Senior Security Architect

Description of Task to be Performed:

AnaVation is seeking a Senior Security Architect with a Cloud focus for our mission critical customer in Washington, DC. You will be a valuable member of an exceptional team providing security expertise on high priority projects. Daily duties include, but are not limited to:

• Develop, design, and implement cloud security strategies, policies, and best practices.
• Identify security risks, areas of weakness, and specify/plan for the security tools needed to respond to security threats and breaches.
• Establish strategic security architecture direction for cloud service adoption that are aligned with overall business strategy.
• Evaluate the existing enterprise architecture with the progress of cloud integration. Create and build solutions, processes and best practices for identity and access management, encryption keying (PKI, SSH), auditing and logging, continuous monitoring, network connectivity and other focused areas of cloud security architecture.
• Perform Analysis of Alternatives (AoA) researching product and strategy options and presenting recommendations and analysis to government leadership.
• Develop solutions to a variety of moderate to complex security problems.
• Promote a collective awareness of present and emerging security threats and risks and openly communicate that with client leadership. Identify and assess attack vectors and create solutions to mitigate those threats and risks.
• Identify and develop new cloud architecture standards for secure cloud adoption. Work with key client stakeholders to gain approval.
• Develop architecture roadmaps for delivering new capabilities for multiple managed dependencies.
• Provide guidance on critical initiatives, encompassing areas such as Zero Trust, control automation, authentication enhancements, and log management, among others.
• Review and/or create documentation, processes, and technical procedures to identify and recommend opportunities for improvement.
• Responsible for accrediting and maintaining security authorization (ATO) of cloud-based systems, including implementing and monitoring security controls, conducting risk assessments, performing continuous monitoring, documenting compliance, and supporting audits.
• Work alongside cross-functional teams to design diverse security controls and facilitate their translation into engineering implementation.
• Maintain awareness of new technologies and trends and bring solutions to the client.
• Able to work independently with minimal guidance.
• Other related duties assigned by the program manager and government leadership.

This position is on-site in Washington, DC.

Required Qualifications:

• 8+ years of experience with designing, testing, and deploying complex Cybersecurity solutions in an enterprise environment.
• 8+ years of experience in networking and endpoint security architecture.
• Security Architect experience with a focus in IT cloud solutions.
• Possess advanced technical proficiency.
• FedRAMP and Cloud experience (e.g., Azure, AWS, Oracle (OCI))
• Ability to evaluate agency environments for security improvements.
• Knowledgeable on various security-related NIST publications (e.g., SP 800-53r5, SP 800-18r1, etc.)
• Knowledge of zero-trust security architecture.
• Ability to obtain and maintain a customer Top Secret (TS) clearance required. Qualified candidates can be sponsored for this clearance and must obtain their interim TS within six months of their date of hire.
• Certifications: CISSP required

Preferred Qualifications:

• Knowledge of Splunk and other similar SIEM tools.
• FISMA/FedRAMP responsibilities of cloud systems.
• Implement security controls (NIST 800-53) for cloud-based systems (SaaS, PaaS, IaaS), perform self-assessments, create and gather supporting artifacts, and prepare Authority to Operate (ATO) packages for client approval.
• Bachelor’s degree preferred.
• Desirable certifications: CISSP-ISSAP, Azure Solutions Architect, AWS Certified Solutions Architect, SANS, other cloud certifications.

Benefits

• Generous cost sharing for medical insurance for the employee and dependents
• 100% company paid dental insurance for employees and dependents
• 100% company paid long-term and short term disability insurance
• 100% company paid vision insurance for employees and dependents
• 401k plan with generous match and 100% immediate vesting
• Competitive Pay
• Generous paid leave and holiday package
• Tuition and training reimbursement
• Life and AD&D Insurance