Zero Trust Infrastructure Engineer
DecisionPoint Corporation
full-time
Posted on:
Location Type: Remote
Location: Remote • 🇺🇸 United States
Visit company websiteJob Level
SeniorLead
Tech Stack
AWSCloudCyber SecurityMicroservices
About the role
- Implement Zero Trust Policy Enforcement Points (PEPs) across network, device, and application layers.
- Configure microsegmentation policies, identity-based routing, and dynamic access controls.
- Support Zero Trust automation workflows, including policy-as-code and continuous verification mechanisms.
- Integrate telemetry feeds from applications, identity services, cloud platforms, and network sensors into enforcement logic.
- Apply Zero Trust principles to cloud network segmentation, traffic inspection, and resource access.
- Support the implementation of device posture checks, endpoint trust validation, and conditional access rules.
- Assist in the development and enforcement of Zero Trust security policies aligned with DoD guidance.
- Troubleshoot enforcement issues, telemetry gaps, and policy misconfigurations.
- Participate in Zero Trust maturity assessments, roadmap updates, and implementation planning.
- Maintain Zero Trust infrastructure documentation, diagrams, and policy mappings.
- Collaborate with cybersecurity teams to align Zero Trust enforcement with RMF controls and IL5 cloud requirements.
- Support monitoring, logging, and analytics for Zero Trust events and enforcement decisions.
Requirements
- Must hold an active Top Secret clearance , supported by a Tier 5 background investigation.
- Bachelor’s degree in Cybersecurity, Computer Science, Information Technology Engineering, or a related field.
- Minimum 7 years of experience in IT infrastructure, cloud security, or network security engineering.
- Experience implementing Zero Trust or identity-based security controls.
- Experience with microsegmentation , PEP configuration, or conditional access.
- Experience supporting IL5 cloud or federal security environments.
- Knowledge of Zero Trust principles, DoD Zero Trust strategy, and enforcement mechanisms.
- Familiarity with identity-based routing, access policies, and device posture enforcement.
- Understanding of cloud networking (AWS GovCloud preferred), segmentation, and traffic inspection.
- Familiarity with telemetry, logging, and distributed monitoring systems.
- Experience with policy-as-code frameworks or Zero Trust automation tools (preferred).
- Experience with SIEM platforms, identity platforms, and cloud-native enforcement services (preferred).
- Experience with microservices or container-based traffic enforcement (preferred).
Benefits
- By applying to this position, you acknowledge and consent to having your resume included in an active competitive government contract bid.
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
Zero Trust Policy Enforcement Pointsmicrosegmentationidentity-based routingdynamic access controlspolicy-as-codecloud network segmentationtraffic inspectiondevice posture checksendpoint trust validationconditional access
Certifications
Top Secret clearanceTier 5 background investigation