Skip to Main Content

Cloud Architect

Crystal Management
Reston, VA
  • Posted: over a month ago
  • Full-Time
Job Description


Since 2005, Crystal Management provides information technology (IT) infrastructure, systems integration, cybersecurity, facility design and transition, and professional services to customers in the defense, civilian federal agencies, homeland security, intelligence, and commercial sectors. We understand the mission demands innovative approaches, technology, and people. With talented professionals deployed worldwide, Crystal Management delivers IT enterprise solutions, systems engineering, and management consulting services for the largest transformation and restationing programs in defense history. Crystal Management is a service-disabled veteran-owned small business.

Position Summary

Crystal Management is seeking a motivated, career, and customer-oriented Cloud Architect to join our team in the Reston, VA area to provide unparalleled support to multiple federal agencies through the Continuous Diagnostics & Mitigation (CDM) Program. The CDM Program is a high-profile, high-visibility, cybersecurity modernization and risk management program where you can contribute innovative solutions and consult with multiple federal agencies to enhance their Information Assurance (IA) programs and continuous monitoring capabilities.

The Cloud Architect provides the necessary technical expertise to architect and design cyber security solutions to be deployed into cloud-based and hybrid environments for Federal Government clients. This position requires thorough knowledge of cloud and security architectures, design methodologies, tools, and techniques employed to reduce the client's cyber security risk posture. The successful candidate will bring a consultative approach to solving our clients' cyber security problems, coupled with demonstrated experience designing enterprise cybersecurity solutions utilizing cloud-based tools for Federal government clients.


  • Provide subject matter expertise in the areas of cloud, network, and security architectures and technologies
  • Provide technical oversight in the development of enterprise security architecture solutions
  • Lead technical engagement to assess clients' business and technical objectives, determine deliverables, evaluate risks, and recommend implementation approaches
  • Lead the development of cyber security architecture
    • Design the deployment of enterprise COTS IT security solutions into geographically dispersed data centers
    • Incorporate designs into organizations existing enterprise architecture
    • Align standards, frameworks, and security with overall business and technology strategy
    • Create solutions that balance business requirements with information and cyber security requirements
    • Design and document how data will flow across an organization's enterprise architecture in order to meet system requirements
    • Identify security design gaps in existing and proposed architectures and recommend changes or enhancements
    • Ensure that designs are effective in delivering cyber security data and information to risk management dashboards
    • Ensure contract and DHS CDM policies and procedures are followed via audits and other inspection mechanisms
    • When possible leverage cloud-native solutions, serverless compute (SaaS/PaaS), and other innovative elements of systems design
    • Lead and/or support the development of solution product costs for procurement
  • Work internally to develop strategic plans for architecture, engineering, integration, and dashboard
  • Report and provide feedback to senior management as required
  • Document, manage, and report on project risks and opportunities
  • Assist in rectifying issues and improving service in faltering/failing projects
  • Identify and communicate current and emerging security threats
  • Engage with vendors of industry best in breed cyber security tools to evaluate their effectiveness in satisfying established requirements
  • Stay current on industry trends and emerging technologies to enable innovative solution design
  • Regularly brief corporate leadership and government officials on designs in a way understandable to both technical and non-technical audiences
  • Other duties as assigned

Education/Certification Requirements

  • Bachelor's degree in a technical field
  • Must hold cloud certification Azure Architect, AWS Architect, Google Cloud Architect
  • Must hold a security certification: CISSP, CEH, CCIE, CCSP, Security+, CCNA/CCNP Security, CISA, VCP, GSE, SCNA, GCIH, and/or GLSC highly desirable

Position Requirements

  • Minimum of 3 years of enterprise IT Architecture experience, combined with 5 years of hands-on enterprise IT engineering experience
  • Minimum of 5 years of experience architecting or engineering in Federal Government networks
  • Minimum of 3 years of experience supporting an ISSO/ISSM in the development of Security Authorization requirements by providing technical expertise in system implementation. Includes providing technical evidence in support of A&A processes. Includes experience with NIST RMF
  • Experience implementing technical solutions using COTS or cloud-native tools in complex cloud-based, on-premises, and hybrid environments. Demonstrated experience:
    • Understanding how to size and scale solutions depending on the use case need
    • Architecting, designing, engineering, integrating, configuring, and deploying COTS solutions
    • Understanding of 2 or more of these IT/Security functions; asset management, vulnerability management, identity and access management, network security, and data protection.
    • Leading enterprise IT solution activities from conceptual design to deployment and sustainment
    • Problem-solving ability when guiding the engineering implementation of architectural designs
    • Understanding the data sets or information provided by COTS tools in support of the needs of the organization
    • Understanding of Cloud Access Security Brokers, Cloud Security Posture Management, and Cloud Asset Management technologies.
    • Understanding of Zero Trust Architecture and solutions
  • Experience with automation tools such as Ansible, Puppet, Chef, and DevOps practices
  • Experience with Infrastructure as Code (IaC) tools such as CloudFormation, TerraForm, Azure ARM templates
  • Understanding of networking concepts such as subnetting, access control lists, firewalls, OSI model, and tunneling
  • Demonstrated experience in security solution design using existing as well as emerging technologies to deliver enterprise solutions
  • Must be able to articulate emerging cybersecurity, Cloud, or other IT technology trends
  • Strong understanding of industry best practices related to the implementation of cybersecurity tools, information security policy, NIST, and FISMA controls
  • Ability to research, learn and excel at new technologies on short time scale
  • Experience collaborating with Federal clients to mature operational processes, reduce redundancies, and develop innovative solutions
  • Experience understanding organizational needs, proposing solutions, and managing project execution efforts designed to deliver overall program benefits for Government Agencies
  • Demonstrated experience in problem resolution and risk management, ensuring customer satisfaction in the delivery of medium to large projects
  • Experience in conducting assessments of an Enterprise by reviewing technical documentation, conducting interviews and workshops to identify gaps and develop tailored solutions

Additional Skills

  • Basic understanding of AI/ML concepts
  • Microsoft Applications (Word, PowerPoint, Excel)
  • JIRA experience

Clearance Requirements

  • Must be a US citizen and pass a background investigation
  • Able to obtain and maintain a DHS Suitability/Entry on Duty (EOD)
  • Active Secret or Top Secret clearance desired

Physical Requirements

  • Office work, typically sedentary with some movement around the office

COVID-19 Vaccination Requirement: To protect the health and safety of its employees and to comply with customer requirements, employees in certain positions may be required to be fully vaccinated against COVID-19. Vaccination requirements will depend on the status of the federal contractor mandate and customer site requirements

Crystal Management, LLC provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.

This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.



Crystal Management


Reston, VA
20191 USA



View all jobs at Crystal Management

What email should the hiring manager reach you at?

By clicking the button above, I agree to the ZipRecruiter Terms of Use and acknowledge I have read the Privacy Policy, and agree to receive email job alerts.