Dinè Source is seeking a Lead Solutions & Security Architect to guide both the technical and cybersecurity architecture of the Defense Retired & Annuitant Pay System Modernization (DRAS-M). This role is pivotal in designing secure, scalable, and compliant system architecture while also leading the risk management, Zero Trust implementation, and compliance strategy needed to support ATO and FISMA readiness. The ideal candidate blends deep technical expertise in cloud-native architecture with authoritative knowledge of DoD cybersecurity frameworks and secure software development practices.

*This position is contingent upon contract award expected August 2025*

• Lead end-to-end technical architecture for the DRAS-M platform, including application, data, API, and integration layers across the IL5 cloud environment
• Define and refine system blueprints aligned with modular microservices, the Strangler Pattern, and Oracle-backed operational data store design to support consolidation of eight disparate legacy subsystems
• Drive Zero Trust Architecture implementation including Identity, Credential, and Access Management (ICAM), role-based access control, encryption, and network segmentation
• Guide Agile development teams on technical direction, enforce DevSecOps controls, and ensure alignment with containerized delivery in GitLab CI/CD pipelines

Technical Responsibilities

• Design secure, scalable, and compliant system architecture that meets the requirements for modernizing DRAS to serve 2.9 million military retirees and beneficiaries
• Implement cloud-native enterprise architecture solutions using Microsoft Azure and service-oriented design principles
• Oversee RMF and FISMA compliance efforts including generation and review of the System Security Plan (SSP), Business Impact Analysis (BIA), Contingency Plan (ISCP), and POA&Ms
• Conduct architecture and security risk assessments, design mitigation strategies, and lead security reviews during sprint closeouts
• Interface with DFAS Cybersecurity teams, DISA, and system owners to support ATO submission and ongoing continuous monitoring
• Oversee vulnerability management across development and production environments using Fortify, WebInspect, ACAS, and other approved tools
• Collaborate with cross-functional teams including product owners, infrastructure teams, and application developers to validate architecture decisions that meet performance, scalability, and auditability requirements
• Other duties as assigned. 

Education & Experience

• Bachelor's degree in computer science, Information Systems, Cybersecurity, Engineering, or related technical field (Masters preferred)
• 9+ years of experience in enterprise solution design and architecture
• 5+ years of experience in cybersecurity leadership roles
• DoD-approved 8140/8570 CISSP/IA System Architecture & Engineering baseline cybersecurity certification
• Public Trust / IT II Security clearance eligibility. Must be a US citizen. 

Technical Skills

Cloud & Enterprise Architecture:

• Expert-level proficiency in cloud-native enterprise architecture, with experience in major cloud platforms (AWS, Azure, GCP)
• Advanced understanding of service-oriented design and microservices architecture
• Experience with containerization and cloud-agnostic deployment strategies
• Proficiency in infrastructure-as-code tools such as Terraform

Security & Compliance:

• Advanced understanding of Zero Trust Architecture principles and implementation
• Expert knowledge of NIST SP 800-53, 800-207, 800-218, and Risk Management Framework (RMF)
• Experience with FedRAMP, FISMA, and DoD cybersecurity directives including DoDI 8510.01, 8570.01-M
• Working knowledge of ATO documentation, eMASS, audit logging, and system boundary definition

Development & Integration:

• Proficiency in architecture tools such as CAST Imaging
• Experience with CI/CD security integration using tools like Fortify and GitLab
• Familiarity with DevSecOps practices and automated security controls
• Understanding of API design and integration patterns

Data Architecture:

• Familiarity with data architecture best practices and Oracle database systems
• Knowledge of SFIS/SLOA compliance requirements
• Experience with encryption at rest and in transit implementation
• Understanding of data retention policies per NARA requirements

Soft Skills

• Strong leadership abilities with experience guiding technical teams and architecture decisions
• Excellent communication skills for interfacing with government stakeholders, cybersecurity teams, and technical staff
• Ability to work effectively in fast-paced Agile environments while maintaining security and compliance standards
• Strong analytical and problem-solving skills for complex enterprise architecture challenges
• Adaptability to evolving security requirements and emerging technologies in government environments

Preferred Qualifications

• Professional certifications such as CCSP, AWS/Azure Solutions Architect, and DoD 8140/8570.01 IASAE Level II or CSSLP Infrastructure Support baseline certification
• AWS or Azure security-related certifications highly desirable (e.g., AWS Certified Security - Specialty, Azure Security Engineer Associate)
• Experience with DFAS systems or DoD financial management environments
• Knowledge of government pay systems and financial regulations
• Experience with Strangler Pattern implementation for legacy system modernization
• Familiarity with Oracle database architecture and optimization
• Experience working with DISA, DFAS Cybersecurity teams, or similar government cybersecurity organizations
• Knowledge of continuous monitoring tools and vulnerability management in government environments
• Experience with GitLab CI/CD pipelines and automated security testing integration
• Understanding of federal audit requirements and compliance frameworks
• Experience leading ATO processes and security documentation development

Diné Development Corporation (DDC) is a Navajo Nation owned family of companies that delivers IT, professional, and environmental solutions to advance the missions of federal, state, and tribal government agencies. As thought leaders and innovators, our team of specialists build client-centric solutions that solve critical challenges faced by defense, civilian, and healthcare organizations. Employing a mission-focused approach, we deliver value that not only enhances current operations, but also drives future change. Closely aligned with this approach is our commitment to advancing the Navajo Nation and its People. Through economic development and community empowerment, we elevate the Navajo Nation to provide lasting impact and sustainable growth for future generations. DDC’s ability to unite legacy-inspired technologies, industry best practices, and proven methodologies has contributed to our success for twenty years.

This contractor and subcontractor shall abide by the requirements of 41 CFR 60-1.4(a), 60-300.5(a) and 60-741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities, and prohibit discrimination against all individuals based on their race, color, religion, sex, sexual orientation, gender identity, national origin, or for inquiring about, discussing, or disclosing information about compensation, or any other basis prohibited by law. We participate in E-Verify.