zscaler

Security Compliance Architect

Apply Now

At a Glance

Location
Remote - USA; Remote - Washington, USA
Work Regime
remote
Posted
2026-05-22T11:09:42-04:00

Key Requirements

Certifications

  • CISSP

Domain Knowledge

  • Cloud
  • Government
  • Regulatory

Requirements

True ownership involves leveraging dynamic range: the ability to navigate seamlessly between high-level strategy and hands-on execution.

Experience as a key contributor in obtaining DoW IL5 and IL6 authorizations and advising the business on the strategy

Deep understanding of NIST 800-53 Rev 5, DoW Cloud Computing SRG, CNSSI 1253 and how the control requirements translate to practical implementations of GRC controls in distributed environments

Experience with driving US Government compliance audits and the remediation of risks identified from audits

Responsibilities

Maintain DoW IL5 authorizations and drive the strategy to expand into classified IL6 environments through strong continuous monitoring

Lead RMF accreditation/authorization activities (SSPs, POA&Ms, SARs) and manage the significant change process with security impact and risk assessments

Implement and operationalize sustainable GRC controls, policies, standards, and procedures aligned to DoW SRG, CNSSI 1253, and DISA STIGs; partner cross-functionally to remediate findings and improve security posture

Oversee secure architecture and assurance (e.g., threat modeling, penetration testing/red teaming) and ensure audit/assessment readiness

Support incident response and reporting, lead tabletop exercises, and drive continuous improvement; serve as the primary liaison to AOs/government stakeholders/assessors and build a distributed IA team aligned to business and mission objectives