Security Architect- Clearance Required

About The Position

Requirements

• Active Secret clearance required.
• Bachelor’s degree in computer science, cybersecurity, or related field.
• At least two of the following certs CCNP Enterprise, CISM, CISSP-ISSAP, CISSP-ISSEP, GCIA, GDSA, GICSP.
• 8+ years of hands on-experience designing Zero Trust architectures.
• 5+ years of experience of architecting security solutions in IL5/IL6 environments.
• Deep understanding of government / federal Zero-Trust Architecture.
• Familiarity with Thunderdome, Flank Speed, ICAM and other various services.
• Knowledge of DoDI 5000.75 and Architecture frameworks (e.g. TOGAF, Zachman, or DoDAF).

Nice To Haves

• Top Secret – TS/SCI clearance preferred.
• Strong people skills with the ability to objectively view requirements and evolve operations to maximize efficiencies.
• Master’s degree in computer science, cybersecurity, or related field.
• Deep knowledge of Software Development Lifecycle (SDLC) methodologies. spanning traditional waterfall and Agile frameworks, with hands-on experience in analysis, design, development, testing, and continuous delivery.
• Understanding of supply chain security and Software Bill of Materials (SBOM).
• Professionalism, tact, and experience working with senior DoW leadership.
• Ability to provide on-site support in the NCR, Monday through Friday.
• Certification in one or more industry cloud certifications (AWS SA-Professional, AZ-305, VMware VCIX-NV, or OCI Architect Professional).
• Experience with Security, Orchestration, Automation, and response (SOAR) solutions.

Responsibilities

• Design and assess Zero Trust network architectures for business systems.
• Create micro-segmentation strategies that protect data and maintain efficiency.
• Enhance security controls and implementation of RMF steps.
• Produce Security Assessment Reports.
• Navigate complex inheritance models for cloud and on-premises infrastructure environments.
• Embed security requirements into functional specifications during solution analysis.
• Evaluate commercial-off-the-shelf (COTS) and government-off-the-shelf (GOTS) against Zero-Trust principles and department standards.
• Develop cybersecurity strategies meeting Clinger Cohen Act (CCA) compliance.
• Create security test plans supporting development and operations.
• Assess security lifecycle requirements from acquisition to Full Operational Capability (FOC).
• Design disaster recovery and continuity architecture meeting demanding availability requirements.
• Document the security impacts of new implementations for the organization’s overall risk posture.
• Implement DevSecOps pipelines with automated security testing and vulnerability remediation.
• Assess current security architecture effectiveness through evaluation and testing.
• Identify existing security gaps and opportunities for improvement.
• As needed conduct and support market research to identify existing and emerging business systems that can support future processes
• Other responsibilities and duties as assigned by the MMO and O&MPD Leadership.