Opportunity sourced from the Official SkillBridge website. Not endorsed by the Department of Defense.
The Zero Trust Network Architecture Technical SME exists to serve as the agency's primary technical advisor for the CISA ZTMM v2.0 Networks pillar. This role advances TSA's network segmentation posture, TIC 3.0 compliance, and ZTNA adoption by providing senior-level advisory on network architecture design, micro-segmentation strategy, and software-defined networking (SDN) capabilities. The expected outcome is a continuously advancing Networks pillar maturity posture with network macro- and micro-segmentation maturing, ZTNA architecture advisory driving enforcement design, and lateral movement risk proactively identified and addressed. This is a senior technical advisory role requiring hands-on network architecture and ZTNA design experience in a federal environment.
General DutiesServe as the primary technical advisor for the CISA ZTMM v2.0 Networks pillar across network security architecture, segmentation, and ZTNA domains.Continuously assess the agency's network architecture against CISA ZTMM v2.0 Networks pillar criteria and NIST SP 800-207; proactively identify emerging network risk indicators, including lateral movement exposure, traffic encryption and visibility deficiencies, and TIC 3.0 compliance drift, and deliver real-time advisory recommendations.Provide technical advisory guidance on ZTNA architecture design options, micro-segmentation strategies, and SDN approaches, recommending solutions and implementation pathways for agency decision-making.Evaluate ZTNA platform capabilities (e.g., Zscaler, Palo Alto Prisma) and develop configuration and deployment recommendations aligned to federal ZT requirements for agency adoption.Advise TIC 3.0 compliance strategies, cloud network access patterns, and secure remote access approaches in a hybrid federal environment; develop recommended solutions for agency review.Assess network access control mechanisms, lateral movement risk, and east-west traffic enforcement against ZT principles; develop findings and recommended remediation approaches for agency concurrence.Provide advisory support for the development and maturation of Networks pillar entries in the Common Control Catalog (CCC), ensuring traceability to NIST SP 800-53 Rev. 5 control families.Develop recommended Networks pillar inputs to the ZT Roadmap, IG FISMA maturity reporting, and enterprise performance reporting for agency review and approval.Collaborate with Identity, Device, Data, and Applications SMEs to ensure network enforcement approaches integrate coherently across all ZTMM pillars.Review network-related policy documents and technical standards; identify gaps relative to ZT mandates and develop recommended updates for agency concurrence.Support all network-related ZT data calls, audits, and compliance reporting by providing advisory analysis and recommended responses.Prepare and present network architecture findings, maturity assessments, and advisory recommendations to senior leadership and the CISO.Leverage AI-assisted analysis tools, automation platforms, and prompt engineering techniques to enhance advisory productivity, accelerate gap analysis and documentation tasks, and enable focus on higher-value technical advisory work; apply all AI capabilities in accordance with agency acceptable use policies and Zermount's ethical AI use guidelines.
US Space Force, US Air Force, US Army, US Marine Corps, US Coast Guard, US Navy
Hybrid – Primarily Remote. Occasional onsite work required at the client location in Springfield, VA and Zermount HQ in Arlington, VA.
Send a professional application in seconds, created by prior SkillBridge POCs.
