Hiring Our Heroes
SENIOR SECURITY ARCHITECT, TECHNICAL LEAD
Hiring Our Heroes, Arlington, Virginia, United States, 22201
Job Description
SENIOR SECURITY ARCHITECT, TECHNICAL LEAD
MILITARY FRIENDLY & PREFERRED - HOH SPONSOR Zermount, Inc has a requirement for a highly talented, hands-on Senior Security Architect, Technical Lead located in the Washington, DC metro area to help accelerate our Security Program for a client in the Government Sector. You will use your security knowledge and security tooling skills to lead a team of Security Architects and Engineers in developing, reviewing, and modernizing secure and compliant architectures. The Senior Security Architect, Technical Lead will support the Cybersecurity Division (CD) with cybersecurity services, operations, monitoring, and compliance activities. You will manage and coordinate the Cybersecurity Division's daily operations, working closely with the Office of the Chief Information Officer (OCIO) / CD staff and other agency personnel. This role includes oversight of activities such as Security Architecture Reviews (SAR), Cloud Security Engineering, System Security Engineering (SSE), Technical Risk Assessments (TRA), High Value Asset (HVA) Assessments, IT Security System Administration, and various security assessments and scans. You will ensure assessments are thorough and accompanied by mitigation recommendations, and support documentation updates like SOPs and Cyber Policies. DUTIES & RESPONSIBILITIES
Lead a team of Security Architects and Engineers to fulfill the agency's Cybersecurity mission. Develop and recommend security architecture patterns and standards for cloud and on-prem environments. Review architecture diagrams, security tools, network traffic, and data protection measures, providing security enhancement recommendations. Evaluate business strategies, research standards, conduct security and vulnerability analyses, and assess architectures/platforms. Create security architecture frameworks, patterns, and best practices in collaboration with Enterprise Architecture and Cloud COE. Assess existing IT infrastructure, identify strengths and weaknesses, and determine effectiveness. Enhance security by planning solutions, addressing questions, and teaching best practices. Consult on security best practices during design and development, ensuring alignment with business and regulatory requirements. Deliver presentations and briefings on security architecture topics. Validate security architectures to detect changes, ensure compliance, and improve cybersecurity operations and visibility, including in cloud environments. Review current security measures, identify improvements, and develop recommended architectures. Perform manual security code reviews to identify vulnerabilities and oversee secure development lifecycle practices. Improve cloud monitoring, detection, and response; review security tools for gaps and overlaps; and recommend improvements. Enhance vulnerability assessment programs, integrate security scanning into pipelines, and improve coverage. Streamline cybersecurity authorizations and compliance processes, including ATO procedures. Develop secure cloud adoption strategies, including integrating assessment workflows and compliance checks. Conduct architecture reviews, including configuration and network traffic analysis, and produce SAR reports highlighting strengths and findings. QUALIFICATIONS
High attention to detail, minimal guidance needed, effective communication skills. Ability to plan strategically and operate tactically. Adaptability to changing requirements and priorities. Minimum 5 years (preferably 10) in network, systems, or application security. Experience with LAN/WAN, WAF/CDN/DDOS, firewalls, IDS/IPS, virtualization, container security, application development security, and cloud security (AWS required, Azure or GCP optional). Knowledge of multi-cloud, hybrid cloud, IaaS, PaaS, SaaS, and shared responsibility models. Hands-on experience with AWS services (IAM, KMS, S3, RDS, SNS/SQS, Guard Duty, Security Hub, etc.) and Azure equivalents. Experience with DevSecOps, RMF, CSF, FISMA, Fedramp, and security architecture principles. Familiarity with ZTNA, SASE, ICAM (OKTA), CWPP, SOC operations, vulnerability management, and compliance. At least 5 years working with Agile DevOps, Scrum, Kanban. Proven security consulting and architecture support experience across cloud environments. Strong analytical, problem-solving, and communication skills, with the ability to explain technical details to non-technical stakeholders. EDUCATION
Bachelor's degree (or higher) in computer engineering, computer science, IT, cybersecurity, or related fields, with relevant specialization. CERTIFICATIONS
Required: CISSP. Preferred: Certified Cloud Security Professional, AWS Solutions Architect Associate, AWS Security Specialty, Azure Solutions Architect, Google Cloud Architect. ADDITIONAL INFORMATION
Clearance: U.S. Patent and Trademark Office MBI background check required. Work Location: Remote, with initial onboarding in Arlington, VA; minimal travel to Washington, DC area.
#J-18808-Ljbffr
MILITARY FRIENDLY & PREFERRED - HOH SPONSOR Zermount, Inc has a requirement for a highly talented, hands-on Senior Security Architect, Technical Lead located in the Washington, DC metro area to help accelerate our Security Program for a client in the Government Sector. You will use your security knowledge and security tooling skills to lead a team of Security Architects and Engineers in developing, reviewing, and modernizing secure and compliant architectures. The Senior Security Architect, Technical Lead will support the Cybersecurity Division (CD) with cybersecurity services, operations, monitoring, and compliance activities. You will manage and coordinate the Cybersecurity Division's daily operations, working closely with the Office of the Chief Information Officer (OCIO) / CD staff and other agency personnel. This role includes oversight of activities such as Security Architecture Reviews (SAR), Cloud Security Engineering, System Security Engineering (SSE), Technical Risk Assessments (TRA), High Value Asset (HVA) Assessments, IT Security System Administration, and various security assessments and scans. You will ensure assessments are thorough and accompanied by mitigation recommendations, and support documentation updates like SOPs and Cyber Policies. DUTIES & RESPONSIBILITIES
Lead a team of Security Architects and Engineers to fulfill the agency's Cybersecurity mission. Develop and recommend security architecture patterns and standards for cloud and on-prem environments. Review architecture diagrams, security tools, network traffic, and data protection measures, providing security enhancement recommendations. Evaluate business strategies, research standards, conduct security and vulnerability analyses, and assess architectures/platforms. Create security architecture frameworks, patterns, and best practices in collaboration with Enterprise Architecture and Cloud COE. Assess existing IT infrastructure, identify strengths and weaknesses, and determine effectiveness. Enhance security by planning solutions, addressing questions, and teaching best practices. Consult on security best practices during design and development, ensuring alignment with business and regulatory requirements. Deliver presentations and briefings on security architecture topics. Validate security architectures to detect changes, ensure compliance, and improve cybersecurity operations and visibility, including in cloud environments. Review current security measures, identify improvements, and develop recommended architectures. Perform manual security code reviews to identify vulnerabilities and oversee secure development lifecycle practices. Improve cloud monitoring, detection, and response; review security tools for gaps and overlaps; and recommend improvements. Enhance vulnerability assessment programs, integrate security scanning into pipelines, and improve coverage. Streamline cybersecurity authorizations and compliance processes, including ATO procedures. Develop secure cloud adoption strategies, including integrating assessment workflows and compliance checks. Conduct architecture reviews, including configuration and network traffic analysis, and produce SAR reports highlighting strengths and findings. QUALIFICATIONS
High attention to detail, minimal guidance needed, effective communication skills. Ability to plan strategically and operate tactically. Adaptability to changing requirements and priorities. Minimum 5 years (preferably 10) in network, systems, or application security. Experience with LAN/WAN, WAF/CDN/DDOS, firewalls, IDS/IPS, virtualization, container security, application development security, and cloud security (AWS required, Azure or GCP optional). Knowledge of multi-cloud, hybrid cloud, IaaS, PaaS, SaaS, and shared responsibility models. Hands-on experience with AWS services (IAM, KMS, S3, RDS, SNS/SQS, Guard Duty, Security Hub, etc.) and Azure equivalents. Experience with DevSecOps, RMF, CSF, FISMA, Fedramp, and security architecture principles. Familiarity with ZTNA, SASE, ICAM (OKTA), CWPP, SOC operations, vulnerability management, and compliance. At least 5 years working with Agile DevOps, Scrum, Kanban. Proven security consulting and architecture support experience across cloud environments. Strong analytical, problem-solving, and communication skills, with the ability to explain technical details to non-technical stakeholders. EDUCATION
Bachelor's degree (or higher) in computer engineering, computer science, IT, cybersecurity, or related fields, with relevant specialization. CERTIFICATIONS
Required: CISSP. Preferred: Certified Cloud Security Professional, AWS Solutions Architect Associate, AWS Security Specialty, Azure Solutions Architect, Google Cloud Architect. ADDITIONAL INFORMATION
Clearance: U.S. Patent and Trademark Office MBI background check required. Work Location: Remote, with initial onboarding in Arlington, VA; minimal travel to Washington, DC area.
#J-18808-Ljbffr