SMX is seeking a highly experienced IT Subject Matter Expert (SME) / Chief Security Architect (CSA) to support a mission-critical federal program in Washington, DC. This individual will serve as the principal technical authority and strategic cybersecurity advisor responsible for leading security architecture, Risk Management Framework (RMF) implementation, authorization strategy, and AI-enabled security modernization initiatives.

The selected candidate will function as a recognized authority in cybersecurity architecture, enterprise authorization, security automation, and governance. As the Chief Security Architect, this individual will translate evolving federal cybersecurity requirements, Executive Orders, agency policies, and emerging technologies into actionable security standards, architectures, templates, and automation capabilities that improve mission outcomes.

This position will lead the design, development, and implementation of the Intelligent Authorization Platform (IAP), leveraging AI and automation technologies to accelerate RMF activities, improve authorization quality, standardize security artifacts, and reduce Authorization to Operate (ATO) timelines. The CSA will provide strategic leadership for Common Control Provider (CCP) expansion, control inheritance implementation, enterprise security architecture, and AI-assisted authorization processes while ensuring all solutions meet federal cybersecurity requirements and maintain rigorous security standards.This position will be on site in Washington DC and requires an active Top-Secret SCI clearance.  

Essential Duties & Responsibilities:

• Serve as the Chief Security Architect and principal security authority supporting enterprise cybersecurity, authorization, and security modernization initiatives
• Lead design, development, and implementation of the Intelligent Authorization Platform (IAP) supporting AI-assisted RMF processes and authorization workflows
• Develop AI-enabled solutions to automate creation and maintenance of SSPs, SARs, POA&Ms, control narratives, evidence collection, and other RMF artifacts
• Design and maintain pre-authorized baseline templates, control inheritance frameworks, reusable security packages, and authorization accelerators
• Lead efforts to expand Common Control Provider (CCP) services and establish inheritance relationships within enterprise Governance, Risk, and Compliance (GRC) platforms
• Translate Executive Orders, federal cybersecurity policies, NIST guidance, and emerging security requirements into actionable architectures, standards, and implementation strategies
• Develop security architectures supporting cloud, hybrid, enterprise, and shared service environments
• Oversee implementation of AI, automation, and workflow technologies to ensure security rigor, auditability, transparency, and compliance
• Provide technical leadership for planning, analysis, design, integration, testing, implementation, documentation, and sustainment activities
• Conduct detailed assessments of cybersecurity risks, enterprise architectures, authorization strategies, and security operations
• Establish quality assurance processes, review gates, and validation procedures for RMF deliverables and authorization packages
• Review and approve SSPs, SARs, POA&Ms, Security Assessment Plans, authorization boundary diagrams, and other RMF documentation
• Lead security architecture reviews, technical assessments, and modernization initiatives affecting enterprise systems and mission operations
• Develop strategic roadmaps, implementation plans, and recommendations supporting enterprise cybersecurity objectives
• Advise government leadership on cybersecurity risks, authorization strategies, AI-enabled security solutions, and enterprise security architecture decisions
• Develop executive briefings, technical reports, white papers, recommendations, and presentations for senior leadership
• Support incident prevention, security posture improvement, and risk mitigation activities across the enterprise
• Provide technical leadership, mentorship, and oversight to cybersecurity, engineering, and RMF personnel as required

Required Skills & Experience 

• Active TS/SCI clearance required
• Minimum of 10 years of professional experience supporting cybersecurity, security architecture, RMF, information assurance, enterprise security, or related technical disciplines
• Demonstrated experience serving as a Chief Security Architect, Lead Security Engineer, ISSM, Security Architect, Security SME, or equivalent senior cybersecurity leadership role
• Extensive experience implementing and managing RMF processes in accordance with NIST 800-37 and NIST 800-53
• Extensive experience supporting Authorization to Operate (ATO) activities within federal government, law enforcement, intelligence community, or national security environments
• Experience developing and maintaining SSPs, SARs, POA&Ms, Security Assessment Plans, authorization boundary diagrams, and related RMF artifacts
• Experience developing security architectures for enterprise, cloud, hybrid, and shared-service environments
• Experience supporting Common Control Providers (CCPs), control inheritance models, and enterprise security governance processes
• Experience implementing security automation, workflow automation, GRC modernization, or compliance automation initiatives
• Experience designing, developing, or implementing AI-enabled cybersecurity, governance, compliance, or authorization solutions
• Strong understanding of AI governance, model security, explainability, auditability, and responsible AI principles
• Experience translating regulatory and policy requirements into technical security standards and implementation guidance
• Experience conducting security risk assessments, architecture reviews, and cybersecurity strategy development
• Strong analytical, problem-solving, and decision-making skills
• Experience preparing and presenting technical briefings and recommendations to executive and senior government leadership
• Strong written and verbal communication skills
• Ability to work independently while leading multiple complex initiatives simultaneously

 Desired Skills & Experience 

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Engineering, Information Technology, or related field

• Advanced degree preferred

• Experience supporting FBI, Department of Justice, Intelligence Community, Department of Homeland Security, or other federal law enforcement organizations

• Experience supporting enterprise GRC platforms and security workflow automation technologies

• Experience supporting Zero Trust Architecture initiatives and enterprise cybersecurity modernization efforts

• Experience supporting AWS GovCloud, Azure Government, or other federal cloud environments

• Familiarity with Agile, SAFe, DevSecOps, and modern software development methodologies

• Experience leading cross-functional technical teams and enterprise-wide modernization initiatives

• One or more of the following certifications preferred:

• CISSP

• CAP (Certified Authorization Professional)

• CCSP

• CISM

• AWS Certified Security – Specialty

• AWS Certified Solutions Architect

• Microsoft Azure Security Engineer Associate

• TOGAF

• SABSA

• PMP

• SAFe Certification

• Other relevant cybersecurity, cloud, architecture, or AI-related certifications

Application Deadline:  9-4-2026

LI-SA1

The SMX salary determination process takes into account a number of factors, including but not limited to, geographic location, Federal Government contract labor categories, relevant prior work experience, specific skills, education and certifications. At SMX, one of our Core Values is to Invest in Our People so we offer a competitive mix of compensation, learning & development opportunities, and benefits. Some key components of our robust benefits include health insurance, paid leave, and retirement.

The proposed salary for this position is:

$126,100—$212,000 USD

At SMX®, we are a team of technical and domain experts dedicated to enabling your mission. From priority national security initiatives for the DoD to highly assured and compliant solutions for healthcare, we understand that digital transformation is key to your future success.

We share your vision for the future and strive to accelerate your impact on the world. We bring both cutting edge technology and an expansive view of what’s possible to every engagement. Our delivery model and unique approaches harness our deep technical and domain knowledge, providing forward-looking insights and practical solutions to power secure mission acceleration.

SMX is an Equal Opportunity employer including disabilities and veterans.

Selected applicant may be subject to a background investigation and/or education verification.

SMX does not sponsor a new applicant for employment authorization or immigration related support for this position (i.e. H1B, F-1 OPT, F-1 STEM OPT, F-1 CPT, J-1, TN, E-2, E-3, L-1 and O-1, or any EADs or other forms of work authorization that require immigration support from an employer).