Cybersecurity Architect - Clearance Required

Overview

The Cybersecurity Architect will be responsible for assessing cloud system operations and architectural designs for compliance with DoD policies and evaluating the security impact of changes to CI/CD pipeline tools.  The Architect will work with cloud technologies, specifically AWS tools, as well as Identity and Access Management Accounts or Detection and Response applications and will need to understand Zero Trust concepts and be able to articulate changes needed to comply with Army direction.

Remote position, but needs to be within driving distance of Fort Belvoir, VA for accessing SIPRNet (10-20% of time).

Responsibilities

• Plan, design, test, and maintain cyber security posture for cloud-based information systems. 
• Manage security posture analysis between IL5 and IL6 environments.
• Address gaps and develop mitigation steps for multiple environments.
• Develop a complete understanding of the proposed solution technology stack and information system.
• Work with AWS tools such as Cloud Watch, Security Hubs, Guard Duty, AWS ALB, AWS Lambda
• Design, build, implement, and support systems following NIST, DoD, Army, and other applicable regulations and guidelines
• Align organizational security strategy and infrastructure with overall business and technology strategy
• Identify and communicate current and emerging security threats
• Design security architecture elements to mitigate threats as they emerge.
• Review an application architecture and understand what questions to pose to start conversations with the systems engineering team.
• Plan, research, and design robust security architectures using cloud native tools as much as possible for ease of implementation and maintenance.
• Perform or supervise vulnerability testing, risk analyses, and security assessments
• Create solutions that balance business requirements with information and cybersecurity requirements
• Identify security design gaps in existing and proposed architectures and recommend changes or enhancements
• Test security systems to ensure they behave as expected
• Provide supervision and guidance to a security team
• Respond immediately to security-related incidents and provide thorough remedial solutions and analysis
• Regularly communicate vital information, security needs and priorities to upper management

Qualifications

Required

• Bachelor’s Degree in computer science, IT, or related field  
• 10-15 years’ experience in IT risk management and information security 
• Experience with AWS cloud services
• DoD Secret Security Clearance
• DoD IAM Level III or IASAE Level III Certification (CISM, CISSP, GSLC, CCISO, CISSP-ISSAP, CISSP-IEESP, or CCSP)
• Understand DoD and/or Army Risk Management Framework (RMF)
• Understand System Development Lifecycle (SDLC)

Desired

• Master’s degree in computer science, IT, or related field   
• Experience with cArmy
• Understand Agile methodology
• AWS or certifications
• Appian workflow software
• EAMS-A