Today
Top Secret
Senior Level Career (10+ yrs experience)
$175,000 - $210,000
No Traveling
IT - Networking
We are seeking an experienced and forward-thinking SOC Security Architect to lead the design, validation, and governance of enterprise security architecture supporting enterprise hybrid environments. You will define security reference models, influence technical direction across cloud and on-prem platforms, and ensure that future designs align with federal requirements, evolving threats, and SOC operational needs. This role is ideal for a senior cybersecurity professional who combines deep technical expertise with strategic design thinking and the ability to influence across engineering, security, and executive stakeholders.
Responsibilities:
• Develop and maintain SOC security architecture for hybrid cloud, data center, identity, and endpoint ecosystems.
• Translate federal and organizational security requirements (NIST, RMF, Zero Trust) into enforceable technical control patterns, standards, and baselines.
• Conduct threat modeling and architecture risk assessments for new systems, major changes, and modernization initiatives.
• Define and document security reference architectures, data flows, segmentation models, and defense-in-depth control layers.
• Partner with Cloud, Network, IAM, DevSecOps, and SOC teams to ensure secure-by-design implementation throughout system lifecycles.
• Provide architectural review and approval for new deployments, configuration changes, tool onboarding, and emerging initiatives.
• Evaluate security technology capabilities and develop multi-year roadmap recommendations based on mission priorities and evolving threat landscape.
• Serve as the senior technical authority during risk decisions involving compensating controls, architectural exceptions, and system trade-offs.
• Align security architecture with SOC detection, incident response, and forensic requirements to ensure visibility and defensibility.
• Incorporate lessons learned from incidents, audits, and threat intelligence into future architectural enhancements.
• Lead development and maintenance of security patterns, standards, design guides, and architecture diagrams.
• Mentor engineers, analysts, and technical leads on secure design practices and architectural thinking.
• Represent the SOC in engineering, authorization, and governance forums with Peraton, FSA, ISSOs, and system owners.
Qualifications:
• 8+ years of hands-on cybersecurity experience, including 4+ years in security architecture, engineering, or security design roles.
• Demonstrated ability to architect SOC secure solutions across hybrid environments (cloud + on-prem), including identity, network, data, and workload security. With a strong emphasis on SIEM (Splunk)
• Strong command of:
o Enterprise security control design and defense-in-depth principles
o Zero Trust architectures and identity-centric access models
o Threat modeling and architecture risk assessment methodologies
o Security logging, telemetry, and monitoring architecture
o Federal cybersecurity standards (NIST 800-53, 800-171, NIST CSF, FedRAMP, RMF)
• Ability to translate risk, threats, and compliance requirements into technical design decisions.
• Excellent written and verbal communication skills, including security architecture documentation and executive briefing.
Desired Qualifications:
• Experience supporting cybersecurity architecture in Federal, HVA, or regulatory environments.
• Experience with:
o Secure architecture for cloud service providers (IaaS, PaaS, managed services)
o Network segmentation and identity-based access control models
o Encryption, PKI, secrets management, and data protection strategies
o SOC-aligned architecture for detection, forensic visibility, and response enablement
• Relevant certifications, such as:
o CISSP, ISSAP, CCSP, CISM
o SABSA, GIAC GDSA, GCSA, or equivalent architecture-focused certifications
o Splunk
o AWS Cloud
• Prior involvement in security governance boards, ATO/RMF processes, or security control design reviews.
• Experience mentoring engineers and contributing to organizational capability maturity.
Responsibilities:
• Develop and maintain SOC security architecture for hybrid cloud, data center, identity, and endpoint ecosystems.
• Translate federal and organizational security requirements (NIST, RMF, Zero Trust) into enforceable technical control patterns, standards, and baselines.
• Conduct threat modeling and architecture risk assessments for new systems, major changes, and modernization initiatives.
• Define and document security reference architectures, data flows, segmentation models, and defense-in-depth control layers.
• Partner with Cloud, Network, IAM, DevSecOps, and SOC teams to ensure secure-by-design implementation throughout system lifecycles.
• Provide architectural review and approval for new deployments, configuration changes, tool onboarding, and emerging initiatives.
• Evaluate security technology capabilities and develop multi-year roadmap recommendations based on mission priorities and evolving threat landscape.
• Serve as the senior technical authority during risk decisions involving compensating controls, architectural exceptions, and system trade-offs.
• Align security architecture with SOC detection, incident response, and forensic requirements to ensure visibility and defensibility.
• Incorporate lessons learned from incidents, audits, and threat intelligence into future architectural enhancements.
• Lead development and maintenance of security patterns, standards, design guides, and architecture diagrams.
• Mentor engineers, analysts, and technical leads on secure design practices and architectural thinking.
• Represent the SOC in engineering, authorization, and governance forums with Peraton, FSA, ISSOs, and system owners.
Qualifications:
• 8+ years of hands-on cybersecurity experience, including 4+ years in security architecture, engineering, or security design roles.
• Demonstrated ability to architect SOC secure solutions across hybrid environments (cloud + on-prem), including identity, network, data, and workload security. With a strong emphasis on SIEM (Splunk)
• Strong command of:
o Enterprise security control design and defense-in-depth principles
o Zero Trust architectures and identity-centric access models
o Threat modeling and architecture risk assessment methodologies
o Security logging, telemetry, and monitoring architecture
o Federal cybersecurity standards (NIST 800-53, 800-171, NIST CSF, FedRAMP, RMF)
• Ability to translate risk, threats, and compliance requirements into technical design decisions.
• Excellent written and verbal communication skills, including security architecture documentation and executive briefing.
Desired Qualifications:
• Experience supporting cybersecurity architecture in Federal, HVA, or regulatory environments.
• Experience with:
o Secure architecture for cloud service providers (IaaS, PaaS, managed services)
o Network segmentation and identity-based access control models
o Encryption, PKI, secrets management, and data protection strategies
o SOC-aligned architecture for detection, forensic visibility, and response enablement
• Relevant certifications, such as:
o CISSP, ISSAP, CCSP, CISM
o SABSA, GIAC GDSA, GCSA, or equivalent architecture-focused certifications
o Splunk
o AWS Cloud
• Prior involvement in security governance boards, ATO/RMF processes, or security control design reviews.
• Experience mentoring engineers and contributing to organizational capability maturity.
group id: 10117305
