Zero Trust Infrastructure Engineer

DecisionPoint seeks a Zero Trust Infrastructure Engineer to implement and maintain Zero Trust-aligned network, device, and application enforcement across IL5 AWS GovCloud environments. This role focuses on configuring Policy Enforcement Points (PEPs), microsegmentation controls, identity-based routing policies, telemetry integrations, and Zero Trust automation patterns to support a large federal and DoD-aligned mission environment. 

The Zero Trust Infrastructure Engineer collaborates with architects, cybersecurity teams, network engineers, and application teams to ensure the enterprise environment meets Zero Trust maturity goals and adheres to DoD Zero Trust strategy and implementation guidance. 

This position is fully remote. 

Note: By applying to this position, you acknowledge and consent to having your resume included in an active competitive government contract bid.** 

The Zero Trust Infrastructure Engineer will: 

• Implement Zero Trust Policy Enforcement Points (PEPs) across network, device, and application layers. 

• Configure microsegmentation policies, identity-based routing, and dynamic access controls. 

• Support Zero Trust automation workflows, including policy-as-code and continuous verification mechanisms. 

• Integrate telemetry feeds from applications, identity services, cloud platforms, and network sensors into enforcement logic. 

• Apply Zero Trust principles to cloud network segmentation, traffic inspection, and resource access. 

• Support the implementation of device posture checks, endpoint trust validation, and conditional access rules. 

• Assist in the development and enforcement of Zero Trust security policies aligned with DoD guidance. 

• Troubleshoot enforcement issues, telemetry gaps, and policy misconfigurations. 

• Participate in Zero Trust maturity assessments, roadmap updates, and implementation planning. 

• Maintain Zero Trust infrastructure documentation, diagrams, and policy mappings. 

• Collaborate with cybersecurity teams to align Zero Trust enforcement with RMF controls and IL5 cloud requirements. 

• Support monitoring, logging, and analytics for Zero Trust events and enforcement decisions. 

Clearance Requirement 

Must hold an active Top Secret clearance, supported by a Tier 5 background investigation. 

Education (Required) 

Bachelor’s degree in Cybersecurity, Computer Science, Information Technology Engineering, or a related field. 

Experience (Required) 

• Minimum 7 years of experience in IT infrastructure, cloud security, or network security engineering. 

• Experience implementing Zero Trust or identity-based security controls. 

• Experience with microsegmentation, PEP configuration, or conditional access. 

• Experience supporting IL5 cloud or federal security environments. 

Technical Knowledge (Required) 

• Knowledge of Zero Trust principles, DoD Zero Trust strategy, and enforcement mechanisms. 

• Familiarity with identity-based routing, access policies, and device posture enforcement. 

• Understanding of cloud networking (AWS GovCloud preferred), segmentation, and traffic inspection. 

• Familiarity with telemetry, logging, and distributed monitoring systems. 

Technical Knowledge (Preferred) 

• Experience with policy-as-code frameworks or Zero Trust automation tools. 

• Experience with SIEM platforms, identity platforms, and cloud-native enforcement services. 

• Experience with microservices or container-based traffic enforcement. 

Certifications 

Required: 

• CompTIA Security+ 

Preferred: 

• ITIL v4 Foundation 

• CCSP, CISSP, or Zero Trust-focused certifications 

• AWS security or networking certifications 

Skills 

• Strong analytical and troubleshooting skills for complex Zero Trust enforcement issues. 

• Excellent communication and collaboration abilities across technical and mission teams. 

• High attention to detail, especially in policy tuning and enforcement logic. 

• Ability to work in fast-paced, mission-critical environments. 

• Strong documentation discipline and ability to translate complex configurations into clear guidance. 

• EEO and Affirmative Action Policy: DecisionPoint Corporation is an Equal Employment Opportunity and Affirmative Action employer. It is the policy of DecisionPoint Corporation to provide equal employment opportunity in accordance with all applicable Equal Employment Opportunity/Affirmative Action laws, directives and regulations to all employees and qualified applicants without regard to race, ethnicity, color, religion, national origin, sex, age, disability status, pregnancy, sexual orientation, gender identity, genetic information, protected veteran status, or any other protected status under Federal, State or Local laws.
• Pay Transparency Policy: In accordance with Presidential Executive Order 13665, DecisionPoint Corporation will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information.
• Authorization to Share Resume and Personal Information: By expressing your interest and submitting your resume for this position, you authorize DecisionPoint Corporation to share your resume, as well as personal information included on the resume, with its subsidiaries, affiliates and teaming partners for the purpose of considering you for this position and other available positions requiring comparable skills, education and experience. Should DecisionPoint Corporation. or its affiliates and teaming partners wish to initiate pre-employment discussions, you will be asked to complete an employment application and related employment documents.