Cybersecurity Architect

About The Position

Requirements

• Active TS/SCI with CI poly is REQUIRED
• Education: BS degree in Computer Science, Information Security, or a related field.
• 10+ years of experience in cybersecurity architecture, engineering, and operations
• IAT Level II (CISSP, Security+ CE, CCNA Security, CCSP, SABSA, etc.)
• Proven expertise with NIST, CISA, and federal Zero Trust Architecture models
• Strong understanding of networking concepts, security protocols, and operating systems
• Experience with cloud security architecture and implementations (i.e., AWS, Azure, GCP)
• Experience with identity, credentialing, and access management (ICAM) solutions and technologies
• Experience with data loss prevention (DLP) solutions and technologies
• Experience with security information and event management (SIEM) systems
• Familiarity with threat intelligence platforms and threat hunting techniques
• Experience working in a highly classified environment

Responsibilities

• Design and maintain the overall Zero Trust architecture, create roadmaps, and document architectural rules aligned with IC Enterprise Architectures and evolving threat landscape.
• Design and implement PostgreSQL and AnzoGraph database environments, including schema design, data modeling, performance tuning, and query optimization.
• Identify and evaluate Zero Trust enabling technologies, solutions, and frameworks (i.e., micro-segmentation, identity governance, multi-factor authentication, data loss prevention).
• Collaborate with stakeholders across the IC to ensure interoperability and alignment of Zero Trust implementations.
• Develop mitigation strategies and remediation plans to address identified vulnerabilities and achieve Zero Trust maturity.
• Champion the adoption of Zero Trust principles, ensuring seamless integration with existing IC infrastructure and alignment with national security objectives.
• Conduct risk assessments, critical path analysis, threat modeling, and security architecture reviews to identify vulnerabilities and gaps in existing security controls.
• Develop and maintain technical documentation, including architecture diagrams, implementation guides, Zero Trust playbooks, and standard operating procedures.
• Automate security tasks and processes using scripting languages and automation tools to improve efficiency and reduce human error.
• Provide technical guidance and mentorship to security engineers, system administrators, and other IT professionals on Zero Trust best practices.
• Security Orchestration, Automation, and Response (SOAR) playbook development and incident response automation
• Define and enforce security policies, access controls, and requirements based on Zero Trust principles and directives.
• Ensure compliance with relevant security regulations, standards, and policies, including FISMA, NIST guidelines, and IC directives.
• Participate in security audits and assessments to verify the effectiveness of Zero Trust security controls.
• Develop and maintain security metrics to track progress towards Zero Trust maturity.
• Contribute to the development of security awareness training programs to educate users on Zero Trust principles and best practices.