Cybersecurity Architect - DevSecOps & Continuous ATO (Federal Healthcare / MedCOI)

At Credence, we support our clients' mission-critical needs, powered by technology. We provide cutting-edge solutions, including AI/ML, enterprise modernization, and advanced intelligence capabilities, to the largest defense and health federal organizations. Through partnership and trust, we increase mission success for war-fighters and secure our nation for a better future. We are privately held, are repeatedly recognized as a top place to work, and have been on the Inc. 5000 Fastest Growing Private Companies list for the last 12 years. We practice servant leadership and believe that by focusing on the success of our clients, team members, and partners, we all achieve greater success.

Join Credence as a driving force behind digital transformation at the VA's Financial Services Center-a cutting-edge division operating with the agility of a private company. In this role, you'll have the unique opportunity to shape innovative development practices that enhance shared services and empower our nation's heroes.

We have an immediate need for a Cybersecurity Architect with DevSecOps & Continuous ATO (Federal Healthcare / MedCOI experience. The successful person in this role will be experienced in Cybersecurity Architecture with the ability to serve as our lead expert in DevSecOps, cybersecurity automation, tools, processes, governance, and Continuous Authority to Operate (cATO) supporting implementation within the Defense Health Agency's (DHA) MedCOI network. This role encompasses a broad range of cybersecurity responsibilities, ensuring secure software delivery through automation, continuous monitoring, and regulatory compliance.

Full pay range for this position is $140,000 to $180,000 per year, with the starting wage determined based on candidate's knowledge, skills, and experience.

Design, implement, and oversee a comprehensive cybersecurity strategy that integrates DevSecOps best practices and Continuous ATO frameworks tailored for DHA's MedCOI environment.
• Provide expert guidance on cybersecurity automation, security scanning, vulnerability management, and compliance tools within DevSecOps pipelines.
• Collaborate directly with government stakeholders, DHA RMED, MedCOI network engineers, and cybersecurity teams to ensure alignment with DHA security policies, guidelines, and governance frameworks.
• Develop and manage architectural documentation, including security control mappings, system security plans, and Continuous Monitoring strategies aligned with RMF standards.
• Lead technical strategy for cybersecurity tool selection, integration, and automation practices to enhance the security posture of software development and deployment.
• Act as the principal cybersecurity expert, advising development, operations, and management teams on security best practices, risk management, compliance, and governance matters.
• Maintain awareness of evolving cybersecurity threats, compliance regulations, and industry best practices to continually enhance security posture.

• Bachelor's degree in Information Technology, Cybersecurity, Computer Science, or related field.
• Minimum of 8-10 years experience in cybersecurity, risk management, DevSecOps, or software engineering within federal government environments (DoD experience strongly preferred).
• Extensive expertise with DevSecOps methodologies, cybersecurity automation, and compliance frameworks.
• Deep experience with DHA RMF processes, particularly within MedCOI or similar highly secure federal healthcare environments.
• Proven track record in deploying and integrating CI/CD and security automation tools (e.g., Jenkins, GitLab, Azure DevOps, Kubernetes, Terraform).
• Hands-on experience with cybersecurity and compliance tools (e.g., Nessus, SonarQube, Fortify, Prisma Cloud, Anchore).
• Familiarity with federal compliance standards (FISMA, HIPAA, NIST 800-53, HITRUST).
• Exceptional communication and leadership skills, able to effectively interact with senior federal stakeholders, technical teams, and executives.

• Specific experience working with DHA MedCOI or other secure medical networks.
• Professional cybersecurity certifications such as CISSP, CISM, CISA, Security+, or equivalent.
• Proven success implementing Continuous ATO solutions and advanced DevSecOps strategies within federal or DoD agencies to accelerate software delivery.

Job Location:

Washington DC, San Antonio TX , Tacoma WA, or Virtual/Remote

Clearance Requirement:

Public Trust.

Join our innovative and dynamic team to drive secure and compliant software delivery, transforming healthcare solutions for the Department of Defense!

Please join us, as together we build a better world one mission at a time powered by Technology and its People!

#Credence #veteranemployment #militaryspouse #milspouse #hireavet #militaryveteran #militaryfriendly #transitioningmilitary #veterans #militarytransition #militaryfamilies #msep #militarytocivilian #military #federalcontractingjobs #defensecontracting #defenseindustryjobs