Cyber Security Architect

Role: Cyber Security Architect

Location: Rockville, MD (Remote)

Duration: Long Term

Description:

An information security architect, the position is a key member of a consulting team providing advice and support, to federal agencies, in the areas of Information Security. This role will be primarily responsible reviewing, assessing, documenting, and reporting on the security architecture of various systems in use by the organization. Will assist in identifying how to improve the overall risk posture of the organization.

Job Responsibilities:

Providing security architecture support and interfacing across the program. This includes, but is not limited to, cybersecurity solutions, business development support, creating presentations and presenting at both internal and client engagement meetings, and providing technical strategy for solutions, guidance, policy, and implementations.
Review configuration of security solutions applied in protecting company asset such that the implemented SIEM solution reports all pertinent events and ensure it effectively identify and alert upon potential security events, as well as reduce false positives simultaneously.
Assist in the configuration of intrusion detection and prevention solutions based in the host and network servers to effectively identify potential security incidents.
Recommend and review dashboards for monitoring security information for the management and Information Security team, to be able to provide various degree of visibility both real-time and over extended periods of the security events within the environment.
Participate in the process of selecting and reviewing of information security solutions.
Assist in compiling and producing reports on monthly issue and trend for the enhancement of the functions of the Enterprise Security and Support management.
Make recommendations for changes to the environment that can help in the removal of vulnerabilities and reduction in the risk of exploitation that may result in potential incidents.
Participate in ensuring team processes and documentation are effectively documented and maintained.

Job Requirements:

BA or BS degree in MIS, CS, or related cybersecurity discipline or equivalent experience.
Minimum 8 years’ experience in Information Security is required along with excellent knowledge of at least 3 of the following:
Assessment and Accreditation of systems
Security Operations Center support
Vulnerability management and remediation
Carving, compiling, and analyzing security incident related artifacts
Network forensics
Excellent attention to detail and analytical skills required.
Overall Risk Management processes (e.g., methods for assessing, mitigating, and accepting risks).
Cybersecurity principles, security models, organizational requirements (w.r.t. confidentiality, integrity, availability, authentication, non-repudiation), cyber threats, risks and vulnerabilities, cryptography and cryptographic key management concepts, host/network access control mechanisms (e.g., ACLs), network access, identity, access management (e.g., PKIs), Computer networking concepts and protocols, and network security methodologies.
Knowledge of cyber threats and vulnerabilities; Ethical hacking principles, general attack stages; Specific operational impacts of cybersecurity lapses; programming language structures and logic.
Able to communicate, verbally and in writing, complex technical issues with simplicity clarity.
Skills:
Experience with various cyber security monitoring tools to include: CrowdStrike, Tenable, Netsparker, Forescout, DBProtect,
Exposure to various cyber security incident / even management tools: Splunk, Sumo Logic, Qradar, Arcsight
Knowledge of end point protection tools, such as: McAfee, Symantec, Cylance, Absolute
Knowledge of CIS, FISMA and NIST 800-53 security controls and assessment and accreditation requirements
Prior experience supporting federal government agencies
Highly motivated person, with a strong IT security background who excels integrating, operating, and deploying security technology and solutions and interacts well with both internal teams and clients.
Applicants selected will be subject to a Public Trust background security investigation and may need to meet eligibility requirements for access to sensitive information. US Citizens or Permanent Residents only.