Cybersecurity Architect (Partial Remote)

Responsibilities:

• Function as the Cybersecurity solution subject matter expert (SME). Work with the project team as the solution architect to develop security solution architectures that are in compliance with the organization’s cybersecurity policies, standards, requirements, reference architectures, and patterns.

• Collect, interpret, evaluate, and validate business requirements, functions, and processes associated with assigned projects.

• Identify security risks and provide recommendations, solutions, and options to best mitigate those risks.

• Analyze user needs and requirements to plan system architecture supporting cybersecurity operations.

• Collaborate with system developers and users to select appropriate design solutions or ensure the compatibility of system components.

• Define and document how the implementation of a new system or new interfaces between systems impacts the security posture of the current environment.

• Design system architecture or system components required to meet user needs.

• Document and address organization’s information security, cybersecurity architecture, and systems security engineering requirements throughout the acquisition lifecycle.

• Ensure that acquired or developed system(s) and architecture(s) are consistent with organization’s cybersecurity architecture guidelines.

• Evaluate current or emerging technologies to consider factors such as cost, security, compatibility, or usability.

• Identify the protection needs (i.e., security controls) for the information system(s) and network(s) and document appropriately.

• Perform security reviews, identify gaps in security architecture, and develop a security risk management plan.

• Plan system implementation to ensure that all systems components can be integrated and aligned (e.g., procedures, databases, policies, software, and hardware). Employ secure configuration management processes.

• Provide input to the Risk Management Framework (RMF) process activities and related documentation.

• Translate proposed technical solutions into technical specifications.

• Provide input on security requirements to be included in statements of work and other appropriate procurement documents.

• Propose new technologies or procedures that could be used to advance the ability to detect and mitigate malicious activity.  

Qualifications:

• Eight to ten years of information technology experience.

• Bachelor’s degree in a related field or the equivalent combination of education and experience.

• Three years of experience as a Cybersecurity Solutions Architect.

• One to two years of experience in the application of Information Security Architecture in a cloud environment (Amazon Web Services is a must)

• Six or more years of hands-on experience with security monitoring tools such as IDS/IPS, FWs and NACs, Identity Management systems and protocols such as NetFlow (Snort, Bro, Palo Alto, Checkpoint, Cisco ISE, FireEye, Gigamon) and Web Application Firewalls.

• Experience in the use of network monitoring tools with a strong understanding of network protocols.

• Ability to perform security analysis, development, and implementation of security policies, standards, and guidelines.

• Ability to quickly explore, examine and understand complex security problems and how it affects a customer’s business. Cybersecurity focuses on secure system design to ensure security is established early during the system development lifecycle. Secure architecture covers both cloud and non-cloud environments.

• US Citizenship Required
  
• Candidate will be subject to a security investigation and may need to meet eligibility requirements for access to classified information