Cyber Systems Architect, Senior Advisor

Peraton•Herndon, VA

8h•Onsite

About The Position

Peraton is seeking an experienced Enterprise Cybersecurity Architect to define and lead the cybersecurity architecture strategy across the BNATCS program where cybersecurity is inseparable from safety. In this environment, a security failure is not merely a data breach — it can directly endanger human life, disrupt the national airspace, and compromise public safety. This role demands an architect who understands that every security design decision carries safety implications and who can embed that mindset across the entire integrated enterprise. In Peraton's role as a systems integrator, you will be responsible for securing the full spectrum of integrated systems — custom-developed, COTS, GOTS, and third-party vendor components — ensuring that cybersecurity controls are consistent, enforceable, and verifiable across organizational and technical boundaries. You will serve as the principal authority on enterprise cybersecurity architecture, guiding engineering teams, subcontractors, and program leadership through the unique challenge of protecting safety-critical systems in an evolving threat landscape. This role is based in Herndon, VA.

Requirements

15+ years of experience in cybersecurity architecture, security engineering, or enterprise IT security within large-scale programs
Bachelor's degree in Computer Science, Cybersecurity, Information Systems, Computer Engineering, or a related field (or 4 additional years of relevant experience in lieu of degree)
US Citizenship
Public Trust Clearance - Ability to Obtain and Maintain
Demonstrated experience serving as a cybersecurity architect within a systems integrator environment, securing multi-vendor, multi-technology solutions across complex trust boundaries
Deep expertise in Zero Trust Architecture, network security design, identity and access management (IAM), and data protection strategies at enterprise scale
Proven experience securing safety-critical or mission-critical systems where cybersecurity failures carry operational or life-safety consequences
Mastery of FedRAMP, RMF, NIST 800-53, FISMA, and federal cybersecurity governance frameworks
Hands-on experience with security technologies including SIEM, SOAR, EDR, CSPM, IAM platforms, PKI, and network segmentation tools
Strong understanding of cloud security architecture on AWS and/or Azure, including cloud-native security services, landing zone security, and workload protection
Experience conducting threat modeling, risk assessments, and security architecture reviews across heterogeneous integrated environments
Familiarity with safety engineering principles (e.g., system safety, hazard analysis, fault tolerance) and their intersection with cybersecurity
ITIL certification and experience integrating cybersecurity governance with ITSM processes
Proven ability to lead cross-functional teams and drive security alignment across engineering, operations, and subcontractor organizations

Nice To Haves

Experience securing FAA, aviation, or national airspace systems and familiarity with aviation-specific cybersecurity requirements and safety standards
Background in securing real-time systems, low-latency architectures, and edge computing environments where traditional security controls require adaptation
Experience with network security architecture (SD-WAN, secure transport, micro-segmentation) within large-scale integrated environments
Familiarity with AIOps, security observability platforms, automated threat detection, and security orchestration at enterprise scale
Experience with DevSecOps pipeline security — static/dynamic analysis, container security, software supply chain security, and secure CI/CD practices
Hands-on experience with model-based systems engineering (MBSE) or architecture modeling tools for security architecture documentation
Relevant certifications such as CISSP, CCSP, CISM, or GICSP (Global Industrial Cyber Security Professional)
Experience with EO 14028 (Improving the Nation's Cybersecurity) compliance
OMB M-22-09 Zero Trust implementation experience
HSPD-12 identity management
ICS/OT security assessment experience
FAA safety case development experience

Responsibilities

Define and maintain the enterprise cybersecurity architecture vision, encompassing network security, application security, data protection, identity and access management, and endpoint security across all integrated systems
Develop and govern cybersecurity reference architectures, standards, and design patterns that ensure consistent security posture across internal teams, subcontractors, and vendor-delivered components
Drive the enterprise-wide adoption of Zero Trust Architecture (ZTA), defining segmentation strategies, identity verification models, and least-privilege access controls appropriate for safety-critical environments
Lead cybersecurity technology roadmap development, identifying strategic investments, capability gaps, and modernization priorities across the security portfolio
Define cybersecurity controls that account for the safety-of-life implications inherent in aviation systems — ensuring that security mechanisms do not introduce latency, single points of failure, or operational disruptions that could compromise airspace safety
Integrate cybersecurity requirements with safety engineering and system assurance processes, ensuring that security risk assessments are conducted alongside safety hazard analyses
Design resilience and continuity architectures — failover, graceful degradation, and recovery strategies — that maintain both security and safety posture during cyber incidents
Develop security architectures for real-time, low-latency, and high-availability systems where traditional security controls must be adapted to meet stringent operational performance requirements
Conduct security architecture assessments across the integrated system portfolio, identifying vulnerabilities, trust boundary gaps, and inconsistencies in security controls between vendor and custom components
Define and manage security interface requirements and security-relevant interface control documents (ICDs) for all system-to-system data exchanges across the integrated enterprise
Conduct technical security reviews of vendor and subcontractor deliverables to ensure alignment with enterprise cybersecurity standards, secure coding practices, and compliance requirements
Establish and chair security architecture review boards to evaluate proposed designs, adjudicate security trade-offs, and enforce architectural standards across all integrated systems
Ensure enterprise-wide compliance with FedRAMP, RMF, NIST 800-53, FISMA, FAA cybersecurity directives, and agency-specific security policies
Lead threat modeling, risk assessments, and attack surface analyses across the integrated enterprise, with particular attention to safety-critical system boundaries
Collaborate with cybersecurity operations, incident response, and security monitoring teams to ensure that architectural designs support effective detection, response, and recovery capabilities
Architect security solutions for hybrid and multi-cloud environments (AWS GovCloud, Azure Government) that meet federal compliance requirements while supporting mission performance
Translate complex cybersecurity risks, architectural trade-offs, and safety-security interdependencies into clear, actionable guidance for executive stakeholders, program managers, and government customers
Mentor and guide security engineers, solution architects, and development teams to ensure cybersecurity and safety intent is preserved from design through implementation and integration
Drive cross-functional alignment across cybersecurity, software engineering, data architecture, infrastructure, and operations teams