Cloud Security Architect
Herndon, Virginia, United States - Remote
Avint LLC is seeking a motivated, career, and customer-oriented Cloud Security Architect to join our team in the Herndon, VA area to provide unparalleled support to multiple federal agencies through the Continuous Diagnostics & Mitigation (CDM) Program. The CDM Program is a high-profile, high-visibility, cybersecurity modernization and risk management program where you can contribute innovative solutions and consult with multiple federal agencies to enhance their Information Assurance (IA) programs and continuous monitoring capabilities.
The Solutions Architect – Cloud Security leader’s responsibilities include conducting full lifecycle analysis of Cloud Security that includes requirements from DHS, other OMB initiatives, and provide support for the whole program. This position also requires supporting existing cloud practice areas on the program to address our client’s most pressing needs with Cyber Security Threats and Data in the Cloud. The successful candidate will bring a consultative approach to data and use Cloud Security discipline to improve the value of the data that’s being collected by our customers. This position is also a thought leader in the practice of Cloud Security in solving our clients’ cyber security problems, coupled with demonstrated experience designing and developing enterprise Cloud Security solutions for large clients by providing a new approach to the team, presenting white papers and other solutions.
Position Responsibilities:
The Cloud Security Architect will:
- Architect, position, design, develop and deploy Cloud Native Security solutions such as Azure Defender, Azure Defender for Endpoints and Azure Security
- Work with Cloud Team and Engineers to plan and coordinate customer interaction through Workshops and other meetings
- Work with customer POCs and technical team members to assist with requirement definitions, solution design and technical architecture and delivery
- Work closely with stakeholders to identify and mitigate risks, perform security reviews, design top tier security practices, and deliver strategic, innovative cloud-based security offerings
- Familiarity with REST APIs, their methods, data formats, and authentication
- Document designs for high level briefing and deliverables as well as engineering implementation procedures in Microsoft Visio, Word, and other tools as required
- Research data fields provided by APIs of cloud security products and determine their ability to meet data requirements for reporting tools
- Locate and define new process improvement opportunities
- Participate in the development, customization, and integration efforts of security solutions utilizing Microsoft Azure
- Define information security strategies, including guiding principles and future state vision, ensuring that the strategic objectives are aligned with Customer mission
- Other duties as assigned
Requirements
Technical Areas of Expertise:
- Demonstrated ability to present to senior leadership and client audiences
- JIRA experience
- Demonstrate deep & broad knowledge and capability in Microsoft Cloud services
- Must be a Security Architect/Consultant with in-depth and SME level Microsoft Cloud Security experience & knowledge.
- 3+ years’ cumulative experience integrating, securing, and making useful the following Microsoft platform services (both in Windows OS and in Azure Cloud): Active Directory Domain Services (ADDS), Active Directory Certificate Services (ADCS), Active Directory Federated Services (ADFS), Windows AD-integrated PKI, Single Sign On (SSO) implementation
- 1+ years’ cumulative experience with enhance data protection and compliance (such as OpenSSL, KeyStore, Azure Key Vault, Cyphers)
- 3+ years’ experience with securing systems by following STIGs, best practices, and government/compliance requirements (such as NIST 800-53, NIST 800-171, FISMA, FEDRAMP), and negotiating/working-with IA personnel to arrive at sensible and effective solutions.
- 7+ years’ experience with in-depth systems administration in Windows, Linux and/or Azure environments
- Relevant Technical and/or Security Certifications (e.g. Azure, CISSP, CCNA, CCDA, CCNA-Security, etc.)
- One (1) of the following certifications: Azure Solutions Architect Expert, Azure Security Engineer Associate, DevOps Engineer Expert, Azure Administrator Associate.
- Technical degree in Computer Science, Computer Engineering, or a related subject area
- Demonstrated experience in security solution design using existing as well as emerging technologies to deliver enterprise solutions
- Experience in conducting assessments of an Enterprise by reviewing technical documentation, conducting interviews and workshops to identify gaps and develop a tailored solution is highly desired
- Experience collaborating with US Government Agencies, state or local governments, or commercial entities to develop IT service program maturity in accordance with Federal IT mandates and best practices
- Experience understanding organizational needs, proposing solutions, and managing project execution efforts designed to deliver overall program benefits for Government Agencies
- Experience with collaborating with other roles, such as solution architects, cloud engineers, Automation engineers, database administrators, and developers.
- Understanding of hybrid networking concepts such as Express Route, Virtual Network Gateways, and complex virtual network architectures
- Understanding of how IP communications flow between endpoints, through enterprise networks, and to cloud services
- Ability to brief large multidisciplinary audiences to present advanced concepts clearly and in a way consumable by all technical levels
- Strong analytical skills with the ability to collect, organize, analyze, and disseminate significant amounts of information with attention to detail and accuracy
- Strong knowledge of and experience of Azure Log Analytics, Azure Sentinel or Azure Security Center
- Strong knowledge of and experience with Endpoint Detection Response tools such as Microsoft Defender for Cloud, Crowstrike Falcons or others
Physical Requirements:
- Office work, typically sedentary with some movement around the office
Benefits
Joining Avint is a win-win proposition! You will feel the personal touch of a small business and receive BIG business benefits. From competitive salaries, full health, and generous PTO and Federal Holidays. Additionally, we encourage every Avint employee to further their professional development. To assist you in achieving your goals, we offer reimbursement for courses, exams, and tuition. Interested in a class, conference, program, or degree? Avint will invest in YOU and your professional development!
Avint is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity and Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class.
Tags: Active Directory Analytics APIs Automation Azure CISSP Cloud Compliance Computer Science DevOps FedRAMP FISMA Jira Linux Monitoring NIST PKI POCs Risk management SSO Windows
Perks/benefits: Career development Health care
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Security Operations Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open Clearance-related jobs
- Open Windows-related jobs
- Open ISO 27001-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open IDS-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open IPS-related jobs