Cybersecurity Architect

Position Title: Cybersecurity Architect
Clearance Requirements: TS/SCI with CI Polygraph. Investigation or CV date within 5 years.

Duties and Responsibilities:

Zero Trust Architecture & Strategy:

• Design and maintain the overall Zero Trust architecture, create roadmaps, and document architectural rules aligned with IC Enterprise Architectures and evolving threat landscape. This includes developing interim and future architectures for implementation across enterprise services.
• Design and implement PostgreSQL and AnzoGraph database environments, including schema design, data modeling, performance tuning, and query optimization.
• Identify and evaluate Zero Trust enabling technologies, solutions, and frameworks (i.e., micro-segmentation, identity governance, multi-factor authentication, data loss prevention).
• Collaborate with stakeholders across the IC to ensure interoperability and alignment of Zero Trust implementations.
• Develop mitigation strategies and remediation plans to address identified vulnerabilities and achieve Zero Trust maturity.

Technical Implementation & Guidance:

• Champion the adoption of Zero Trust principles, ensuring seamless integration with existing IC infrastructure and alignment with national security objectives.
• Conduct risk assessments, critical path analysis, threat modeling, and security architecture reviews to identify vulnerabilities and gaps in existing security controls.
• Develop and maintain technical documentation, including architecture diagrams, implementation guides, Zero Trust playbooks, and standard operating procedures.
• Automate security tasks and processes using scripting languages and automation tools to improve efficiency and reduce human error.
• Provide technical guidance and mentorship to security engineers, system administrators, and other IT professionals on Zero Trust best practices.
• Security Orchestration, Automation, and Response (SOAR) playbook development and incident response automation

Compliance & Governance:

• Define and enforce security policies, access controls, and requirements based on Zero Trust principles and directives.
• Ensure compliance with relevant security regulations, standards, and policies, including FISMA, NIST guidelines, and IC directives.
• Participate in security audits and assessments to verify the effectiveness of Zero Trust security controls.
• Develop and maintain security metrics to track progress towards Zero Trust maturity.
• Contribute to the development of security awareness training programs to educate users on Zero Trust principles and best practices.

Qualifications

Qualifications:

• Active TS/SCI with CI poly is REQUIRED
• Education: BS degree in Computer Science, Information Security, or a related field.
• 10+ years of experience in cybersecurity architecture, engineering, and operations
• IAT Level II (CISSP, Security+ CE, CCNA Security, CCSP, SABSA, etc.)
• Proven expertise with NIST, CISA, and federal Zero Trust Architecture models
• Demonstrated success in leading enterprise-level security architecture projects in complex environments
• Strong understanding of networking concepts, security protocols, and operating systems
• Experience with cloud security architecture and implementations (i.e., AWS, Azure, GCP)
• Experience with identity, credentialing, and access management (ICAM) solutions and technologies
• Experience with data loss prevention (DLP) solutions and technologies
• Experience with security information and event management (SIEM) systems
• Familiarity with threat intelligence platforms and threat hunting techniques
• Experience working in a highly classified environment