AHU Technologies Inc
15Yrs Network/Cloud Solutions Architect/Information Security
AHU Technologies Inc, Washington, District of Columbia, us, 20022
Overview
Role: Cloud Solutions Architect Client: DC Government Location: Washington DC (Hybrid) Key Responsibilities
Strategic Planning and Advisory
Develop and refine the organization’s cybersecurity strategy, ensuring alignment with overall business goals. Provide expert guidance on implementing industry-standard security program frameworks such as NIST CSF, ISO 27001, and CIS Controls. Identify emerging threats and recommend proactive technical measures to mitigate risks. Design and enablement of cyber controls functions and processes based on CMMC / NIST 800-171, NIST 800-53
Risk Management
Familiarity with risk management frameworks like NIST RMF, ISO 27005, and FAIR. Conduct comprehensive cybersecurity risk assessments, identifying vulnerabilities and recommending remediation strategies. Develop and maintain a robust risk management program to address both IT and operational risks. Implement technical solutions to manage and monitor risk effectively, including vulnerability management tools.
Technical Oversight
Design and validate secure network architectures, focusing on principles such as Zero Trust and least privilege. Evaluate and implement advanced security technologies, including EDR, SIEM, DLP, and intrusion detection/prevention systems. Provide hands-on technical assessments of infrastructure, applications, and cloud environments to ensure security compliance. Oversee penetration testing activities and ensure identified vulnerabilities are remediated.
Policy and Governance
Lead the development and enforcement of cybersecurity policies, standards, and procedures. Establish metrics and reporting mechanisms to measure the effectiveness of cybersecurity initiatives. Support incident response planning and governance, ensuring technical readiness for potential breaches.
Cloud and Emerging Technologies
Provide technical guidance on securing multi-cloud environments, including AWS, Azure, and Google Cloud. Evaluate and implement cloud-native security tools, such as CSPM, CIEM, and workload protection platforms. Advise on emerging technologies like AI and ML, focusing on their application in threat detection and response.
Incident Response and Threat Intelligence
Develop and oversee technical aspects of the incident response plan, ensuring readiness for real-world threats. Leverage threat intelligence platforms to proactively identify and address potential vulnerabilities. Coordinate with SOC teams to fine-tune detection rules and improve response times.
Qualifications
Education
Bachelor’s or Master’s degree in Cybersecurity, Computer Science, Information Technology, or a related field.
Experience
Minimum of 15 years of experience in information security. Proven experience with NIST CSF, NIST 800-53, and NIST 800-171 frameworks. Proven track record of developing and executing cybersecurity strategies for organizations of varying sizes and industries. Hands-on experience with risk assessments, compliance audits, and incident response planning. Prior role as a Sr. Security Consultant, Security Architect, or similar position is highly desirable.
Certifications
Relevant certifications (e.g., CISSP, CISM, CISA, CRISC, OSCP, CEH, or GSEC).
Skills
Strong understanding of cybersecurity frameworks, regulatory requirements, and risk management methodologies. Proficiency with technical tools such as vulnerability scanners (e.g., Nessus, Qualys), SIEM platforms (e.g., Splunk, QRadar), and EDR solutions (e.g., CrowdStrike, Cisco Secure Endpoint, Cisco Secure Workload). Exceptional communication and presentation skills, with the ability to convey complex cybersecurity concepts to both technical and non-technical stakeholders. Leadership and influence capabilities to drive organizational change. Analytical mindset with the ability to anticipate and solve complex challenges. Expertise in cloud security, Zero Trust architecture, and emerging technologies.
Benefits
Flexible work from home options available.
#J-18808-Ljbffr
Role: Cloud Solutions Architect Client: DC Government Location: Washington DC (Hybrid) Key Responsibilities
Strategic Planning and Advisory
Develop and refine the organization’s cybersecurity strategy, ensuring alignment with overall business goals. Provide expert guidance on implementing industry-standard security program frameworks such as NIST CSF, ISO 27001, and CIS Controls. Identify emerging threats and recommend proactive technical measures to mitigate risks. Design and enablement of cyber controls functions and processes based on CMMC / NIST 800-171, NIST 800-53
Risk Management
Familiarity with risk management frameworks like NIST RMF, ISO 27005, and FAIR. Conduct comprehensive cybersecurity risk assessments, identifying vulnerabilities and recommending remediation strategies. Develop and maintain a robust risk management program to address both IT and operational risks. Implement technical solutions to manage and monitor risk effectively, including vulnerability management tools.
Technical Oversight
Design and validate secure network architectures, focusing on principles such as Zero Trust and least privilege. Evaluate and implement advanced security technologies, including EDR, SIEM, DLP, and intrusion detection/prevention systems. Provide hands-on technical assessments of infrastructure, applications, and cloud environments to ensure security compliance. Oversee penetration testing activities and ensure identified vulnerabilities are remediated.
Policy and Governance
Lead the development and enforcement of cybersecurity policies, standards, and procedures. Establish metrics and reporting mechanisms to measure the effectiveness of cybersecurity initiatives. Support incident response planning and governance, ensuring technical readiness for potential breaches.
Cloud and Emerging Technologies
Provide technical guidance on securing multi-cloud environments, including AWS, Azure, and Google Cloud. Evaluate and implement cloud-native security tools, such as CSPM, CIEM, and workload protection platforms. Advise on emerging technologies like AI and ML, focusing on their application in threat detection and response.
Incident Response and Threat Intelligence
Develop and oversee technical aspects of the incident response plan, ensuring readiness for real-world threats. Leverage threat intelligence platforms to proactively identify and address potential vulnerabilities. Coordinate with SOC teams to fine-tune detection rules and improve response times.
Qualifications
Education
Bachelor’s or Master’s degree in Cybersecurity, Computer Science, Information Technology, or a related field.
Experience
Minimum of 15 years of experience in information security. Proven experience with NIST CSF, NIST 800-53, and NIST 800-171 frameworks. Proven track record of developing and executing cybersecurity strategies for organizations of varying sizes and industries. Hands-on experience with risk assessments, compliance audits, and incident response planning. Prior role as a Sr. Security Consultant, Security Architect, or similar position is highly desirable.
Certifications
Relevant certifications (e.g., CISSP, CISM, CISA, CRISC, OSCP, CEH, or GSEC).
Skills
Strong understanding of cybersecurity frameworks, regulatory requirements, and risk management methodologies. Proficiency with technical tools such as vulnerability scanners (e.g., Nessus, Qualys), SIEM platforms (e.g., Splunk, QRadar), and EDR solutions (e.g., CrowdStrike, Cisco Secure Endpoint, Cisco Secure Workload). Exceptional communication and presentation skills, with the ability to convey complex cybersecurity concepts to both technical and non-technical stakeholders. Leadership and influence capabilities to drive organizational change. Analytical mindset with the ability to anticipate and solve complex challenges. Expertise in cloud security, Zero Trust architecture, and emerging technologies.
Benefits
Flexible work from home options available.
#J-18808-Ljbffr