We are seeking a Cybersecurity Architect to join our team of experts tasked with securing the critical networks and systems our clients depend on.

Responsibilities

• Designs and architects cyber security systems to implement zero trust principles.
• Coordinates cyber security assessments and communicates results.
• Pursues necessary changes of critical tasks identified from assessments.
• Develops, documents and communicates cyber security processes and procedures.
• Build architectures and frameworks that reflect the organization’s current state as well as future goals and objectives.
• Capture and integrate essential system capabilities or business functions required for partial or full system restoration after a catastrophic failure event.
• Collaborate and seek continuous consultation with other analysts and experts—both internal and external to the organization—to leverage analytical and technical expertise.
• Communicate complex information, concepts, or ideas in a confident and well-organized manner through verbal, written, and/or visual means.
• Define appropriate levels of system availability based on critical system functions and ensure that system requirements identify appropriate disaster recovery and continuity of operations requirements to include any appropriate fail-over/alternate site requirements, backup requirements, and material supportability requirements for system recover/restoration.
• Design the integration of hardware and software solutions.
• Develop a system security context, a preliminary system security Concept of Operations (CONOPS), and define baseline system security requirements in accordance with applicable cybersecurity requirements.
• Develop enterprise architecture or system components required to meet organization needs.
• Document and update as necessary all definition and architecture activities.
• Document how the implementation of a new system or new interface between systems impacts the current and target environment including but not limited to security posture.
• Employ secure configuration management processes.
• Ensure acquired or developed system(s) and architecture(s) are consistent with organization's cybersecurity architecture guidelines.
• Evaluate security architectures and designs to determine the adequacy of security design and architecture proposed or provided in response to requirements contained in acquisition documents.
• Execute technology integration processes.
• Identify and prioritize critical business functions in collaboration with organizational stakeholders.
• Identify cybersecurity and privacy issues that stem from connections with internal and external customers and partner organizations.
• Integrate results regarding the identification of gaps in security architecture.
• Provide advice on project costs, design concepts, or design changes.
• Provide input to the Risk Management Framework process activities and related documentation (e.g., system life-cycle support plans, concept of operations, operational procedures, and maintenance training materials).
• Write and publish internal cyber defense recommendations, reports, and white papers to appropriate management and stakeholders.
• Write detailed functional specifications that document the architecture development process.
• Maintain appropriate technical and procedural documentation.
• Complete projects, tasks, and associated deliverables on time and with quality.

Qualifications

• Bachelors degree in Computer Science or related field 
• Minimum of 10 years combined cybersecurity & infrastructure technology experience.
• Understanding of Zero Trust
• Strong understanding of IaaS, PaaS, SaaS
• Experience demonstrating strong analytical, troubleshooting and problem-solving skills for cybersecurity.
• Excellent communication skills, both written and oral.
• Knowledge of NIST, CISA and FISMA guidelines.
• Certified Information System Security Professional (CISSP).
• Eight (8) years of experience in engineering, with a focus on cybersecurity.

Desired Skills

• Experience with a variety of cloud service providers (e.g., AWS, Azure, Google Cloud Platform)
• Knowledge of emerging cybersecurity trends and technologies
• Expertise in Zero Trust architecture, principles, and methodologies
• Any of the following:

• • GDSA: GIAC Defensible Security Architecture
  • GSLC: GIAC Security Leadership
  • GISP: GIAC Information Security Professional
  • GSTRT: GIAC Strategic Planning, Policy, and Leadership
  • GSE: GIAC Security Expert
  • GCIP: GIAC Critical Infrastructure Protection
  • Certified Information Security Architect Professional (CISSP-ISSAP)
  • Global Information Assurance Certification (GIAC)