and Benefit Information

The likely salary range for this position is $169,604 - $229,464. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.
View information about benefits and our total rewards program.

About Our Work

We are GDIT. A global technology and professional services company that delivers technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across over 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, cloud, cyber and application development. Together with our customers, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.

Join our Talent Community to stay up to date on our career opportunities and events at gdit.com/tc.

Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans