Zero Trust Architect #3634


  • DE-BW-Stuttgart
  • Information Technology
  • Top Secret w/ SCI
  • On-site only
Apply Now


GovCIO is currently hiring for a Zero Trust Architect to support DoD organizations and USAFRICOM. This position will be located in Stuttgart Germany and will be an onsite only position.


Designs and develops system architectures, and defines key capabilities and performance requirements. Defines total systems design and technology maturity constraints in accordance with mission requirements. Develops systems and system element architecture and design and interface definitions. Defines system implementation approach and operational concept. Develops models and architectural guidelines for current and future system development. Ensures requirements are met and evaluates performance with customer.

  • Interfaces with the user(s) and all other stakeholders in order to determine their needs.
  • Generates the highest level of system requirements, based on the user's needs and other constraints such as cost and schedule.
  • Performs cost-benefit analyses to determine whether requirements are best met by manual, software, or hardware functions; making maximum use of commercial off-the-shelf or already developed components.
  • Designs and develops solutions to applications problems, system administration issues, or network concerns.
  • Develops partitioning algorithms (and other processes) to allocate all present and foreseeable requirements into discrete partitions such that a minimum of communications is needed among partitions, and between the user and the system.
  • Zero Trust Architecture Design:

    • Lead the design and implementation of a Zero Trust security architecture for the organization.
    • Develop and implement strategies to ensure the least privilege access, micro-segmentation, and continuous monitoring of network traffic.
    • Collaborate with cross-functional teams to integrate Zero Trust principles into existing and new systems.


    Identity and Access Management:

    • Implement strong authentication and authorization mechanisms to verify user identities and ensure secure access.
    • Design and implement role-based access controls (RBAC) and implement identity and access management (IAM) solutions.
    • Monitor and audit user access to identify and mitigate potential security risks.


    Network Security:

    • Implement network segmentation and micro-segmentation strategies to limit lateral movement.
    • Design and deploy secure communication channels, including encryption and VPN solutions.
    • Collaborate with network engineers to ensure secure configuration and monitoring of network devices.

    Endpoint Security:

    • Design and implement endpoint protection strategies, including device posture assessment and continuous monitoring.
    • Implement application control and device authentication measures.
    • Work with IT teams to ensure security configurations on endpoints align with Zero Trust principles.


    Security Monitoring and Incident Response:

    • Implement continuous monitoring solutions to detect and respond to security incidents.
    • Develop and document incident response plans for Zero Trust environments.
    • Conduct regular security assessments and penetration testing.


Bachelor's with 15+ years (or commensurate experience)

Required Skills and Experience

  • BA/BS + 7 years recent specialized or AA/AS + 9 years recent specialized or a major cert + 11 years recent specialized or 13 years of recent specialized experience
  • Clearance Required:TS/SCI
  • Hold a current Top Secret/SCI clearance (no waiver)
  • DOD 8570 IAT 2 compliance.
  • Proven experience as a Zero Trust Architect or in a similar cybersecurity role.
  • In-depth knowledge of cybersecurity principles, protocols, and best practices.
  • Experience with identity and access management solutions, network security, and endpoint protection.
  • Familiarity with cybersecurity frameworks, compliance standards, and regulations.
  • Strong problem-solving and analytical skills.
  • Relevant certifications such as Certified Information Systems Security Professional (CISSP) or Certified Zero Trust Architect (CZTA) are a plus.
  • TESA eligibility
  • Current and active U.S. Passport



Company Overview

GovCIO is a team of transformers--people who are passionate about transforming government IT. Every day, we make a positive impact by delivering innovative IT services and solutions that improve how government agencies operate and serve our citizens.

But we can't do it alone. We need great people to help us do great things - for our customers, our culture, and our ability to attract other great people. We are changing the face of government IT and building a workforce that fuels this mission. Are you ready to be a transformer?

We are an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, disability, or status as a protected veteran. EOE, including disability/vets.


Posted Pay Range


The posted pay range, if referenced, reflects the range expected for this position at the commencement of employment, however, base pay offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, education, experience, and internal equity. The total compensation package for this position may also include other compensation elements, to be discussed during the hiring process. If hired, employee will be in an “at-will position” and the GovCIO reserves the right to modify base salary (as well as any other discretionary payment or compensation program) at any time, including for reasons related to individual performance, GovCIO or individual department/team performance, and market factors.

Pay range: $140,000 - $160,000 Annually

Apply Now

Not The Right Fit?

Is this not the job you’re looking for? That’s ok! We’ve got plenty of other opportunities for you to peruse. Search all of our open positions by your area of interest or location.

View All Jobs