Senior Security Architect

Overview:

Axiologic Solutions is Anything but Ordinary. Our team members are exceptional people who care deeply about their work, their clients, and their mission by listening and delivering. Come help us to make an impact on our client's toughest mission challenges. Here are just some of the fringe benefits to joining the Axiologic team as a Senior Security Architect.

Responsibilities:

• Collaborate with network and system engineers to design, document, and deploy complex cybersecurity solutions for Wide Area Networks, cloud, data centers, and applications.

• Work closely with innovative and savvy teammates to expand the existing service offerings with new tools and technologies.

• Automate and streamline operations and processes, and further the adoption of DevSecOps best practices.

• Translates customer requirements into formal agreements and plans to culminate in customer acceptance or results.

• Provide proposals to improve operational processes, DevOps, deployment checklists, cybersecurity best practices, pragmatic approaches to improving the architecture's security posture, how to protect and secure legacy systems, etc.

• Be capable of teaching others and explaining the why behind complicated technical decisions.

• Collaborate with teammates to design cybersecurity solutions for both on-premise and in the cloud systems.

• Design, test, assess, and implement security solutions, such as a using next-generation firewalls or configuring a network-behavioral anomaly detection tools.

• Implement a complex set of nested, inherited, and compensating controls to protect critical devices.

• Document cybersecurity controls as required by federal cybersecurity frameworks to include the NIST Cybersecurity Framework and the NIST Risk Management Framework (RMF). Applies knowledge and understanding of Information Assurance (IA) concepts, practices and procedures using established IC and Agency policies and standards to minimize and/or mitigate RMF security risks.

• Perform penetration testing on new and existing network architecture.

• Other tasks as required.

Qualifications:

• Must have an active/current TS/SCI and be able to pass a CI Poly.

• Must have at least five 12 years' experience.

• A bachelor's degree or equivalent training and experience. Master's degree preferred with advanced training in Cyber Security.

• Expert knowledge of threat modelling and configuration in alignment with the principals of ethical hacking and coding practices.

• Firewall Management and Implementations - design, implementation, and administration of enterprise level firewalls.

• Ability to measure the vulnerability levels of an organization and recommend plans of action to close those vulnerabilities.

• Experience performing risk assessments, business impact assessments, cloud assessments, security audits, software/application audits and licensing audits.

• Experience developing and creating security metrics to include organization risk exposure, return on security investment, and a wide range of operational metrics.

• Understanding of a wide range of programming languages, network solutions, and their associated vulnerabilities. Understanding of security tools and techniques that protect an organization from vulnerabilities commonly found in networks.

• Knowledge and experience of various end point security tools such as antivirus, anti-malware, application whitelisting, mobile application containers, data loss prevention, multi factor authentication.

• Encryption Experience - Ability to be able to send/receive data over a network without exposing data to threats.

• Demonstrated experience in cyber security, InfoSec, security engineering, or network engineering.

• Demonstrated experience leading A&A efforts for enterprise class systems.

• Demonstrated experience writing, reviewing, and analyzing SSPs.

• Demonstrated experience writing and reviewing documents such as requirements specifications, system architecture, design documents, test plans, and security plans.

• Demonstrated experience architecting and designing a flexible high security Research and Development (R&D) environment.

• Demonstrated experience assessing systems against information assurance policies and regulations.

• Demonstrated experience recommending mitigating countermeasures to identified threats, vulnerabilities, and shortfalls.

• Demonstrated experience developing risk assessment and certification reports.

• Demonstrated experience monitoring and tracking remediation efforts.

• Demonstrated experience coordinating and performing security testing.

• Demonstrated experience analyzing and documenting test results.

• Demonstrated experience resolving IT engineering problems.

• Demonstrated experience communicating complex technical concepts to both technical and non-technical audiences.

• Experience with the principals of System and Network Administration.

• Demonstrated experience architecting and securing systems in the Amazon Web Services (AWS) and/or Azure cloud.

• Certification - Cisco CCIE Security required.

Desired Qualifications:

• Desired experience working with Palo Alto, CheckPoint, Cisco, and Fortinet.

• Desired certifications with Licensed Penetration Tester certification, Offensive Security Certified Expert (OSCE) or Offensive Security Certified Professional (OSCP)

Travel Requirements:

• Travel may be required within Washington National Capital Region (NCR) on an as-needed basis for customer or corporate requirements.

Level of Supervision Required:

• The supervisor sets the overall objectives and resources available.

• The employee plans and carries out the assignment resolves most of the conflicts, coordinates work with others and interpret policy on own initiative.

• The employee keeps the supervisor informed of progress, potentially controversial matters, or far-reaching implications.

Work Environment:

• This job operates in a professional office environment. This role routinely uses standard office equipment such as computers and phones.

• While performing the duties of this job, the employee is regularly required to communicate within a team environment.

• Ability to type, sitting or standing, to complete work functions for hours at a time; ability to move between sitting, standing, and walking on a frequent basis.