Platform Security Architect
Platform Security Architect
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Job Description
Job Title: Platform Security Architect
Location: Richmond VA 23225
Job Type: Onsite
About Position:
The Platform Security Architect is a critical technical role responsible for ensuring the secure design and compliance of the platforms enterprise architecture. The Platform Security Architect will assist in ensuring systems complete needed steps in order to receive Authority to Operate including but not limited to architectural design System Security Plan and compliance with organization design patterns. to effectively and securely support the organization in meeting specific business technology needs. This candidate will be considered a technical expert. Ideal candidates will have the following expectations execute architecture design reviews to evaluate security controls and identify opportunities to enhance the security posture of the Commonwealths Platform services build relationships with supplier infrastructure architects and engineering leads to disseminate and explain secure design methodologies and policies. Ideal candidates will also understand the landscape and components of cutting-edge architectures and the methods to securely deploy them.
Job Description Summary
The ideal candidate brings extensive expertise in cybersecurity architecture and system design with a proven track record across state and federal compliance frameworks. Highlights of qualifications include:
8 years of experience providing high-level design and architecture diagrams.
8 years of experience technically validating solutions and integrating business data security and systems architectures.
8 years of familiarity with open architecture and cybersecurity principles aligned with cybersecurity framework goals.
8 years of knowledge of encryption technologies used in commercial operating systems including Public Key Infrastructures (PKI).
8 years of hands-on experience with symmetric and asymmetric cryptography certificate trust stores and key escrow use for legal and discovery purposes.
8 years of experience in network and endpoint security architecture.
8 years of familiarity with network protocols such as SMB RPC HTTP SQL.
8 years of understanding of multi-tiered network applications including ports and communication protocols.
8 years of knowledge in Vulnerability Scoring (CVSS) and exploitation mechanisms like overflows cross-site scripting and SQL injection.
6 years of experience working with Cloud Native architecture paradigms including patterns and security methodologies.
8 years of experience with cybersecurity frameworks like NIST IRS 1075 HIPAA and FedRAMP.
4 years of experience in automated System Security Plans and Authority to Operate (ATO) documentation processes.
8 years of experience in identity and access management (IAM) and general security best practices.
8 years of experience aligning organizational activities with State and Federal mandates including:
Continuous Diagnostics and Monitoring (CDM)
Cybersecurity Executive Orders
OMB and NIST guidance
Preferred Certifications (Desired)
AWS Certified Security
Azure Architect Certification
Google Architect Certification
Certified Information Systems Security Professional (CISSP)
Certified Cloud Security Professional (CCSP)
Employment Type
Contract
