Senior Data Architect, Zero Trust (5210) (TS/SCI) (Ft. Belvoir, VA ) at SMX

<p>SMX is seeking a&nbsp;<strong>Senior Zero Trust Data Architect </strong>to lead the design and implementation of a comprehensive data architecture strategy built on Zero Trust security principles, ensuring robust protection of data throughout its entire lifecycle. This senior-level position requires expertise in evaluating and developing security architectures, creating detailed functional specifications, and establishing data governance frameworks that include classification, access controls, and loss prevention measures. The ideal candidate will architect secure data models and pipelines, implement advanced access control mechanisms (ABAC/RBAC), and integrate continuous monitoring and micro-segmentation controls in collaboration with cybersecurity teams. Key responsibilities include developing threat models, managing dynamic trust engines, overseeing encryption and tokenization implementations, and documenting comprehensive security requirements. This role also involves advising executive leadership on Zero Trust architectural strategies, partnering with application development teams to embed security principles in new systems, and mentoring junior architects and engineers in secure data architecture best practices.</p> <p><strong>This is a full-time onsite position in Ft. Belvoir, VA.</strong></p> <p><strong>Essential Duties &amp; Responsibilities</strong></p> <ul> <li>Design and implement a comprehensive data architecture strategy based on Zero Trust principles, ensuring that data is protected at all stages of its lifecycle.</li> <li>Evaluate security architectures and designs to determine the adequacy of security design and architecture proposed or provided in response to requirements.</li> <li>Write detailed functional specifications that document the architecture development process.</li> <li>Develop and enforce data governance policies, including data classification, access controls, and data loss prevention.</li> <li>Create and maintain conceptual, logical, and physical data models for our data platforms.</li> <li>Architect and oversee the implementation of data security measures, including encryption for data in transit and at rest, and tokenization.</li> <li>Develop threat model based on customer interviews and requirements.</li> <li>Collaborate with cybersecurity teams to integrate Zero Trust controls, such as micro-segmentation and continuous monitoring, into the data architecture.</li> <li>Define and implement Attribute-Based Access Control (ABAC) and Role-Based Access Control (RBAC) to enforce the principle of least privilege.</li> <li>Lead the design of secure data pipelines for data ingestion, transformation, and storage in data lakes and data warehouses.</li> <li>Work with application development teams to ensure new applications are designed with Zero Trust data principles.</li> <li>Establish and manage a "trust engine" to dynamically evaluate access requests based on user behavior, device health, and other contextual data.</li> <li>Document the protection needs (i.e., security controls) for the information system(s).</li> <li>Advise higher level leadership on Zero Trust architectural issues.</li> <li>Mentor junior data architects and engineers on Zero Trust best practices and secure data architecture design.</li> </ul> <p><strong>Required Skills, Experience &amp; Education</strong></p> <ul> <li>Active TS security clearance and eligible for SCI and NATO read-on prior to starting work.</li> <li>Security+ or comparable DODD 8140-compliant certification is required.</li> <li>Professional certifications such as Information System Security Architecture Professional (ISSAP), GIAC Defensible Security Architect (GDSA), or a Zero Trust-specific certification (e.g., CSA CCZT) are highly desirable.</li> <li>In-depth knowledge of Zero Trust architecture, principles, and implementation frameworks (e.g., NIST SP 800-207, CISA Zero Trust Maturity Model).</li> <li>Proven experience designing and implementing data-centric security solutions, including data loss prevention (DLP), data classification, and encryption.</li> <li>Knowledge of enterprise information technology (IT) architectural concepts and patterns to include baseline and target architectures.</li> <li>Expertise in data modeling techniques (e.g., dimensional, Data Vault) and tools (e.g., ERwin, Visio).</li> <li>Strong understanding of identity and access management (IAM), multi-factor authentication (MFA), and privileged access management (PAM).</li> <li>Experience with cloud security architecture and services in platforms like AWS, Azure, or GCP.</li> <li>Proficiency in data security and governance tools and platforms.</li> <li>Knowledge of cyber threats and vulnerabilities.</li> <li>Knowledge of emerging security issues, risks, and vulnerabilities.</li> <li>Knowledge of risk assessments and authorization per Risk Management Framework processes.</li> <li>Knowledge of how commercial and federal solutions solve Defense-related data environment and platform challenges, e.g., data classification and rights-management platforms, enterprise data-loss prevention, cloud-access security brokers, key management and encryption, and data-security posture management.</li> <li>Excellent communication skills with the ability to articulate complex security concepts to both technical and non-technical stakeholders.</li> <li>Bachelor’s degree in computer science, Cybersecurity, Information Technology, or a related field.</li> <li>A minimum of 8-10 years of experience in data architecture, with at least 4-5 years in a role with a significant security focus.</li> <li>Demonstrated experience in designing and implementing large-scale, secure data solutions in complex, hybrid environments.</li> <li>Proven track record of leading data governance and security initiatives</li> </ul> <p>&nbsp;</p> <p>Application Deadline: June 22, 2026</p> <p>#CJPOST</p> <p>#LI-onsite</p> <p>&nbsp;</p><div class="content-pay-transparency"><div class="pay-input"><div class="description"><p>&nbsp;</p> <hr> <p><span style="font-size: 16px;">The SMX salary determination process takes into account a number of factors, including but not limited to, geographic location, Federal Government contract labor categories, relevant prior work experience, specific skills, education and certifications. At SMX, one of our Core Values is to Invest in Our People so we offer a competitive mix of compensation, learning &amp; development opportunities, and benefits. Some key components of our robust benefits include health insurance, paid leave, and retirement.</span></p></div><div class="title">The proposed salary for this position is:</div><div class="pay-range"><span>$165,000</span><span class="divider">&mdash;</span><span>$190,000 USD</span></div></div></div><div class="content-conclusion"><p>&nbsp;</p> <p>At SMX®, we are a team of technical and domain experts dedicated to enabling your mission. From priority national security initiatives for the DoD to highly assured and compliant solutions for healthcare, we understand that digital transformation is key to your future success.</p> <p>We share your vision for the future and strive to accelerate your impact on the world. We bring both cutting edge technology and an expansive view of what’s possible to every engagement. Our delivery model and unique approaches harness our deep technical and domain knowledge, providing forward-looking insights and practical solutions to power secure mission acceleration.</p> <p>SMX is an Equal Opportunity employer including disabilities and veterans.</p> <p><span data-teams="true"><span id="message-body-1758638857922" class="fui-ChatMyMessage__body rcngbzt ___eyw0iv0 f10pi13n ftqa4ok f2hkw1w f8hki3x f1d2448m f1bjia2o ffh67wi f1j6vpng f1pniga2 f987i1v f1ffjurs f15bsgw9 f14e48fq f18yb2kv fd6o370 ffwy5si f3znvyf f57olzd f4stah7 f480a47 fs1por5 fk6fouc figsok6 fkhj508 f19n0e5 f9ijwd5 fzqqayd f10ostut f1o0qvyv f9ggezi f1xp5gbu f150uoa4 ffyari3 fo7qwa0 f16xkysk fxowb0n f11ghf3q f13aoclr flypziy f10kwr27 fquw1qa fftr39l f13lathq f15hsm81 f2ss68y ffb60jq f8nuap2 f13nk4fk f7jacry fq08z5q fd9af6s fr74w9q fcl9uv6 f13sm7pj f1u6qqly f16wpxbl faim3u9 f6cs3qo fa2w2z3 fd39nx6 f10gn8j9 frcqmxy f1w9ws4k f1ddxkqj fd10euv fvuz61 f1nbc6gw"><span id="content-1758638857922" class="fui-Primitive ___16zla5h f1oy3dpc fqtknz5 fyvcxda"></span></span></span></p> <div id="x_Signature"></div> <p>Selected applicant may be subject to a background investigation and/or education verification.</p> <p>SMX does not sponsor a new applicant for employment authorization or immigration related support for this position (i.e. H1B, F-1 OPT, F-1 STEM OPT, F-1 CPT, J-1, TN, E-2, E-3, L-1 and O-1, or any EADs or other forms of work authorization that require immigration support from an employer).</p></div>