Managing Security Consultant

Diné Source is seeking a Managing Security Consultant to guide the cybersecurity architecture of the Government modernization effort. This role is pivotal in designing secure, scalable, and compliant system architecture while also leading the risk management, Zero Trust implementation, and compliance strategy needed to support ATO and FISMA readiness. The ideal candidate blends deep technical expertise in cloud-native architecture with authoritative knowledge of DoD cybersecurity frameworks and secure software development practices.

Job Duties and Responsibilities:

Primary Duties

• Drive Zero Trust Architecture implementation including Identity, Credential, and Access Management (ICAM), role-based access control, encryption, and network segmentation
• Advises technical architecture for the modernization platform, including application, Oracle databases, and integration layers across the IL5 cloud environment
• Architect and oversee cybersecurity implementations of Azure cloud deployments, ensuring secure use of Azure services such as Azure Kubernetes Service (AKS), Azure API Management, Azure Monitor, Azure Key Vault, Azure Storage, and Azure Active Directory (AAD).

Technical Responsibilities

• Develop long-term cybersecurity strategy, aligning with DoD Zero Trust roadmap and DFARS compliance
• Oversee RMF and FISMA compliance efforts including generation and review of the System Security Plan (SSP), Business Impact Analysis (BIA), Contingency Plan (ISCP), and POA&Ms
• Conduct architecture and security risk assessments, design mitigation strategies, and lead security reviews during sprint closeouts
• Interface with the Government Cybersecurity teams, DISA, and system owners to support ATO submission and ongoing continuous monitoring
• Oversee vulnerability management across development and production environments using Fortify, WebInspect, ACAS, and other approved tools

Job Requirements (Education/Skills/Experience):

Required Qualifications
Education & Experience

• Bachelor's degree in computer science, Information Systems, Cybersecurity, Engineering, or related technical field (Masters preferred)
• 5+ years of experience in cybersecurity leadership roles
• DoD-approved 8140/8570 CISSP
• Public Trust / IT II Security clearance eligibility

Technical Skills

Security & Compliance:

• Advanced understanding of Zero Trust Architecture principles, maturity models, and implementation
• Expert knowledge of NIST SP 800-53, 800-207, 800-218, and Risk Management Framework (RMF)
• Experience with FedRAMP, FISMA, and DoD cybersecurity directives including DoDI 8510.01, 8570.01-M
• Working knowledge of ATO documentation, eMASS, audit logging, and system boundary definition
• Experience implementing Azure-specific security features including Azure Policy, Azure Security Center/Defender for Cloud, AAD Conditional Access, and Key Vault secrets management, MS Defender for cloud / Sentinel and PIM (Privileged Identity Management).

Soft Skills

• Strong leadership abilities with experience guiding technical teams and architecture decisions
• Excellent communication skills for interfacing with government stakeholders, cybersecurity teams, and technical staff
• Ability to work effectively in fast-paced Agile environments while maintaining security and compliance standards
• Strong analytical and problem-solving skills for complex enterprise architecture challenges
• Adaptability to evolving security requirements and emerging technologies in government environments

This contractor and subcontractor shall abide by the requirements of 41 CFR 60-1.4(a), 60-300.5(a) and 60-741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities, and prohibit discrimination against all individuals based on their race, color, religion, sex, sexual orientation, gender identity, national origin, or for inquiring about, discussing, or disclosing information about compensation, or any other basis prohibited by law. We participate in E-Verify.