C2 Labs is seeking a Cloud Architect with Azure Government experience to support FedRAMP authorization acceleration and continuous monitoring managed services. You’ll help define authorization boundaries, design secure reference architectures, and ensure the system architecture, evidence, and documentation all match—so audits are smoother and ConMon is sustainable.

What you’ll do

·         Lead boundary definition and architecture workshops for FedRAMP-target systems.

·         Produce architecture diagrams and narratives that align to FedRAMP package expectations.

·         Advise on secure patterns for identity, encryption, logging/monitoring, vulnerability management, and recovery.

·         Support remediation planning and technical walkthroughs with assessors/sponsors when needed.

What we’re looking for

·         7+ years cloud architecture experience with at least 3+ years hands-on Microsoft Azure architecture.

·         Azure certifications (e.g., AZ-305, AZ-500) or security certifications (CCSP/CISSP).

·         Strong understanding of cloud networking, identity, encryption/key management, logging/monitoring, and secure design patterns.

·         Working familiarity with NIST 800-53 security concepts and how architecture decisions drive control/evidence outcomes.

·         Ability to translate architecture into clear diagrams and written narratives for non-architect audiences.

·         Comfort collaborating with security engineers and technical writers to keep implementation + documentation consistent.

Nice to have

·         Bachelor’s degree (strongly preferred) in Computer Science, Engineering, IT, or related field

·         Prior experience architecting or supporting FedRAMP Moderate (or higher) cloud environments.

·         Experience deploying and managing Azure infrastructure using Infrastructure as Code tools such as Azure Bicep and Azure Resource Manager, integrated with CI/CD pipelines for automated, repeatable provisioning.

·         Experience supporting compliance automation / machine-readable artifacts (e.g., OSCAL) leveraging GRC platforms.

Engagement details

·         1099 independent contractor (initial engagement); fractional/part-time with surge capacity.

·         Remote-first; occasional workshops may be requested (0–10% travel).

·         No clearance required; must be able to pass a standard background check and sign NDA/SOW.

·         Engagements often support defense-focused startups deploying to Azure Government.