Description rnSummary:rnWe are looking for a highly talented, technical hands-on Senior Security Architect located in the Washington, DC metro area to help accelerate our Security Program for a client in the Government Sector. You will use your exceptional security knowledge and hands-on security tooling and systems administration skills to help support our customer with developing, reviewing, and modernizing highly secure and compliant computing architectures and implementations.rn rnDuties and Responsibilities:rnrnSecurity Architecture: Develop and Recommend Security Architecture and Standards for both cloud and on-prem environments. Review and update diagrams of security tools and traffic flow within environment and make recommendations for enhancements.rnCybersecurity Operations: Improve Cloud monitoring, detection, and response; Improve Security Operations (SOC) operations; Review existing security tools in environment for gaps and/or overlaps and make recommendations for improvements.rnPrivacy & Continuous Monitoring: Improve Vulnerability Assessment program; Integrate security scanning in Cloud Pipeline; Improve Cloud and on-prem vulnerability coverage and scanning.rnCybersecurity Authorizations and Compliance: Reduce time to ATO through continuous ATO; Improve Cloud Compliance.rnAddressing critical software; and Developing secure Cloud adoption.rnDevelop, and integrate with other Cybersecurity workflow to include: ATO Intake, assessment, and Vulnerability Scanning process.rnIntegrate with Enterprise Architecture (EA) review process.rnPerform security reviews based on RMF controls compliance, clients, and security best practices.rnDevelop security architectural patterns to enable faster ATO or assessment process by creating architectural designs that already meet compliance controls.rnProvide security architecture input for DevSecOps security strategy and roadmap including application and infrastructure vulnerability scanning, automated assessments, and security controls.rnPerforms architecture design reviews including configuration and log reviews and perform network traffic analysis.rnProduces a SAR Report to include HVAs architecture strengths and findings.rnrn rnQualificationsrnRequired Skills:rn rnrnHigh level of attention to detail, needs minimal guidance, effective verbal, and written communications.rnEqually adept at strategic planning and operational/technical level.rnAble to adapt to new and changing requirements or priorities and manage work and resources accordingly.rnAt least 5 years (preferred 10 years) of network, systems, applications:rnLAN/WAN, WAF/CDN/DDOS, Network Firewalls, IDS/IPS.rnVirtualization, hypervisor security, container security.rnApplication development, serverless security, microservices, CICD.rnAt least 3 years of designing and/or implementing security in Cloud (AWS required, Azure or GCP optional):rnMulti-Cloud, Hybrid Cloud, IaaS, PaaS, SaaS, shared responsibility model.rnAWS IAM, KMS, S3, RDS, SNS/SQS, Organization, Guard Duty, Security Hub, Detective, Config, CloudTrail, CloudWatch, Lambda.rnAzure E3/E5, Active Directory, Blob, Azure Security Center, Key Vault, SSE, Monitor, Log Analytics, Policy.rnExperience with DevSecOps strategy and implementation and designing architecture in accordance to RMF, CSF, FISMA, and Fedramp.rnFamiliarity with: ZTNA and SASE Framework, ICAM (OKTA), CWPP, SOC Operations, Vulnerability Threat Management, and Compliance.rnAt least 2 years working in or managing Agile Devops, Scrum, KanbanrnCloud architecturernArchitecture experiencernNetworking experiencernNetwork Security / Cyber Security experiencernrnEducation:rnCandidate must have a Bachelor of Science (or higher) in one of the following: computer engineering, computer science, information technology, or cyber security. The resume may reference another major, so long as the resume is clear that the degree addressed at a minimum one of the following: cyber security engineering, systems administration, information systems security, software development security, systems engineering, information systems or information technology.rn rnCertifications: rnrnCertified Information Systems Security Professional (CISSP) is required.rnCertifications to include one or more of the following:rnCertified Cloud Security Professional,rnAWS Certified Solutions Architect AssociaternAWS Certified Security SpecialistrnMicrosoft Azure Solutions ArchitectrnGoogle Professional Cloud Architectrnrn rnClearance: United States Patent and Trademark Office Specific Minimum Background Investigation (MBI) will be conductedrn rnWork Location: Remote (Initial onboarding in Arlington, VA). Minimal travel to the Washington, D.C. Metro Area may be required if requested by the client.
