Senior Principal Cyber Architect

About The Position

Requirements

• Bachelor of Science degree in a Cyber, Systems, Software, Electrical, Mechanical or similarly related engineering/technical discipline, and 12+ year(s) related experience or equivalent experience, training and/or certifications.
• ISC2 CISSP-ISSEP (or the ability to obtain within 6 months of hire) or equivalent DOD 8140 Advanced Proficiency certification
• Strong engineering skills, interpersonal skills, and the ability to effectively build and lead teams
• Extensive experience with traditional A&A tools: ACAS Nessus, SCAP Scanner, STIG Viewer
• Demonstrated expertise in national Cybersecurity policies, DoD A&A processes and procedures and industry best practices on complex systems
• Expertise in vulnerability assessment, control allocation and risk mitigation

Nice To Haves

• Other cyber certifications (CISSP-ISSAP, CCSP, CEH, OSCP, etc.)
• Top Secret/SCI security clearance by the Federal Government
• Understanding of offensive security tactics, techniques and procedures
• Experience with Cyber Failure Mode, Effects, and Criticality Analysis (FMECA)
• Experience writing proposals with innovative cost-effective solutions
• Experience with Open Container Initiative (OCI) including Platform One, Iron Bank and Repo One
• Experience with offensive architecting, threat modeling and attack vector analysis
• Experience with cloud and cross domain solution accreditations
• Ability to negotiate effectively with higher level managers, functional managers, customers, industry partners, and teammates
• Demonstrated leadership skills (supervisory experience, building teams, building customer relationships)
• Ability to support proposal and cost activities
• Working knowledge of Earned Value Management System (EVMS) systems and Project management tools such as Cost Performance Index (CPI) and Integrated Master Schedule (IMS)
• Experience with leading and coordinating security test events to achieve accreditation milestones
• Experience with verifying and validating vulnerability resolutions and/or mitigations
• Experience with supporting proposal and cost estimate activities
• Experience with Attack and Threat modeling
• Strong mentoring skills
• Good planning and organizational skills
• Strong oral and written communications skills

Responsibilities

• Leading systems engineering teams
• Leading Assessment and Authorization (A&A) activities for DoD Systems in accordance with Risk Management Framework
• Supporting traditional systems engineering tasks such as CONOPS, requirements development and allocation, cyber design engineering, cyber implementation engineering, verification and Validation, and continuous monitoring efforts during deployment, Operations and Sustainment
• Supporting offensive architecture analysis and design of defense-in-depth solutions
• Supporting Development Security Operations (DevSecOps) integration
• Developing and assessing system security plans including, security concepts of operation, risk management matrix, security control traceability matrix, security test procedures, and plan of action and milestones
• Conducting and analyzing vulnerability assessments to validate system compliance with RMF controls and DISA Security Technical Implementation Guides (STIG)
• Analyzing static code scans and dynamic code scans to validate Application Security and Development STIG compliance

Benefits

• health, dental, and vision insurance
• health savings accounts
• a 401(k) savings plan
• disability coverage
• life and accident insurance
• an employee assistance program
• a legal plan
• discounts on things like home, auto, and pet insurance
• paid time off
• paid holidays
• paid parental, military, bereavement, and any applicable federal and state sick leave
• Employees may participate in the company recognition program to receive monetary or non-monetary recognition awards
• Other incentives may be available based on position level and/or job specifics.