Skip to main content

Staff Security Architect, Networks

True Anomaly
Denver, CO
Full Time
Compensation
$170,000–$245,000/year

Job Description

Space is a warfighting domain. True Anomaly seeks those with the talent and ambition to build the technology that secures it.

OUR MISSION

True Anomaly delivers decisive capabilities for space superiority. We build autonomous spacecraft, advanced payloads, mission software, and space-based interceptors — enabling the U.S. and its Allies to secure the space environment and counter threats from the ultimate high ground.

OUR VALUES

  • Be the offset. We create asymmetric advantages with creativity and ingenuity.
  • What would it take? We challenge assumptions to deliver ambitious results.
  • It’s the people. Our team is our competitive advantage and we are better together.

YOUR MISSION

As a Staff Security Architect – Networks, you will be a critical technical expert responsible for understanding program requirements, defining architecture, and designing and deploying terrestrial networks that underpin our classified capabilities. You will work as part of the Mission Security Engineering team, translating complex DoD and Intelligence Community requirements into secure, compliant, and scalable network architectures that span multiple classification levels and locations across the United States.

This is a senior individual contributor role with broad impact across multiple in-flight programs. You will own the network architecture that connects on-premise and IL-6+ cloud environments across the country, partnering with cloud, security, and systems engineering teams to ensure our endpoint networks are designed, authorized, and operated to the highest federal standards. You will bring deep expertise in IP networking, DoD classified network requirements, and cloud network design — and the technical maturity to drive complex initiatives from requirements through authorization with minimal direction.

This position requires an active TS clearance with SCI eligibility in order to start.

Responsibilities

  • Define, design, and deploy terrestrial network architectures for classified capabilities spanning multiple on-premise locations across the U.S., with a focus on IL-6+ environments
  • Translate program security and mission requirements into end-to-end IT network architectures that support an array of ongoing classified programs
  • Architect and implement endpoint networks connecting on-premise IL-6+ infrastructure across geographically distributed locations
  • Lead network authorization activities under NIST SP 800-53, ensuring architectures are designed for compliance from the outset and support efficient ATO achievement and maintenance
  • Evaluate, select, and specify network hardware and software in accordance with applicable Approved Products Lists (APLs) and Trade Agreements Act (TAA) compliance requirements
  • Architect and define the network interfaces and integration points between classified cloud environments (AWS/Azure IL-6+), USG networks, and end-user physical networks, working in close partnership with cloud engineers to ensure consistent security posture, control inheritance, and seamless interoperability across all domains
  • Partner with ISSEs, industrial security personnel, cloud engineers, and systems engineers to ensure network designs meet program security, operational, and compliance requirements
  • Develop and maintain network architecture documentation including topology diagrams, interface control documents, and system security artifacts required for RMF and ATO activities
  • Implement and validate network security controls including boundary protection, segmentation, traffic filtering, and encrypted communications across classification domains
  • Identify and remediate network-layer findings from STIGs, vulnerability scans, and SCA activities to maintain ATO posture
  • Ensure compliance with NIST 800-53, CNSSI 1253, ICD 503, JSIG, and other applicable frameworks for National Security Systems handling classified information up to TS/SCI
  • Stay current on emerging network security technologies, DoD policy changes, and APL updates, advocating for adoption where appropriate

Required Qualifications

  • 10+ years of hands-on experience in network engineering or architecture, with deep technical and procedural expertise across the full lifecycle of classified network environments — including requirements definition, hardware acquisition (APL/TAA compliance), design, deployment, and ongoing operations — at classification levels up to and including TS/SCI and special access networks
  • Active Top Secret clearance with SCI eligibility required
  • DoD 8140 IAT Level III certification (CASP+, CISSP, CISA, or equivalent) required
  • Deep expertise in IP networking including routing protocols, switching, VLANs, subnetting, QoS, and network boundary protection
  • Demonstrated experience architecting and deploying networks within DoD classified environments, including IL-5 and/or IL-6+ impact levels
  • Strong working knowledge of NIST SP 800-53 authorization regimes and how they apply to network architecture design and documentation
  • Experience with DoD Approved Products Lists (APLs) and Trade Agreements Act (TAA) compliance requirements for network hardware and software procurement
  • Domain expertise in cloud network design and authorization across AWS and/or Azure classified environments
  • Experience supporting RMF processes end-to-end, including network control implementation, assessment preparation, and ATO documentation
  • Strong documentation skills, with experience producing network architecture diagrams, topology maps, interface control documents, and SSP contributions
  • Excellent communication skills with the ability to articulate complex network requirements and architectural decisions to security teams, program leadership, and government stakeholders
  • Bachelor's degree in Computer Science, Cybersecurity, Engineering, or related field (or equivalent experience)

Preferred Qualifications

  • Active TS/SCI clearance with polygraph
  • Experience designing and deploying multi-site, geographically distributed classified networks across the U.S.
  • Familiarity with Cross Domain Solutions (CDS), data guards, and inter-domain network traffic control
  • Experience with NSA Type 1 cryptographic devices and their integration into classified network architectures
  • Professional networking certifications (e.g., CCNP, CCIE, or equivalent)
  • Experience with zero trust network architectures applied to classified or highly regulated environments
  • Familiarity with Software Defined Networking (SDN) and network automation tooling
  • Experience supporting DoD or IC customers through ATO, re-ATO, or continuous authorization



Compensation

  • Denver, Colorado Base Salary: $170,000–$245,000
  • Long Beach, California Base Salary: $180,000–$260,000
  • Equity + Benefits including Health, Dental, Vision, HRA/HSA options, PTO and paid holidays, 401K, Parental Leave

Your actual level and base salary will be determined on a case-by-case basis and may vary based on the following considerations: job-related knowledge and skills, education, location, and experience.

Work Environment

  • Fast-paced, mission-critical environment supporting national security space operations - #LI-ONSITE
  • Requires coordination across distributed teams including spacecraft engineers, ground operations, and government partners
  • May require participation in on-call rotation for security incident response and mission-critical system support
  • High degree of autonomy and ownership as a trusted, cleared individual contributor
  • Occasional travel to government sites, classified facilities, launch facilities, or partner locations may be required

What We Offer

  • Competitive salary commensurate with experience and clearance level
  • Opportunity to drive security posture for cutting-edge space systems with national security impact
  • Professional development support including conferences, training, and security certifications
  • Collaborative culture working alongside spacecraft engineers, mission operators, and experienced security professionals
  • Equity + Benefits including Health, Dental, Vision, HRA/HSA options, PTO and paid holidays, 401K, Parental Leave

To conform to U.S. Government space technology export regulations, including the International Traffic in Arms Regulations (ITAR), you must be a U.S. citizen, lawful permanent resident of the U.S., protected individual as defined by 8 U.S.C. 1324b(a)(3), or eligible to obtain the required authorizations from the U.S. Department of State.


To conform to U.S. Government space technology export regulations, including the International Traffic in Arms Regulations (ITAR) you must be a U.S. citizen, lawful permanent resident of the U.S., protected individual as defined by 8 U.S.C. 1324b(a)(3), or eligible to obtain the required authorizations from the U.S. Department of State.

True Anomaly is committed to equal employment opportunity on any basis protected by applicable state and federal laws. If you have a disability or additional need that requires accommodation, please do not hesitate to let us.


Optimize Your Resume for This Job

Get a match score and see exactly which keywords you're missing

Optimize Resume

Job Details

Department
Security
Category
Security
Employment Type
Full Time
Location
Denver, CO
Posted
Compensation
$170,000 - $245,000 per year

About True Anomaly

True Anomaly develops space security technologies using AI, software, and spacecraft to enhance global security and sustainability.

Found this role interesting?

Staff Security Architect, Networks
True Anomaly
Apply