Cyber Architect Sr Prin

About The Position

Requirements

• Active TS security clearance
• Possess current DoD 8140 certification aligned to DoD Cyber Workforce Framework (DCWF) for Security Architects; e.g., CISSP, CISSP-ISSEP/ISSAP, GDSA, etc.
• Strong engineering skills, interpersonal skills, and the ability to effectively build and lead teams
• Extensive experience with traditional A&A tools: ACAS Nessus, SCAP Scanner, STIG Viewer
• Demonstrated expertise in national Cybersecurity policies, DoD A&A processes and procedures and industry best practices on complex systems
• Expertise in vulnerability assessment, control allocation and risk mitigation

Nice To Haves

• Bachelor of Science degree in a Cyber, Systems Engineering, Computer Science, Electrical Engineering, Mechanical Engineering, or similarly related engineering/technical discipline, and 8+ year(s) related experience experience, training and/or certifications.
• Other cyber certifications (Cloud+, GCSA, OSCP, CEH, etc.)
• Understanding of Zero Trust Architecture and ability to model Zero Trust into the overall system architecture; MBSE experience
• Understanding of offensive security tactics, techniques and procedures
• Experience with Cyber Failure Mode, Effects, and Criticality Analysis (FMECA)
• Experience writing proposals with innovative cost-effective solutions
• Experience with Open Container Initiative (OCI) including Platform One, Iron Bank and Repo One
• Experience with offensive architecting, threat modeling and attack vector analysis
• Experience with cloud and cross domain solution accreditations
• Ability to negotiate effectively with higher level managers, functional managers, customers, industry partners, and teammates
• Demonstrated leadership skills (supervisory experience, building teams, building customer relationships)
• Ability to support proposal and cost activities
• Working knowledge of Earned Value Management System (EVMS) systems and Project management tools such as Cost Performance Index (CPI) and Integrated Master Schedule (IMS)
• Experience with leading and coordinating security test events to achieve accreditation milestones
• Experience with verifying and validating vulnerability resolutions and/or mitigations
• Experience with supporting proposal and cost estimate activities
• Experience with Attack and Threat modeling

Responsibilities

• Leading systems engineering teams
• Leading Assessment and Authorization (A&A) activities for DoW Systems in accordance with Risk Management Framework
• Supporting traditional systems engineering tasks such as CONOPS, requirements development and allocation, cyber design engineering, cyber implementation engineering, Verification and Validation, and continuous monitoring efforts during deployment, Operations and Sustainment
• Supporting offensive architecture analysis and design of defense-in-depth solutions
• Supporting Development Security Operations (DevSecOps) integration
• Developing and assessing system security plans including, security concepts of operation, risk management matrix, security control traceability matrix, security test procedures, and plan of action and milestones
• Conducting and analyzing vulnerability assessments to validate system compliance with RMF controls and DISA Security Technical Information Guidelines (STIG)
• Analyzing static code scans and dynamic code scans to validate Application Security and Development STIG compliance

Benefits

• health, dental, and vision insurance
• health savings accounts
• a 401(k) savings plan
• disability coverage
• life and accident insurance
• employee assistance program
• a legal plan
• discounts on things like home, auto, and pet insurance
• paid time off
• paid holidays
• paid parental, military, bereavement, and any applicable federal and state sick leave
• company recognition program to receive monetary or non-monetary recognition awards