Security Architect

Job Description

Title : Security Architect
Type : C2C / W2 / FT / C2H
Duration : Long Term
Location : Austin, TX

The security architect serves as a liaison between IT architects and information security teams and also coordinates with information system owners and common control providers on the allocation of security controls as system-specific, hybrid, or common controls. In addition, the security architect, in close coordination with information security officers, advises authorizing officials, the chief information officer, senior IT and security staff, on a range of security-related issues including establishing information system boundaries, assessing the severity of weaknesses and deficiencies in the information system, plans of action and milestones, risk mitigation approaches, security alerts, and potential adverse effects of identified vulnerabilities.

1. Define and prioritize essential system capabilities or business functions required for partial or full system restoration after a catastrophic failure event.
2. Define appropriate levels of system availability based on critical system functions and ensure that system requirements identify appropriate disaster recovery and continuity of operations requirements to include any appropriate fail-over/alternate site requirements, backup requirements, and material supportability requirements for system recover/restoration.
3. Develop/integrate cybersecurity designs for systems and networks with multilevel security requirements or requirements for the processing of multiple classification levels of data.
4. Document and address organization's information security, cybersecurity architecture, and systems security engineering requirements throughout the acquisition life cycle.
5. Employ secure configuration management processes.
6. Ensure that acquired or developed system(s) and architecture(s) are consistent with organization's cybersecurity architecture guidelines.
7. Identify and prioritize critical business functions in collaboration with organizational stakeholders.
8. Perform security reviews, identify gaps in security architecture, and develop a security risk management plan.
9. Provide advice on project costs, design concepts, or design changes.
10. Provide input on security requirements to be included in statements of work and other appropriate procurement documents.
11. Provide input to the Risk Management Framework process activities and related documentation (e.g., system life-cycle support plans, concept of operations, operational procedures, and maintenance training materials).
12. Define and document how the implementation of a new system or new interfaces between systems impacts the security posture of the current environment.
13. Analyze candidate architectures, allocate security services, and select security mechanisms.
14. Develop a system security context, a preliminary system security Concept of Operations (CONOPS), and define baseline system security requirements in accordance with applicable cybersecurity requirements.
15. Evaluate security architectures and designs to determine the adequacy of security design and architecture proposed or provided in response to requirements contained in acquisition documents.
16. Write detailed functional specifications that document the architecture development process.
17. Analyze user needs and requirements to plan architecture.
18. Develop enterprise architecture or system components required to meet user needs.
19. Document and update as necessary all definition and architecture activities.
20. Determine the protection needs (i.e., security controls) for the information system(s) and network(s) and document appropriately.
21. Translate proposed capabilities into technical requirements.
22. Assess and design security management functions as related to cyberspace.

II. CANDIDATE SKILLS AND QUALIFICATIONS
Minimum Requirements: Candidates that do not meet or exceed the minimum stated requirements (skills/experience) will not be considered for this opportunity and the resume will not be submitted to the customer.YearsRequired/PreferredExperience7RequiredExperience working with security management tools (e.g., vulnerability scanners, file integrity monitoring, configuration monitoring, etc.) and perimeter technologies (e.g., router, firewalls, web proxies and intrusion prevention, etc.)7RequiredAbility to resolve complex security issues in diverse and decentralized environments; to learn, communicate, and teach new information and security technologies; and to communicate effectively.7RequiredExtensive skill in effective verbal and written communications with other computer professionals, clients, and stakeholders7RequiredKnowledge of configuration management, change control/problem management integration, risk assessment and acceptance, exception management and security baselines (e.g. CIS Baselines, NIST, vendor security technical implementation guides, etc.)7RequiredKnowledge of software development life cycle methodologies7RequiredAbility to analyze and problem solve7RequiredAbility to establish and always maintain effective and professional working relationships with others in the course and scope of conducting business4PreferredGraduation from an accredited four-year college or university with major coursework in information technology security, computer information systems, computer science, management information systems, or a related field is generally preferred.1PreferredAbility to obtain required certification within 6 months and maintain approved baseline certification for position (i.e. CISSP-ISAAP or equivalent).1PreferredCISSP-ISAAP or equivalent certification