Cloud Security Architect - Senior

Barbaricum is a rapidly growing government contractor providing leading-edge support to federal customers, with a particular focus on Defense and National Security mission sets. We leverage more than 17 years of support to stakeholders across the federal government, with established and growing capabilities across Intelligence, Analytics, Engineering, Mission Support, and Communications disciplines. Founded in 2008, our mission is to transform the way our customers approach constantly changing and complex problem sets by bringing to bear the latest in technology and the highest caliber of talent.

Headquartered in Washington, DC's historic Dupont Circle neighborhood, Barbaricum also has a corporate presence in Tampa, FL, Bedford, IN, and Dayton, OH, with team members across the United States and around the world. As a leader in our space, we partner with firms in the private sector, academic institutions, and industry associations with a goal of continually building our expertise and capabilities for the benefit of our employees and the customers we support. Through all of this, we have built a vibrant corporate culture diverse in expertise and perspectives with a focus on collaboration and innovation. Our teams are at the frontier of the Nation's most complex and rewarding challenges. Join our team.

Barbaricum is seeking an experienced Senior Cloud Security Architect to lead the design, governance, and implementation of secure cloud security architectures under the Military Community and Family Policy (MC&FP) Outreach and Digital Enterprise Services (MODES) contract. You will define DoD SRG- and FedRAMP-compliant cloud security patterns, establish Zero Trust architecture approaches, support DevSecOps integration, and ensure MC&FP cloud environments meet rigorous federal cybersecurity, compliance, and operational requirements.

Responsibilities:

• Define and govern secure cloud security architectures by selecting and approving DoD SRG- and FedRAMP-compliant services for MC&FP cloud environments.
• Develop security architectures, control frameworks, policy artifacts, and technical patterns aligned with DISA, DoD, FedRAMP, and applicable federal cybersecurity requirements.
• Establish and mature Zero Trust security patterns across cloud environments, including identity, access, segmentation, monitoring, data protection, and compliance enforcement considerations.
• Provide architectural direction for DevSecOps integration, vulnerability assessment scope, security compliance enforcement, and secure cloud deployment practices.
• Collaborate with IT, cybersecurity, cloud engineering, and program teams to ensure cloud architectures follow strict security protocols and mission requirements.
• Develop, implement, and maintain cloud security policies, protocols, procedures, standards, and governance artifacts.
• Assess existing security measures, cloud configurations, network security controls, and application security practices, and recommend enhancements to reduce cyber risk.
• Monitor security vulnerabilities, cyber threats, network traffic, and unusual activity affecting cloud infrastructure, data, and mission systems.
• Conduct security audits, risk assessments, control reviews, and compliance assessments, and prepare audit reports and leadership-level findings.
• Support incident response activities, including investigation, containment support, root cause analysis, and post-event analysis of cybersecurity incidents.
• Update security measures as necessary to protect data, systems, applications, infrastructure, and sensitive information from unauthorized access or compromise.
• Provide security training, technical guidance, and architectural recommendations to colleagues, stakeholders, and leadership.

Required Skills:

• Expert knowledge of cloud security architecture, secure cloud design patterns, cybersecurity frameworks, compliance controls, and federal cloud security requirements.
• In-depth knowledge of cloud service providers such as AWS, Microsoft Azure, and Google Cloud, including secure service selection, configuration, and governance considerations.
• Strong understanding of DoD SRG, FedRAMP, DISA requirements, Zero Trust principles, and security control implementation in Government or secure IT environments.
• Expertise in information security technologies, countermeasures, network security policies, vulnerability management, incident response, and risk assessment practices.
• Strong understanding of network architecture, network protocols, application development methodologies, data privacy, and cloud infrastructure security.
• Ability to analyze security systems, identify weaknesses, assess threats, and continuously recommend improvements to security posture.
• Ability to think adversarially, anticipate attack paths, and design practical controls that reduce exploitability and operational risk.
• Strong problem-solving, analytical, and technical judgment skills in complex cloud, cybersecurity, and compliance environments.
• Excellent written and verbal communication skills, with the ability to explain complex security, architecture, and compliance concepts in an understandable manner.
• Ability to collaborate across technical, cybersecurity, program management, and Government stakeholder terms to align architecture decisions with mission objectives.

Required Qualifications:

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, Cloud Computing, Engineering, or a related field; Master's degree preferred.
• Cloud architecture or security certifications preferred, such as AWS Certified Solutions Architect, Google Cloud Professional Cloud Architect, Microsoft Azure Solutions Architect Expert, Certified Cloud Security Professional (CCSP), or similar.
• 10+ years of experience developing, implementing, securing, or managing cloud environments, particularly in a government, federal, defense, or secure IT setting.
• Demonstrated experience developing cloud security architectures, security policies, control frameworks, compliance artifacts, or secure deployment patterns.
• Experience supporting cybersecurity compliance, security audits, vulnerability management, incident response, risk assessments, and continuous monitoring activities.
• Experience working with cloud engineering, DevSecOps, application, infrastructure, cybersecurity, and Government stakeholder teams preferred.
• DoD Secret Security Clearance.

EEO Commitment

All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law.