New 
Cloud Solutions Architect - CTJ - TS/SCI
 Microsoft | |
 United States, Texas, Irving | |
| 7000 State Highway 161 (Show on map) | |
 Oct 07, 2025 | |
|
OverviewWe are looking for a Cloud Solution Architect that can perform, and review technical security assessments of cloud computing environments to identify points of vulnerability, non-compliance with established Information Assurance standards and regulations and recommended mitigation strategies.You will ensure the security of multiple organization's classified and unclassified cloud information systems. Development of Information Technology (IT) security policies and standards for multiple federal agencies. Be able to work with other teams across the organization to gain an in-depth understanding of system architectures and cloud system configurations. Be an open communicator with taking complex concepts and tailoring them to the audiences from engineers to executive leadership. The Cloud Solutions Architect will use their experience in the federal Authority to Operate (ATO) and FedRAMP process and guide customers through a seamless accreditation process using experience, tools, and effective communication of cloud security posture. The role requires an individual, who can thrive in ambiguity, is self-motivated, resourceful, confident under pressure, and has demonstrated skilled expectation management. Ability to pivot mid workstream as well as juggle multiple accreditation packages across multiple customers will be a must have skill. Microsoft's mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.
Responsibilities Competency/Capability/Experiences/Skills In depth understanding of artifact creation, eMASS, Xacta, POA&M as well as creation and validation of SSP creation for unique mission applications. Knowledge of firewall (packet filtering, application level gateway, next generation) configurations within a cloud environment.Understanding of Intrusion Detection Systems (IDS) to identify security issues for remediation and reporting. Identify and develop mitigation strategies for cybersecurity threats and security vulnerabilities. Evaluate configuration changes and their impact to the security posture of multiple enterprise cloud solutions. Analyze Security Technical Implementation Guides (STIGs) and Security Content Automation Protocol (SCAP). Assess Risk Management Framework (RMF) NIST 800-53 R4 Information Assurance Controls. Assess and assist with implementation recommendations of countermeasures or mitigating controls. Ensure the integrity and protection of networks, systems, and applications by technical enforcement of Enterprise security policies, through monitoring and analysis of vulnerability scans and system log information. Perform documentation requirements for periodic and on-demand system audits and vulnerability assessments, including user accounts, application access, file system and external Web integrity scans to determine compliance. Prepare incident reports of analysis methodology and results Provide guidance and work leadership to less-experienced technical staff members and customers. Interpret results from network/server/application scanning tools such as Tenable Nessus, Checkmarx and Fortify. Interpret, document, and advise customers on emerging security, governance, and continuous monitoring policies.Articulate cybersecurity risk to senior leadership and provide recommendations for remediation/risk acceptance. Develop and/or support the successful development of cybersecurity processes and procedures. Understanding of NIST RMF Steps 1-6. Explain inheritance models and resources. OtherEmbody our Culture and Values | |