ZipRecruiter
Cyber Security - Lead Architect - On-Site
ZipRecruiter, Colorado Springs, Colorado, United States, 80509
Overview
The Lead Technical Architect for Cyber Security owns the entirety of service design, delivery, and operational performance for services in this technical vertical. This strategic and hands-on role leads the design, evolution, and governance of secure network architectures across enterprise and cloud environments. The Architect drives optimization of existing security infrastructure, implements best practices, and continuously improves the enterprise security posture. This role translates business needs into actionable technical strategies, embeds Zero Trust principles, and delivers technical excellence across government and commercial environments.
Responsibilities
Develop and maintain the technical vision, strategy, and roadmap for Cyber Security services, aligning with business goals and IT strategy.
Define and maintain architectural standards, patterns, and guidelines for cybersecurity systems and secure network solutions.
Design and maintain secure, scalable network architectures across cloud, hybrid, and on-premise environments.
Lead implementation of Zero Trust Network Architecture (ZTNA), microsegmentation, and access controls.
Ensure adherence to standard service delivery lifecycle and cybersecurity frameworks (NIST, ISO, RMF).
Provide technical leadership and guidance to Architecture and Engineering teams.
Develop and implement automation and Infrastructure as Code (IaC) solutions for network provisioning, configuration, and security enforcement (Terraform, Ansible, Python).
Collaborate with IT and DevOps stakeholders to integrate network security controls into CI/CD pipelines.
Perform threat modeling, risk assessments, and participate in incident response planning.
Architect and oversee secure connectivity solutions including VPNs, SD-WAN, SASE, NAC, and next-gen firewalls.
Continuously evaluate and improve security architecture, processes, and threat mitigation strategies.
Establish and enforce SLAs, KPIs, and metrics for security operations.
Foster a culture of knowledge sharing, mentoring, and continuous improvement.
Manage budgets and demonstrate financial awareness including ROI and TCO analyses.
Technical Acumen (Expertise)
Enterprise cybersecurity architecture and operations
Network protocols, routing/switching, segmentation, and encryption
Access Management (IAM) solutions
Endpoint protection, threat detection, and incident response
Cloud security (Azure, AWS, GCP) and cloud-platforms
Security monitoring and SIEM tools (Splunk, QRadar)
Network security solutions: Cisco, Palo Alto, Fortinet, Zscaler, Cloudflare, SD-WAN
Security automation tools (Terraform, Ansible, Python, PowerShell)
Qualifications (Experience & Exposure)
Active DoD Secret security clearance
Bachelor’s degree in computer science, Information Technology, or related field
ITIL v4 Foundation Certification
7+ years of IT experience
Experience in Desktop End User Experience technologies and in directing architecture and operating Desktop End User Experience in large, complex organizations across government and/or commercial
Deep technical expertise in end user technologies such as Microsoft Endpoint Configuration Manager, Microsoft Azure Virtual Desktop, Windows 11 design and deployment, or related technologies; proven experience in designing, implementing, and operating Desktop End User technologies
Deep understanding of IT service management (ITSM) frameworks and ITIL practices (incident, problem, change, and service release management)
Strong relationship management and communication skills with technical and executive audiences
Experience leading and mentoring technical teams
Desired Skills and Experience
Experience in a specific industry (e.g., DoD IT Operations)
Project management experience
ITIL Strategic Leader certification
Certifications
Required: CompTIA Security+
Microsoft certifications related to Desktop End User Experience (e.g., Enterprise Administrator Expert, Modern Desktop Administrator Associate)
Architect certifications (e.g., TOGAF)
ITIL certifications
Project Management certifications (e.g., PMP, Agile)
About OSAAVA Services OSAAVA Services is a mission-focused Service-Disabled Veteran-Owned Small Business (SDVOSB) specializing in cybersecurity and enterprise IT services. We support critical defense programs and are committed to excellence, agility, and innovation in every engagement.
Benefits
Medical, dental, vision insurance
401(k) with company match
Paid time off (vacation, sick leave, holidays)
Professional development support
Life & insurance
Why OSAAVA
SDVOSB culture: We value mission, service, and integrity
Competitive compensation & benefits
Opportunities to grow with a fast-moving team supporting security
Work that makes a difference—every day
OSAAVA Services is an Equal Opportunity Employer. We encourage applications from all qualified individuals, including veterans and individuals with disabilities. If you need assistance or accommodations, please email: recruiting@osaavaservices.com.
Company Description: Cyber Security company, specializing in specific cyber defense activities and IT services. We are a SDVOSB.
#J-18808-Ljbffr
Responsibilities
Develop and maintain the technical vision, strategy, and roadmap for Cyber Security services, aligning with business goals and IT strategy.
Define and maintain architectural standards, patterns, and guidelines for cybersecurity systems and secure network solutions.
Design and maintain secure, scalable network architectures across cloud, hybrid, and on-premise environments.
Lead implementation of Zero Trust Network Architecture (ZTNA), microsegmentation, and access controls.
Ensure adherence to standard service delivery lifecycle and cybersecurity frameworks (NIST, ISO, RMF).
Provide technical leadership and guidance to Architecture and Engineering teams.
Develop and implement automation and Infrastructure as Code (IaC) solutions for network provisioning, configuration, and security enforcement (Terraform, Ansible, Python).
Collaborate with IT and DevOps stakeholders to integrate network security controls into CI/CD pipelines.
Perform threat modeling, risk assessments, and participate in incident response planning.
Architect and oversee secure connectivity solutions including VPNs, SD-WAN, SASE, NAC, and next-gen firewalls.
Continuously evaluate and improve security architecture, processes, and threat mitigation strategies.
Establish and enforce SLAs, KPIs, and metrics for security operations.
Foster a culture of knowledge sharing, mentoring, and continuous improvement.
Manage budgets and demonstrate financial awareness including ROI and TCO analyses.
Technical Acumen (Expertise)
Enterprise cybersecurity architecture and operations
Network protocols, routing/switching, segmentation, and encryption
Access Management (IAM) solutions
Endpoint protection, threat detection, and incident response
Cloud security (Azure, AWS, GCP) and cloud-platforms
Security monitoring and SIEM tools (Splunk, QRadar)
Network security solutions: Cisco, Palo Alto, Fortinet, Zscaler, Cloudflare, SD-WAN
Security automation tools (Terraform, Ansible, Python, PowerShell)
Qualifications (Experience & Exposure)
Active DoD Secret security clearance
Bachelor’s degree in computer science, Information Technology, or related field
ITIL v4 Foundation Certification
7+ years of IT experience
Experience in Desktop End User Experience technologies and in directing architecture and operating Desktop End User Experience in large, complex organizations across government and/or commercial
Deep technical expertise in end user technologies such as Microsoft Endpoint Configuration Manager, Microsoft Azure Virtual Desktop, Windows 11 design and deployment, or related technologies; proven experience in designing, implementing, and operating Desktop End User technologies
Deep understanding of IT service management (ITSM) frameworks and ITIL practices (incident, problem, change, and service release management)
Strong relationship management and communication skills with technical and executive audiences
Experience leading and mentoring technical teams
Desired Skills and Experience
Experience in a specific industry (e.g., DoD IT Operations)
Project management experience
ITIL Strategic Leader certification
Certifications
Required: CompTIA Security+
Microsoft certifications related to Desktop End User Experience (e.g., Enterprise Administrator Expert, Modern Desktop Administrator Associate)
Architect certifications (e.g., TOGAF)
ITIL certifications
Project Management certifications (e.g., PMP, Agile)
About OSAAVA Services OSAAVA Services is a mission-focused Service-Disabled Veteran-Owned Small Business (SDVOSB) specializing in cybersecurity and enterprise IT services. We support critical defense programs and are committed to excellence, agility, and innovation in every engagement.
Benefits
Medical, dental, vision insurance
401(k) with company match
Paid time off (vacation, sick leave, holidays)
Professional development support
Life & insurance
Why OSAAVA
SDVOSB culture: We value mission, service, and integrity
Competitive compensation & benefits
Opportunities to grow with a fast-moving team supporting security
Work that makes a difference—every day
OSAAVA Services is an Equal Opportunity Employer. We encourage applications from all qualified individuals, including veterans and individuals with disabilities. If you need assistance or accommodations, please email: recruiting@osaavaservices.com.
Company Description: Cyber Security company, specializing in specific cyber defense activities and IT services. We are a SDVOSB.
#J-18808-Ljbffr