Senior CyberSecurity Architect
540
·
Posted:
July 7, 2023
·
Remote
About the position
The Senior CyberSecurity Architect is responsible for the overall security posture of multiple tools identified by the Air Force's Rapid Sustainment Office (RSO) for prototyping and scaling across the Air Force Enterprise. They will monitor system operations, hardware, and software for vulnerabilities, work with operations and development teams to remediate findings, and manage any POAMs. The role also involves maintaining the Interim Authority to Test while progressing towards Authorization to Operate. The ideal candidate should have experience in Enterprise Mission Assurance Support Service (eMASS), possess a CISSP certification, and have knowledge of DoD STIGs and vulnerabilities.
Responsibilities
- Delivery of Security Documentation to achieve ATO
- Certificate Management
- Security Reporting
- Incident Response Management
- Providing security subject matter expertise to development and architecture teams to ensure new feature development aligns with security posture and guidelines
- POAM Management
- System Access Management
- Security assessment and signoff on releases
- Collaboration with numerous delivery teams working on disparate RSO Pipeline Tools to prioritize and remediate security findings
- Experience working with the federal government, specifically with the Department of Defense (DoD)
- Knowledge of DoD STIGs, STIG vulnerabilities, and remediation strategies
- #GetShitDone mentality
- Experience delivering Continuous ATO
- Experience writing cybersecurity test plans
- Knowledge of security concerns for delivering on commercial cloud platforms (specifically Google Cloud Platform (GCP))
- Team leadership experience
- Experience going through the entire ATO process
Requirements
- 6+ years of relevant experience
- Certified Information Systems Security Professionals (CISSP) certification
- Substantial experience working in Enterprise Mission Assurance Support Service (eMASS)
- Delivery of Security Documentation to achieve ATO
- Certificate Management
- Security Reporting
- Incident Response Management
- Providing security subject matter expertise to development and architecture teams to ensure new feature development aligns with security posture and guidelines
- POAM Management
- System Access Management
- Security assessment and signoff on releases
- Collaboration with numerous delivery teams working on disparate RSO Pipeline Tools to prioritize and remediate security findings
- Experience working with the federal government, specifically with the Department of Defense (DoD)
- Knowledge of DoD STIGs, STIG vulnerabilities, and remediation strategies
- #GetShitDone mentality
- Experience delivering Continuous ATO
- Experience writing cybersecurity test plans
- Knowledge of security concerns for delivering on commercial cloud platforms (specifically Google Cloud Platform (GCP))
- Team leadership experience
- Experience going through the entire ATO process
Benefits
- 100% covered health, dental and vision premium for employees, optional dependent coverage
- Flexible Spending Account (FSA)
- 401k with employer match
- Company Sponsored Life Insurance, Short and Long Term Disability coverage
- Flexible PTO + all Federal holidays off
- Home Office allowance
- Monthly technology stipend
- Reimbursement for trainings / certifications
- Paid AWS Developer account
- Fully loaded Macbook Pro
- Referral Bonus - good people know good people
- Annual Social Events (hackathon, holiday party, charity golf tournament, etc.)
- Access to 540's Washington Capitals tickets