Senior Security Architect

About the Role

Triple Point Security is seeking a Senior Security Architect to design, lead, and validate enterprise security architectures for our federal, state, local, and commercial clients. This role is central to our Zero-Trust Architecture (ZTA) practice and works across a portfolio of client engagements, driving security design and leadership decisions from the ground up. The Senior Security Architect partners closely with client leadership, engineering teams, and program managers in high-visibility engagements to translate mission requirements into technically sound, compliant, and resilient security solutions and roadmaps. This position offers significant technical leadership responsibility and the opportunity to shape how Triple Point delivers security architecture services across an expanding client base.

Required Qualifications

• Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or a related field
• 10+ years of experience in cybersecurity operations, with at least 5 years in an on-premises and cloud security architecture or senior technical leadership role
• Experience with Zero-Trust Architecture (ZTA) design and implementation
• Experience designing and assessing security architectures for government and/or commercial clients
• Strong knowledge of NIST SP 800-53, NIST SP 800-207, FedRAMP, and related federal security frameworks
• Experience with cloud security architecture across one or more major CSPs (AWS, Azure, GCP)
• Exceptional written and spoken communication skills, including the ability to present complex security concepts to executive and non-technical stakeholders
• Demonstrated ability to develop system security plans (SSPs), security architecture documentation, and technical design artifacts
• Proven problem solving, critical analysis, and risk-based thinking skills to define and prioritize security recommendations and roadmaps aligned with available time and resources
• Must be a U.S. eligible for a federal security clearance

Qualifications

• Master’s degree in Cybersecurity, Information Assurance, or a related field
• Experience with DevSecOps integration and secure CI/CD pipeline design
• Experience working with SOC architectures or solutions such as Splunk, ELK stack, Wiz, Tenable, Trellix, or other security monitoring, analysis, or orchestration tools
• Familiarity with FISMA, Cybersecurity Framework , CMMC, and security frameworks.
• Prior experience in a consulting or professional services environment.
• Existing relationships or program familiarity with federal, state, or local government or commercial organizations.

Clearance & Certifications

Clearance

• Active Public Trust with Top Secret/SCI eligibility.
• Must be a U.S. and eligible to obtain or maintain a federal security clearance.

Certifications (Required or )

• CISSP (Certified Information Systems Security Professional) — Required
• AWS Certified Security Specialty, Microsoft Certified: Azure Security Engineer, or equivalent cloud security certification —
• CISM or CAP (Certified Authorization Professional) —

Responsibilities

• Advise client executives on Information Security Program maturity projects and initiatives aligned to current standards, frameworks, and best practices including NIST, ZTA, and CMMC
• Lead the design and development of enterprise security architectures for federal civilian agency clients, with a focus on Zero-Trust principles
• Conduct security architecture reviews, gap analyses, and risk assessments across client hybrid IT environments
• Develop authoritative security architecture deliverables including reference architectures, security design documents, and SSPs
• Guide and mentor junior engineers, consultants, and interns on security architecture best practices and federal compliance requirements
• Serve as a trusted technical advisor to client stakeholders, translating complex security requirements into actionable roadmaps
• Support the incident response and incident handling processes as requested by clients
• Collaborate with DevSecOps and cloud engineering teams to embed security into system design and development lifecycles
• Coordinate and collaborate with Triple Point Team Members on both client and internal security projects
• Support business development efforts including proposal contributions, grantwriting, technical solutioning, and client presentations
• Stay current with evolving federal security policy, threat landscape, and emerging technologies

Skills

The ideal candidate brings both deep technical expertise and strong client-facing presence. They are comfortable operating as the most senior technical voice in the room with client stakeholders including C-Suite executives and technical managers while also rolling up their sleeves to produce high-quality architecture artifacts as part of a diverse team. Experience navigating the intersection of different compliance requirements and practical security engineering is essential, as is the ability to independently lead engagements with limited supervision in a dynamic consulting environment. They are committed to growing their skills and flexible to take on new client engagements and technical challenges. They consistently demonstrate strong collaboration, leadership, and professionalism in highly-visible roles.

About Triple Point Security

Triple Point Security is a technical cybersecurity and cloud security firm that provides highly specialized services to organizations with complex, hybrid IT environments. We have experienced tremendous growth through our Zero-Trust Architecture (ZTA), DevSecOps, and secure AI adoption services and are looking to continue this momentum with our cloud service provider, technology, and teaming partners.

Our professionals possess public sector experience in the Department of Health and Human Services (HHS), Department of Defense (DOD), and Department of Justice (DOJ). They also possess private sector experience in telecommunications, finance, managed service providers, and Internet infrastructure. We combine our technical knowledge with best practices from the public and private sectors and apply them to IT security solutions and services that support our clients in achieving their business and mission objectives.