Cybersecurity Architect - Redstone Arsenal

About The Position

Requirements

• Must have 8, or more, years of general (full-time) work experience
• May be reduced with the completion of advanced education
• Must have 6, or more, years of direct experience in cybersecurity architecture
• Must have 2, or more, years of experience working in a management or leadership role
• Must have proven experience designing and implementing complex security architectures
• Must have a deep understanding of security principles, technologies, and best practices
• Must have experience with firewalls, intrusion detection/prevention systems (IDS/IPS), Elastic Security SIEM, ACAS vulnerability scanners, and endpoint security solutions
• Must have experience with cloud security architecture and deployment models (IaaS, PaaS, SaaS)
• Must have experience implementing Zero Trust principles across an IT Services environment
• Must have a strong understanding of cybersecurity architecture principles and best practices
• Must have knowledge of regulatory compliance frameworks (e.g., NIST Cybersecurity Framework, ISO 27001)
• Must have an active DoD Secret Security Clearance

Nice To Haves

• Have 1, or more, industry certifications such as CISSP, CISM, CCSP, or AWS Certified Security – Specialty
• Have experience with threat modeling methodologies (e.g., STRIDE, DREAD)
• Have experience with penetration testing and vulnerability assessment
• Have experience with DevSecOps principles and practices
• Have experience with security automation and orchestration

Responsibilities

• Cybersecurity Architecture Design and Development
• Develop and maintain the organization’s cybersecurity architecture framework, standards, and blueprints
• Design and implement security architectures for cloud, on-premise, and hybrid environments
• Evaluate and recommend security technologies, platforms, and tools to strengthen the organization’s cybersecurity posture
• Review and approve architectural diagrams, documentation, and models with a focus on security controls and data flow
• Lead development of proof-of-concepts and prototypes to validate architectural designs
• Architect and design secure solutions for data protection, network security, endpoint security, identity and access management (IAM), and application security
• Threat Modeling and Risk Assessment
• Participate in threat modeling exercises to identify vulnerabilities and weaknesses in systems and applications
• Perform risk assessments to evaluate likelihood and impact of potential security threats
• Develop and implement mitigation strategies to address identified security risks
• Technical Leadership and Guidance
• Provide technical leadership and mentoring to security engineers, analysts, and developers
• Serve as a subject matter expert on cybersecurity architecture best practices and emerging technologies
• Collaborate with project teams to integrate security into all phases of the system development lifecycle (SDLC)
• Drive adoption of new security technologies and architectural patterns
• Security Standards and Compliance
• Ensure cybersecurity architecture complies with applicable legal and regulatory requirements (e.g., NIST Cybersecurity Framework, ISO 27001, Security Technical Implementation Guides)
• Work with compliance teams to conduct security audits and assessments
• Incident Response Support
• Participate in incident response activities as needed, providing technical expertise
• Review security incident root cause analysis and determine architectural or technical corrective actions
• Collaboration and Communication
• Collaborate with IT operations, development, and business units to align security goals
• Communicate architectural designs and decisions to both technical and non-technical audiences
• Participate in architecture review boards and governance processes
• Continuous Improvement
• Stay current with emerging security technologies and industry trends
• Identify opportunities to improve cybersecurity architecture effectiveness

Benefits

• Medical, Dental, and Vision coverage
• 401(k) with company match
• Paid Time Off (PTO)
• Mission-driven work with opportunities to grow