Job ID: VA-767227 (913390728)
Hybrid/Local Security Architect (CISSP/CCSP/Azure/AWS/GCP/15+) with encryption, PKI, cryptography, network/endpoint security, SMB/RPC/HTTP, CVSS/Vulnerability Scoring, SQL injection, NIST/IRS 1075/HIPAA/FedRAMP, ATO, IAM, CDM, OMB experience
Location: Chester, VA (VITA)
Duration: 8 Months
Position: 1(2)
Skills:
Experience providing high-level design and architecture diagrams Required 8 Years
technically validating solutions and connecting business, data, security, systems, and other technical and non-technical architectures Required 8 Years
Familiarity with open architecture and cybersecurity architecture principles that achieve cybersecurity framework goals. Required 8 Years
Familiar with encryption technologies used in commercial operating systems, including Public Key Infrastructures-continued Required 8 Years
symmetric and asymmetric cryptography, certificate trust stores and the use of key escrow for discovery and legal purposes Required 8 Years
At least 8 years of experience in network and endpoint security architecture Required 8 Years
Familiarity with protocols commonly used in commercial networks, such as SMB, RPC, HTTP, SQL Required 8 Years
Familiar with multi-tiered network applications, common ports and protocols used in those communications Required 8 Years
Familiar with Vulnerability Scoring (CVSS) and exploitation mechanisms of common vulnerability types (overflows, cross-site-scripting, SQL injection) Required 8 Years
Experience working with Cloud Native architecture paradigms, patterns and security methodologies. Required 6 Years
Familiarity with NIST, IRS 1075, HIPAA, FedRAMP and other cybersecurity framworks Required 8 Years
Familiar with methodologies for scalable, automated creation of System Security Plan, and Authority To Operate, Attestation & Validation Required 4 Years
Candidate should have a background in general security practices such as identity and access management (IAM)-continued Required 8 Years
Experience leading the alignment of on-going activities in support of critical State & Federal mandates such as -continued Required 8 Years
Continuous Diagnostics and Monitoring (CDM), Executive Orders related to cybersecurity, and guidance from OMB and NIST Required 8 Years
Familiarity with open architecture and cybersecurity architecture principles that achieve cybersecurity framework goals Required 8 Years
Desired Skills / Certification: • AWS Certified Security • Azure Architect Certification • Google Architect Certification Desired
Desired Skills/Certs (continued)- Certified Information Systems Security Professional (CISSP) • Certified Cloud Security Professional (CCSP) Desired
Job Description:
ABOUT THE ROLE
The Platform Security Architect is a critical technical role responsible for ensuring the secure design and compliance of the platform’s enterprise architecture. The Platform Security Architect will assist in ensuring systems complete needed steps in order to receive Authority to Operate, including but not limited to architectural design, System Security Plan, and compliance with organization design patterns. to effectively and securely support the organization in meeting specific business technology needs. This candidate will be considered a technical expert. Ideal candidates will have the following expectations, execute architecture design reviews to evaluate security controls and identify opportunities to enhance the security posture of the Commonwealths Platform services, build relationships with supplier infrastructure architects and engineering leads to disseminate and explain secure design methodologies and policies. Ideal candidates will also understand the landscape and components of cutting-edge architectures and the methods to securely deploy them.