zscaler
Security Compliance Architect
At a Glance
- Location
- Remote - USA; Remote - Washington, USA
- Work Regime
- remote
- Posted
- 2026-05-22T11:09:42-04:00
Key Requirements
Certifications
- CISSP
Domain Knowledge
- Cloud
- Government
- Regulatory
Requirements
True ownership involves leveraging dynamic range: the ability to navigate seamlessly between high-level strategy and hands-on execution.
Experience as a key contributor in obtaining DoW IL5 and IL6 authorizations and advising the business on the strategy
Deep understanding of NIST 800-53 Rev 5, DoW Cloud Computing SRG, CNSSI 1253 and how the control requirements translate to practical implementations of GRC controls in distributed environments
Experience with driving US Government compliance audits and the remediation of risks identified from audits
Responsibilities
Maintain DoW IL5 authorizations and drive the strategy to expand into classified IL6 environments through strong continuous monitoring
Lead RMF accreditation/authorization activities (SSPs, POA&Ms, SARs) and manage the significant change process with security impact and risk assessments
Implement and operationalize sustainable GRC controls, policies, standards, and procedures aligned to DoW SRG, CNSSI 1253, and DISA STIGs; partner cross-functionally to remediate findings and improve security posture
Oversee secure architecture and assurance (e.g., threat modeling, penetration testing/red teaming) and ensure audit/assessment readiness
Support incident response and reporting, lead tabletop exercises, and drive continuous improvement; serve as the primary liaison to AOs/government stakeholders/assessors and build a distributed IA team aligned to business and mission objectives