Senior Solution Architect

Position Overview

The Senior Solutions Architect is the senior technical authority responsible for the design, integration, automation, and operational success of App Gate's Zero Trust Network Access (ZTNA) platform across U.S. Federal and DoD environments.

This role requires deep, hands‑on engineering expertise, not abstract or presentation‑level knowledge. The successful candidate must be capable of operating systems, writing and reviewing code, debugging live integrations, and troubleshooting failures at the protocol, OS, and application level. This is a role for practitioners who build, integrate, and operate secure access systems in real‑world Federal environments.

For every domain listed, candidates are expected to demonstrate operational competence, including the ability to:

• Configure and operate systems directly
• Debug failures using logs, shell access, packet captures, and code inspection
• Write and modify scripts or automation to solve real problems
• Explain system behavior based on implementation, not abstraction
• Design and Architect systems that align with customer requirements for Appgate ZTNA
• Integr wisdom Appgate ZTNA with other 3rd‑party systems and sources of trust or risk telemetry including Identity Providers (SAML, OIFC, RADIUS, LDAP(s)), NGFWs, Entitlement Automation systems, SIEM/SOAR, ITSM, and many others.
• Detailed documentation and information hand‑off skills are also required

This role requires engineers who actively operate systems, write scripts, debug APIs, and analyze packet captures. Candidates whose experience is limited to diagrams, presentations, or vendor marketing materials will not be successful.

• Serve as a technical authority for Linux‑based Zero Trust enforcement infrastructure
• Operate and manage systems via SSH
  , including secure key‑based access and privilege separation
• Demonstrate deep, hands‑on knowledge of:
  • Bash scripting (required)
  • Process management and systemd
  • File system layout, permissions, and logging
  อนไลน์
• Strong understanding of Linux networking internals:
  • Routing tables and policy routing
  • Interface binding and traffic steering
  • iptablesٹر nftables
• Diagnose complex cross‑platform issues where Linux enforcement points interact with Windows and macOS endpoints

• Develop and maintain Javaيمق logic executed on Appgate appliances to enable integration and automation
• Build and troubleshoot REST API integrations with external systems, including:
  • Service Now REST APIs
  • Identity, ITSM, logging, NGFW, and security platforms
• Apply strong understanding of:
  • RESTful API design and consumption
  • JSON data models and schema validation
  • Authentication methods (OAuth, tokens, certificates)
• Operate within an API‑first, Security‑as‑Code/Everything‑as‑Code architecture

• Architect Zero Trust access enforcement for containerized and microservices‑based workloads
• Support Kubernetes environments, including:
  • Sidecar injection and operator‑based enforcement models
  • Secure service exposure and service‑to‑service access
  • Integration with Kubernetes networking (CNI), ingress, and egress controls
  нии>
• Ensure access models scale across on‑premises and cloud‑native environments

• Design and implement Infrastructure as Code (IaC) using Terraform
• Implement Configuration as Code (CaC) and Git Ops workflows for:
  • Appgate ZTNA Policies
  • Appgate ZTNA Entitlements
  • Integrations with 3rd‑party systems and Entitlement Engines
• Integrate Zero Trust deployments into CI/CD pipelines aligned with Federal Dev Sec Ops  standards
• Ensure all automation is:
  • Version‑controlled
  • Repeatable
  • Auditable
  • API‑driven

• Architect identity‑centric access solutions using enterprise identity systems as the authoritative control plane
• Deep hands‑on expertise with:
  • Active Directory
    , including multi‑domain and multi‑forest environments
  • Domain Controllers and LDAP/LDAPS binding behavior
  • Kerberos authentication flows and ticket…