Develop and align system security architectures with organizational cybersecurity guidelines, including defining security boundaries, documenting system categorization, and analyzing user needs and requirements.
Develop focused guidance for specific security mechanisms such as encryption for data at rest
Assess and evaluate security postures, reviewing candidate architectures, identifying protection needs, and determining how new systems or interfaces impact enterprise security.
Identify and document security and privacy requirements, including types of personal information, stakeholder interests, and data that require protection, ensuring proper allocation at both system and organizational levels.
Support acquisition and procurement efforts by providing input on security requirements for statements of work, project costs, and translating proposed capabilities into technical specifications.
Contribute to risk management and compliance, performing architecture reviews, identifying security gaps, supporting RMF activities, and maintaining documentation throughout the acquisition lifecycle.
Provide high-quality technical, engineering, analytical, and planning support to meet the organization's requirements.
Perform architectural review and analysis, developing strategic enterprise solutions that address the evolving business requirements and changing cybersecurity threat landscape.
Develop and deliver reports (e.g., reference architectures, white papers, roadmaps, architecture risk analysis) to facilitate the following, including but not limited to: Define and develop security architecture and engineering standards Develop business use cases and design patterns to articulate the organization's goals and objectives Document the current “as-is” through a holistic review of the agency enterprise Develop an envisioned target “to-be” based on the agency's needs and threat models Assess the gaps between “as-is” and “to-be”, and provide roadmaps to close gaps. Develop baselines and reference architectures consistent with standard frameworks Perform Architect Risk Analysis (ARA) through systematic and comprehensive reviews Identify, integrate, mature, and communicate key concepts that define continued direct interaction with the agency’s technical and operational leadership. Identify, frame, and support the resolution of critical issues impacting the organization. Update artifacts periodically to meet regulatory, audit, and compliance requirements.

Requirements

7+ years of experience designing security architectures by referencing NIST security controls, agency policy, and government-wide security requirements.
2+ years of experience designing Zero Trust Architectures to secure cloud and on-premise systems
Experience designing security architectures hosted in Microsoft Azure, using a combination of Azure-native services and COTS tooling
Experience assessing/reviewing security architectures, writing reports with detailed explanatory findings, and providing briefings on your findings.
Developing security architecture guidance to include policy language, Standard Operating Procedures, and as-code hardening standards.
Extensive knowledge of NIST 800-53rev5 and other NIST Special Publications.
Current knowledge of government-wide security mandates and CISA Directives
Ability to define and document system security boundaries and categorize systems based on security and privacy requirements.
Skilled in analyzing user needs to inform and guide secure architecture planning.
Proven ability to assess and evaluate enterprise security postures and identify impacts from new systems or interfaces.
Experience developing technical documentation, including written documents and diagrams.
Experience developing presentation slide decks and presenting to technical and non-technical personnel.
Experience identifying and documenting system and organizational security and privacy requirements, including personal data handling.
Familiarity with identifying and protecting enterprise and system-level security data.
Ability to collaborate with stakeholders and translate functional needs into technical security requirements.
Ability to support cost estimation and technical guidance related to secure system design and changes.
Skilled in identifying gaps in security architecture and contributing to the development of security risk management plans.
Proficiency in documenting and updating security architecture throughout the system development and acquisition lifecycle.

Benefits

Valiant pays 99% of the Medical, Dental, and Vision Coverage for Full-time Employees
Valiant contributes 25% towards Health Coverage for Family and Dependents
100% Paid Short Term Disability and Life Insurance Policy for Full-time Employees
100% Paid Certifications
401K Matching up to 4%
Paid Time Off
Paid Federal Holidays
Wellness & Fitness Program
Valiant University – Online Education and Training Portal
FSA programs for: Medical Costs, Dependent Care, Transit, and Parking
Referral Bonuses

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

security architecture designZero Trust ArchitecturesNIST security controlsMicrosoft Azuresecurity architecture guidanceNIST 800-53rev5technical documentationrisk managementsecurity postures assessmentdata encryption

Soft Skills

analytical skillscommunication skillscollaborationstakeholder engagementpresentation skillsproblem-solvingorganizational skillsattention to detailtechnical writinguser needs analysis