Posted today
Secret
Unspecified
Unspecified
IT - Security
Huntsville, AL (On-Site/Office)
Senior Cybersecurity Architect
Redstone Arsenal
Hunstville, AL
HX5 is an award-winning provider of engineering, research and development, and technical services to clients such as NASA and the Department of Defense. Founded in 2004, HX5 is a fast-growing veteran- and woman-owned company with locations nationwide.
HX5 is currently seeking a qualified Senior Cybersecurity Architect to support the Missile Defense Agency (MDA) on the Integrated Research and Development for Enterprise Solutions (IRES) contract at Redstone Arsenal in Huntsville, AL.
Essential Duties and Responsibilities:
The successful candidate will:
Education and Experience:
Desired Requirements:
Position Type/Expected Hours of Work:
This is a full-time position requiring 40 hours per week and offers a flexible work schedule Monday through Friday during core business hours.
Other Position Requirements:
HX5 offers a competitive salary and benefits package to include:
HX5, LLC is an Equal Opportunity Employer that recruits and hires qualified candidates without regard to race, religion, sex, age, national origin, ancestry, citizenship, disability, or veteran status.
HX5, LLC is a Drug Free Workplace Employer.
ACCESSIBILITY NOTICE:
If you need a reasonable accommodation for any part of the employment process due to a physical or mental disability, please call (850) 362-6551.
CJ
Redstone Arsenal
Hunstville, AL
HX5 is an award-winning provider of engineering, research and development, and technical services to clients such as NASA and the Department of Defense. Founded in 2004, HX5 is a fast-growing veteran- and woman-owned company with locations nationwide.
HX5 is currently seeking a qualified Senior Cybersecurity Architect to support the Missile Defense Agency (MDA) on the Integrated Research and Development for Enterprise Solutions (IRES) contract at Redstone Arsenal in Huntsville, AL.
Essential Duties and Responsibilities:
- Cybersecurity Architecture Design and Development:
- Develop and maintain the organization's cybersecurity architecture framework, standards, and blueprints.
- Design and implement security architectures for various systems and environments, including cloud, on-premise, and
hybrid infrastructures. - Evaluate and recommend security technologies, platforms, and tools to support the organization's cybersecurity posture.
- Review and approve architectural diagrams, documentation, and models, focusing on security controls and data flow.
- Lead the development of proof-of-concepts and prototypes to validate security architectural designs.
- Architect and design secure solutions for data protection, network security, endpoint security, identity and access
management (IAM), and application security.
- Threat Modeling and Risk Assessment:
- Participate in threat modeling exercises to identify potential security vulnerabilities and weaknesses in systems and applications.
- Perform risk assessments to evaluate the likelihood and impact of potential security threats.
- Develop and implement mitigation strategies to address identified security risks.
- Technical Leadership and Guidance:
- Provide technical leadership and mentoring to other security professionals, including security engineers, analysts, and developers.
- Serve as a subject matter expert on cybersecurity architecture best practices and emerging security technologies.
- Collaborate with project teams to ensure that security is integrated into all phases of the system development lifecycle
(SDLC). - Drive the adoption of new security technologies and architectural patterns within the organization.
- Security Standards and Compliance:
- Ensure the cybersecurity architecture complies with relevant legal and regulatory requirements (e.g., NIST Cybersecurity
Framework, ISO 27001, and Security Technical Implementation Guides). - Work with compliance teams to conduct security audits and assessments.
- Ensure the cybersecurity architecture complies with relevant legal and regulatory requirements (e.g., NIST Cybersecurity
- Incident Response Support:
- Participate in incident response activities as needed, providing technical expertise and guidance.
- Review security incident analysis reports of root causes and determine the need for architectural or technical corrective
actions.
- Collaboration and Communication:
- Collaborate with cross-functional teams, including IT operations, development, and business units, to ensure alignment of security goals.
- Communicate security architectural designs and decisions effectively to both technical and non-technical audiences.
- Actively participate in architecture review boards and other governance processes.
The successful candidate will:
- Have excellent analytical and problem-solving skills.
- Have strong communication and interpersonal skills.
- Be able to work effectively in a team environment.
- Be a strategic thinker with the ability to influence without authority.
Education and Experience:
- Must have 8, or more, years of general (full-time) work experience.
- May be reduced with the completion of advanced education.
- Must have 6, or more, years of direct experience in cybersecurity architecture.
- Must have 2, or more, years of experience working in a management or leadership role.
- Must have proven experience designing and implementing complex security architectures.
- Must have a deep understanding of security principles, technologies, and best practices.
- Must have experience with a variety of security tools and technologies, including firewalls, intrusion detection/prevention
systems (IDS/IPS), Elastic Security SIEM, ACAS vulnerability scanners, and endpoint security solutions. - Must have experience with cloud security architecture and deployment models (IaaS, PaaS, SaaS).
- Must have experience implementing Zero Trust principles across an IT Services environment.
- Must have a strong understanding of cybersecurity architecture principles and best practices.
- Must have knowledge of regulatory compliance frameworks (e.g., NIST Cybersecurity Framework, ISO 27001).
- Must have an active DoD Secret Security Clearance.
Desired Requirements:
- Have 1, or more, industry certifications such as CISSP, CISM, CCSP, or AWS Certified Security - Specialty.
- Have experience with threat modeling methodologies (e.g., STRIDE, DREAD).
- Have experience with penetration testing and vulnerability assessment.
- Have experience with DevSecOps principles and practices.
- Have experience with security automation and orchestration.
Position Type/Expected Hours of Work:
This is a full-time position requiring 40 hours per week and offers a flexible work schedule Monday through Friday during core business hours.
Other Position Requirements:
- Proof of U.S. Citizenship or US Permanent Residency is a requirement for this position.
- Must be able to complete a U.S. government background investigation.
- Must be able to obtain a Secret clearance by date of hire.
- Must be able to travel, including air travel 10% of the time.
- Must have a valid Driver's License.
HX5 offers a competitive salary and benefits package to include:
- Medical/Dental/Vision Insurance
- 401(k) plan with Company Match
- Paid Holidays
- Paid Time Off
- Parental Leave
- Life Insurance
- Tuition Reimbursement
- Medical and Dependent Care Flexible Spending Accounts
- Pet Insurance
HX5, LLC is an Equal Opportunity Employer that recruits and hires qualified candidates without regard to race, religion, sex, age, national origin, ancestry, citizenship, disability, or veteran status.
HX5, LLC is a Drug Free Workplace Employer.
ACCESSIBILITY NOTICE:
If you need a reasonable accommodation for any part of the employment process due to a physical or mental disability, please call (850) 362-6551.
CJ
group id: 10324543
