Cybersecurity Architect

Role Responsibilities

• Serve as the Cybersecurity Subject Matter Expert (SME), leading the design, integration, and implementation of security appliances and software in a manner that aligns with organizational policies, standards and strategic vision.

• Serve as Liaison between Information Security (Infosec) and Cybersecurity Architecture and Engineering (CAE) by translating security operation goals and objectives in technical deployments of platforms and tools.

• Maintain and optimize the Splunk Enterprise Security app, including the CIM (Common Information Model) mapping, identity/asset lookups, and threat intelligence feeds.

• Lead the end-to-end technical onboarding of new data sources—from Universal Forwarder (UF) configuration to index management and field extraction.

• Responsible for the day-to-day administration, health, and optimization of the Skyhigh Security Cloud Access Security Broker (CASB) platform, ensuring that data remains secure, compliant, and visible across all cloud service providers (CSPs).

• Monitor traffic via log upload or API connectors to identify "Shadow IT" and evaluate the risk scores of unsanctioned cloud applications.

• Serve as the primary SME in CAE for all Artificial Intelligence initiatives to include the “safety-testing” of AI systems.

• Collaborate with the Immediate Office and Infosec by conducting technical control validation of AI systems and Large Language Models ensuring that “guardrails” are in place and function as expected.

• Redefine the organization’s security philosophy to align to a Zero Trust framework chosen by the organization and bridge the gap between complex security architectures and business enablement.

• Partner with cross-functional staff to define strategic visions and independently lead efforts to implement new capabilities.

• Establish and maintain quality control checks and performance metrics for CAE tools and appliances.

• Provide expert project management leadership for cybersecurity operations, aligning technical execution with organizational goals.

‍

Required Education & Skills

• Eight (8) to ten (10) years of information technology experience. Six (6) years of experience preferably within the architecture or engineering practices

• Bachelor’s degree in a related field. or the equivalent combination of education and experience

• Three (3) years of experience as a Cybersecurity Solutions Architect

• One (1) to two (2) years of experience in the application of Information Security Architecture in a cloud environment (Amazon Web Services is a must)

• Six (6) or more years of hands-on experience with security monitoring tools such as IDS/IPS, FWs and NACs, Identity Management systems and protocols such as NetFlow (Snort, Bro, Palo Alto, Checkpoint, Cisco ISE, FireEye, Gigamon) and Web Application Firewalls.

• Experience with Splunk

• Experience with both the Linux and Windows operating systems.

• Experience working with cloud services such as AWS, Azure and O365 and cloud access security brokers.

• Experience in the use of network monitoring tools with a strong understanding of network protocols.

• Ability to perform security analysis, development and implementation of security policies, standards, and guidelines.

• Ability to quickly explore, examine and understand complex security problems and how it affects a customer’s business.

‍

Location & Clearance Requirements

• This position is hybrid and is required to be onsite 3 days a week in either Washington, DC or Manassas, VA.

• Must be able to obtain a public trust clearance.

‍

‍