Cyber Security Architect

BT-308 – Cyber Security Architect
Location: Herndon, VA (fully on-site, no remote option)

• The Candidate shall assist in evaluating and advising on zero trust architecture maturity models and road mapping phased adoption, ensuring alignment with organizational security posture.
• The Candidate shall work within the IT and Cybersecurity policies, standards and guidance domains.
• The Candidate shall apply critical thinking to identify strengths and weakness of alternative solutions, conclusions or approaches to problems related to zero trust architecture.
• The Candidate shall have working knowledge of zero trust architecture frameworks (e.g., NIST SP 800-207), including micro-segmentation, least-privilege access, and continuous verification.
• The Candidate shall have a working knowledge of network security architectures, such as software-defined networking (SDN), secure access service edge (SASE), and API gateways.
• The Candidate shall have working knowledge of identity and access management (1AM) and multi-factor authentication (MFA) systems.
• The Candidate shall possess a working knowledge of cloud-native security (e.g., AWS 1AM, Azure AD, Google Cloud 1AM) and hybrid/multi-cloud environments.
• The Candidate shall collaborate with cross-functional teams (e.g., security, DevOps, compliance) to help align zero trust architecture goals and outcomes, with business objectives.
• The Candidate shall coordinate program and project management process activities such as program and project reviews and creating documentation.
• The Candidate shall assist in preparing schedules, roadmaps, and management plans.
• The Candidate shall perform executive technical writing or editing to create cohesive products, narrative, or program artifacts for various audiences, including senior leadership.
• The Candidate shall assist with tracking and monitoring on-going zero trust projects and initiatives.
• The Candidate shall engage with stakeholders and senior audiences to coordinate activities across organizational boundaries.
• The Candidate shall assist in assessing, documenting, and tracking program and project requirements and follow-on technical exchange meetings (TEMs).
• The Candidate shall translate technical information into clear, readable documents and presentations to be used by technical and non-technical personnel.
• The Candidate shall track dependencies related to zero trust architecture implementation including but not limited to process improvements and changes, and technical integration challenges.

• Demonstrated experience evaluating and advising on zero trust architecture maturity models and road mapping phased adoption.
• Demonstrated experience within the IT and Cybersecurity policies, standards and guidance domains, organizing and shaping IT direction given to an organization's workforce.
• Demonstrated experience applying critical thinking to identify strengths and weakness of alternative solutions, conclusions or approaches to problems related to zero trust architecture.
• Demonstrated experience with a working knowledge of zero trust architecture frameworks (e.g., NIST SP 800-207), including micro-segmentation, least-privilege access, and continuous verification.
• Demonstrated experience in network security architectures, such as software-defined networking (SDN), secure access service edge (SASE), or API gateways.
• Demonstrated experience with a working knowledge of identity and access management (1AM) and multi-factor authentication (MFA) systems.
• Demonstrated experience with cloud-native security (e.g., AWS 1AM, Azure AD, or Google Cloud 1AM) and hybrid/multi-cloud environments.
• Demonstrated experience collaborating with cross-functional teams (e.g., security, DevOps, compliance) to help align zero trust architecture goals and outcomes, with business objectives.
• Demonstrated experience engaging with stakeholders to coordinate activities across organization boundaries.
• Demonstrated experience preparing schedules, roadmaps, and management plans.
• Demonstrated experience working with executive technical writing or editing to create cohesive products, narrative, or program artifacts for various audiences, including senior leadership.
• Demonstrated experience translating technical information into clear, readable documents and presentations to be used by technical and non-technical personnel.
• Demonstrated experience with tracking project or program dependencies including but not limited to process improvements and changes, and technical integration challenges.
• Demonstrated experience assessing, documenting, and tracking program and project requirements and follow-on technical exchange meetings (TEMs).
• Demonstrated experience tracking and monitoring on-going projects and initiatives.
• Demonstrated experience coordinating program and project management process activities such as program and project reviews and creating documentation.

• Demonstrated experience understanding threat landscapes, including lateral movement prevention and behavioral analytics using SIEM tools (e.g., Splunk) or UEBA platforms.
• Demonstrated experience architecting scalable, resilient zero trust architecture solutions that incorporate automation (e.g., via Infrastructure as Code with Terraform or similar) and monitoring for real-time anomaly detection.
• Demonstrated experience in assisting in identification and definition of process efficiencies.
• Demonstrated experience collaborating with the organization to improve the information technology capabilities, services, and support directorates.
• Demonstrated experience with both internal and external stakeholders' processes, policies, procedures, and capabilities.
• Demonstrated experience creating, drafting, and reviewing Cybersecurity policies and program documentation.
• Demonstrated experience as a Network Architect or Security Architect.
• Degree or equivalent experience in a business, computer science or technology discipline.