ForgeApply · Job listing
Staff Security Architect, Networks
Trueanomalyinc
Apply in about a minute — without sacrificing quality.
ForgeApply autofills this application and tailors your resume to this exact posting. You review everything before it's sent. Free trial, no card required.
About this role
Space is a warfighting domain. True Anomaly seeks those with the talent and ambition to build the technology that secures it.
OUR MISSION
True Anomaly delivers decisive capabilities for space superiority. We build autonomous spacecraft, advanced payloads, mission software, and space-based interceptors — enabling the U.S. and its Allies to secure the space environment and counter threats from the ultimate high ground.
OUR VALUES
• Be the offset. We create asymmetric advantages with creativity and ingenuity.
• What would it take? We challenge assumptions to deliver ambitious results.
• It’s the people. Our team is our competitive advantage and we are better together.
YOUR MISSION
As a Staff Security Architect – Networks, you will be a critical technical expert responsible for understanding program requirements, defining architecture, and designing and deploying terrestrial networks that underpin our classified capabilities. You will work as part of the Mission Security Engineering team, translating complex DoD and Intelligence Community requirements into secure, compliant, and scalable network architectures that span multiple classification levels and locations across the United States.
This is a senior individual contributor role with broad impact across multiple in-flight programs. You will own the network architecture that connects on-premise and IL-6+ cloud environments across the country, partnering with cloud, security, and systems engineering teams to ensure our endpoint networks are designed, authorized, and operated to the highest federal standards. You will bring deep expertise in IP networking, DoD classified network requirements, and cloud network design — and the technical maturity to drive complex initiatives from requirements through authorization with minimal direction.
This position requires an active TS clearance with SCI eligibility in order to start.
Responsibilities
• Define, design, and deploy terrestrial network architectures for classified capabilities spanning multiple on-premise locations across the U.S., with a focus on IL-6+ environments
• Translate program security and mission requirements into end-to-end IT network architectures that support an array of ongoing classified programs
• Architect and implement endpoint networks connecting on-premise IL-6+ infrastructure across geographically distributed locations
• Lead network authorization activities under NIST SP 800-53, ensuring architectures are designed for compliance from the outset and support efficient ATO achievement and maintenance
• Evaluate, select, and specify network hardware and software in accordance with applicable Approved Products Lists (APLs) and Trade Agreements Act (TAA) compliance requirements
• Architect and define the network interfaces and integration points between classified cloud environments (AWS/Azure IL-6+), USG networks, and end-user physical networks, working in close partnership with cloud engineers to ensure consistent security posture, control inheritance, and seamless interoperability across all domains
• Partner with ISSEs, industrial security personnel, cloud engineers, and systems engineers to ensure network designs meet program security, operational, and compliance requirements
• Develop and maintain network architecture documentation including topology diagrams, interface control documents, and system security artifacts required for RMF and ATO activities
• Implement and validate network security controls including boundary protection, segmentation, traffic filtering, and encrypted communications across classification domains
• Identify and remediate network-layer findings from STIGs, vulnerability scans, and SCA activities to maintain ATO posture
• Ensure compliance with NIST 800-53, CNSSI 1253, ICD 503, JSIG, and other applicable frameworks for National Security Systems handling classified information up to TS/SCI
• Stay current on emerging network security technologies, DoD policy changes, and APL updates, advocating for adoption where appropriate
Required Qualifications
• 10+ years of hands-on experience in network engineering or architecture, with deep technical and procedural expertise across the full lifecycle of classified network environments — including requirements definition, hardware acquisition (APL/TAA compliance), design, deployment, and ongoing operations — at classification levels up to and including TS/SCI and special access networks
• Active Top Secret clearance with SCI eligibility required
• DoD 8140 IAT Level III certification (CASP+, CISSP, CISA, or equivalent) required
• Deep expertise in IP networking including routing protocols, switching, VLANs, subnetting, QoS, and network boundary protection
• Demonstrated experience architecting and deploying networks within DoD classified environments, including IL-5 and/or IL-6+ impact levels
• Strong working knowledge of NIST SP 800-53 authorization regimes and how they apply to network architecture design and documentation
• Experience with DoD Approved Products Lists (APLs) and Trade Agreements Act (TAA) compliance requirements for network hardware and software procurement
• Domain expertise in cloud network design and authorization across AWS and/or Azure classified environments
• Experience supporting RMF processes end-to-end, including network control implementation, assessment preparation, and ATO documentation
• Strong documentation skills, with experience producing network architecture diagrams, topology maps, interface control documents, and SSP contributions
• Excellent communication skills with the ability to articulate complex network requirements and architectural decisions to security teams, program leadership, and government stakeholders
• Bachelor's degree in Computer Science, Cybersecurity, Engineering, or related field (or equivalent experience)
Preferred Qualifications
• Active TS/SCI clearance with polygraph
• Experience designing and deploying m
Salary insight
The midpoint of this range ($208k) is about 34% above the median disclosed salary for Los Angeles roles listed on ForgeApply ($155k across 1,123 jobs).
Based on live postings with disclosed pay on ForgeApply; refreshed daily. Not an estimate of this employer's offer.
Ready to apply to Trueanomalyinc?
Apply in about a minuteSimilar jobs
- Staff Security Engineer, Enterprise Security Architecture — Aurorainnovation · Seattle, Washington
- Staff Security Engineer, Enterprise Security Architecture — Aurorainnovation · Detroit, Michigan
- Staff Security Engineer, Enterprise Security Architecture — Aurorainnovation · Dallas, Texas
- Staff Security Engineer, Enterprise Security Architecture — Aurorainnovation · Mountain View, California
- Staff Security Engineer, Enterprise Security Architecture — Aurorainnovation · Pittsburgh, Pennsylvania
- Staff Security Engineer — Assured · Remote
- Staff Security Engineer — Socket · Remote
- Staff Security Engineer — Fanduel · Atlanta, Georgia, United States
More like this: More jobs at Trueanomalyinc · Browse all jobs