Security Architect

About The Position

Requirements

• 5+ years of experience in Tiered and Environmental Segmentation / Policy Development
• 5+ years of experience in Application Dependency Mapping
• 5+ years of experience in Dynamic Access Control / Continuous Trust Monitoring
• 5+ years of experience in Micro-Segmentation / Software Defined Networking
• 5+ years of experience in Agile Environment Collaboration
• 5+ years of experience in Project Management
• 5+ years of experience in Cross-Functional Team Collaboration
• 5+ years of experience in Client Engagement & Communication
• 5+ years of experience with Tools: CISCO, Palo Alto, Fortinet, Bluecoat, Web Application Firewall / CDN, Splunk SIEM, MS Defender, Google Sec Ops, Crowdstrike, Powershell, Prowler, Rapid7, STRIDE

Responsibilities

• Develop and implement zero trust and micro segmentation architectures.
• Eliminate Implicit Trust and Enforce Strict Access Control.
• Audit Zero Trust Environment Security
• Reduce attack surface and limit reach of attackers.
• Review services in all environments and locations relying on implicit trust.
• Determine if any services or resource have access to elevated privileges and determine controls needed reduce risk while allowing sufficient rights for operations once the data center project is completed.
• Apply Least Privilege Access for applications and services.
• Determine if services and applications with elevated privileges can undergo additional segmentation to limit access and risk.
• Determine impact to agency and risk of compromise for areas with elevated privileges.
• Develop procedures to audit and maintain Implement zero trust and micro segmentation architectures.
• Develop zero trust security patterns to distribute to application team, infrastructure admin and program areas.
• Develop Audit and Remediation tools to monitor and enforce zero trust rules.