Security Architect – Mid


Job Location:

Washington, DC - USA

Monthly Salary: Not Disclosed
Posted on: 5 hours ago
Vacancies: 1 Vacancy

Job Summary

Koniag Data Solutions LLC a Koniag Government Services company is seeking a Security Architect Mid to support KDS and our government customer in Washington DC. This position requires the candidate to be able to obtain a Public offer competitive compensation and an extraordinary benefits package including health dental and vision insurance 401K with company matching flexible spending accounts paid holidays three weeks paid time off and Data Solutions a Koniag Government Services company is seeking a skilled Mid-Level Security Architect to support the U.S. Small Business Administration (SBA). The ideal candidate is an experienced cybersecurity professional with a solid foundation in security architecture design risk management and the implementation of security controls across federal enterprise IT environments. This individual will work collaboratively with the Senior Cybersecurity Architect SBA IT teams system owners and key stakeholders to support the design documentation and implementation of security architectures that protect SBAs systems networks and data assets while enabling the agencys mission. The Mid-Level Security Architect will support the design development and implementation of enterprise security architectures and solutions in alignment with SBAs cybersecurity strategy mission requirements and applicable federal security policies and frameworks. Working under the direction of the Senior Cybersecurity Architect this individual will contribute meaningfully to architecture design activities security assessments and the integration of security requirements across SBAs technology landscape. Principal responsibilities will include but are not limited to:Support the development and maintenance of SBAs enterprise cybersecurity architecture contributing to the creation review and updating of reference architectures security design patterns architecture decision records (ADRs) technical security roadmaps and supporting architecture in the design and implementation of security architectures for on-premises cloud and hybrid IT environments ensuring security controls and requirements are appropriately integrated throughout the system development lifecycle (SDLC) and that new and existing systems meet SBAs security architecture with SBA IT architects system owners developers and program teams to identify and incorporate security requirements into the design development procurement and deployment of new and existing SBA systems and security architecture reviews and technical assessments of proposed and existing SBA systems and solutions identifying vulnerabilities architectural weaknesses security control gaps and areas of non-compliance with federal security requirements and documenting detailed findings and remediation the development and maintenance of threat models for SBA systems and applications applying industry-standard methodologies such as MITRE ATT&CK and STRIDE to systematically identify assess and prioritize security risks associated with SBAs technology with the NIST Risk Management Framework (RMF) and Authorization to Operate (ATO) process including contributing to the development and review of System Security Plans (SSPs) security control documentation Plan of Action and Milestones (POA&Ms) and risk assessment artifacts in accordance with NIST guidelines and SBAs RMF technical support and working-level guidance on Zero Trust Architecture (ZTA) principles and assist in the design documentation and implementation of Zero Trust frameworks controls and capabilities within SBAs enterprise environment in alignment with federal ZTA requirements and SBAs Zero Trust and evaluate emerging cybersecurity technologies tools and solutions preparing technical assessments and recommendations to support informed SBA security technology investment decisions and capability improvement the development review and maintenance of cybersecurity policies standards guidelines and procedures ensuring alignment with NIST FISMA FedRAMP and other applicable federal cybersecurity requirements and SBA-specific operational with SOC incident response vulnerability management and privacy teams to ensure security architecture designs and recommendations support effective threat detection incident response vulnerability remediation and privacy protection capabilities across SBAs and maintain accurate and comprehensive security architecture documentation including security architecture diagrams data flow diagrams network topology diagrams interface control documents and technical design documents that reflect SBAs current and target security architecture in the assessment and documentation of security implications associated with emerging technologies and SBA technology modernization initiatives including cloud migration artificial intelligence adoption API integration and containerization as they relate to SBAs security architecture and risk and deliver technical briefings architecture review findings and written reports to SBA stakeholders clearly communicating security architecture assessments design decisions and recommendations in a manner appropriate to the current with the evolving federal cybersecurity threat landscape emerging technology trends vulnerability disclosures and changes to federal cybersecurity policies and frameworks proactively applying new knowledge to improve SBAs security architecture and inform architectural and Experience:Required:Bachelors degree in Cybersecurity Information Technology Computer Science Systems Engineering or a related field from an accredited college or university.5 years of progressive experience in cybersecurity with at least 2 years in a security architecture security engineering or senior security analyst role with demonstrated responsibility for architecture-related experience contributing to the design assessment and documentation of security architectures within a federal government or large enterprise IT or more of the following certifications:Certified Information Systems Security Professional (CISSP)Certified Information Security Manager (CISM)CompTIA Security (with demonstrated experience in architecture or engineering roles)GIAC Defensible Security Architecture (GDSA)AWS Certified Security Specialty Microsoft Certified: Azure Security Engineer Associate or equivalent cloud security certificationDesired:Masters degree in Cybersecurity Information Assurance Computer Science or a related field.7 years of cybersecurity experience with a demonstrated focus on security architecture within a federal government or defense contracting Information Systems Security Architecture Professional (CISSP-ISSAP) or SABSA Chartered Security Architect (SCF) Skills and Competencies:Strong communication skills in English both written and oral with the ability to effectively convey security architecture concepts assessment findings and design recommendations to both technical and non-technical audiences including SBA IT leadership and government understanding of enterprise security architecture frameworks and methodologies including the NIST Cybersecurity Framework (CSF) SABSA TOGAF and their practical application within a federal IT knowledge of federal cybersecurity policies frameworks and compliance requirements including NIST SP 800-53 NIST RMF FISMA FedRAMP and applicable CISA guidance and directives and their implications for security architecture design and assessment designing and assessing security architectures for cloud environments including AWS Microsoft Azure and/or Google Cloud Platform (GCP) with working knowledge of cloud-native security services controls and architecture familiarity with Zero Trust Architecture (ZTA) principles design patterns and implementation approaches with experience applying ZTA concepts to security architecture design and assessment activities within a federal or enterprise supporting the NIST Risk Management Framework (RMF) and ATO process including contributing to the development of SSPs security control documentation POA&Ms and risk assessment knowledge of network security architecture concepts including secure network segmentation defense-in-depth principles perimeter security controls micro-segmentation strategies and secure remote access solutionsWorking knowledge of identity and access management (IAM) concepts and technologies including multi-factor authentication (MFA) privileged access management (PAM) role-based access control (RBAC) and federated identity solutions and their application in federal security architecture developing and contributing to threat models using industry-standard methodologies such as STRIDE PASTA or MITRE ATT&CK to identify architectural security risks and inform security design with secure software development practices DevSecOps principles and the integration of security requirements and controls into CI/CD pipelines and the to develop clear accurate and comprehensive security architecture documentation including architecture diagrams data flow diagrams interface control documents and technical design analytical and problem-solving skills with the ability to assess complex security architecture challenges evaluate trade-offs and develop practical risk-informed architectural recommendations aligned with SBAs mission and operational to work effectively both independently and collaboratively within a team environment taking direction from the Senior Cybersecurity Architect while contributing proactively to architecture activities and team to obtain and maintain a Public Trust Skills and Competencies:Prior experience supporting SBA or other federal civilian agency cybersecurity architecture or security engineering programs with demonstrated knowledge of SBAs IT environment system portfolio and security architecture supporting FedRAMP authorization processes including familiarity with FedRAMP security requirements authorization boundary documentation and cloud service provider (CSP) security assessment of the CDM (Continuous Diagnostics and Mitigation) program its component tools and their integration into enterprise security architectures within federal civilian with secure cloud architecture patterns for containerized environments microservices architectures serverless computing and API security design considerations within federal cloud with software-defined networking (SDN) software-defined wide area networking (SD-WAN) or secure access service edge (SASE) security architecture concepts and their application in federal enterprise of data security and privacy architecture considerations including data classification frameworks data loss prevention (DLP) architectures encryption strategies and the integration of privacy by design principles into federal system with artificial intelligence (AI) and machine learning (ML) security architecture considerations including the security implications of AI/ML adoption and the integration of AI/ML technologies into federal cybersecurity Cloud Security Professional (CCSP) contributing to enterprise cybersecurity strategy development technology roadmap planning and security capability gap analysis activities within a federal government or large enterprise with industrial control systems (ICS) or operational technology (OT) security architecture concepts and their relevance to federal agency security architecture Equal Employment Opportunity PolicyThe company is an equal opportunity employer. The company shall not discriminate against any employee or applicant because of race color religion creed ethnicity sex sexual orientation gender or gender identity (except where gender is a bona fide occupational qualification) national origin or ancestry age disability citizenship military/veteran status marital status genetic information or any other characteristic protected by applicable federal state or local law. We are committed to equal employment opportunity in all decisions related to employment promotion wages benefits and all other privileges terms and conditions of company is dedicated to seeking all qualified applicants. If you require an accommodation to navigate or apply for a position on our website please get in touch with Heaven Wood via e-mail by calling to request Government Services (KGS) is an Alaska Native Owned corporation supporting the values and traditions of our native communities through an agile employee and corporate culture that delivers Enterprise Solutions Professional Services and Operational Management to Federal Government Agencies. As a wholly owned subsidiary of Koniag we apply our proven commercial solutions to a deep knowledge of Defense and Civilian missions to provide forward leaning technical professional and operational solutions. KGS enables successful mission outcomes for our customers through solution-oriented business partnerships and a commitment to exceptional service delivery. We ensure long-term success with a continuous improvement approach while balancing the collective interests of our customers employees and native communities. For more information please Opportunity Employer/Veterans/ Preference in accordance with Public Law 88-352

Required Experience:

Staff IC

Koniag Data Solutions LLC a Koniag Government Services company is seeking a Security Architect Mid to support KDS and our government customer in Washington DC. This position requires the candidate to be able to obtain a Public offer competitive compensation and an extraordinary benefits package in...

About Company

Company Logo

What We Do Koniag Government Services (KGS) is an Alaska Native Corporation comprised of multiple wholly owned subsidiary companies that deliver Enterprise Solutions, Professional Services, and Operations Management to Federal Government agencies. With an agile employee and corporate ... View more

View Profile View Profile