THE OVERALL PURPOSE OF POSITION:

• The purpose of this position is to provide Security Architect support to the IT department.

SCOPE OF WORK

• Assessment of the current state of Zero Trust Architecture implemented across all systems.
• Plan/roadmap defining best path forward to implement Zero Trust Architecture across all systems along with updates at least quarterly.
• Assessment of the current state of Client’s implementation of security boundaries across all systems
• Assessment and inventory of the current state of encryption at-rest and in-transit for all systems and associated data.
• Plan/roadmap defining how and when all systems will implement encryption at-rest and in-transit if not already implemented along with updates at least quarterly.
• Support in continually improving the IT Security’s incident detection and response posture by providing recommendations on how to improve processes and toolsets 
• Support the implementation of a Supply Chain Risk Management program by recommending processes improvements, i.e., SDLC updates, and appropriate toolsets.
• Assess current development methodologies adherence to security compliance and make recommendations/policies to ensure security compliance is incorporated rigidly into the SDLC process.
• Validate and/or recommend changes to Client’s current Security Standards and Implementation / Maintenance Policies and support the effort to ensure that Security Standards are incorporated in all EA and Development Initiatives.
• Contribute to defining a path forward to transition to a 100% Dev/Sec/Ops adoption including developing a recommendation taking into account all facets of Dev/Sec/Ops including technical as
• well as organizational objectives and challenges.
• Contribute to the maintenance of the EA To-Be Architecture and the associated Roadmap for achieving the EA To-Be Architecture from a Security Architecture perspective taking into account the strategic direction of the Information Security Program.

QUALIFICATION AND EXPERIENCE:                     

• B.A. or B.S. degree or equivalent experience.
• Minimum 7 years of experience working as a Security Architect in a mid to large size IT environment and delivering technical security solutions for the enterprise. Experience providing IT security support to government clientele is preferred.

Desired capabilities shall include:

• Solid understanding of security protocols, cryptography, authentication, authorization, and security
• Good working knowledge of current IT risks and experience implementing security solutions
• Experience implementing multi-factor authentication, single sign-on/SAML, identity management or related technologies
• Working knowledge and experience implementing zero trust architecture across both custom developed and cloud-based systems
• Ability to interact with a broad cross-section of personnel to explain and enforce security measures
• Excellent written and verbal communication skills as well as business acumen and a commercial outlook

EDUCATION

• Bachelor’s degree with a strong academic record.

• The minimum amount of total work-related experience required is 7 years for the position.  This means experience in a related area or time spent performing similar work that provides the background for the current position.