Title: Cybersecurity Architect
Location: Washington D.C – Hybrid
Duration: 12+ Months
MOI: Virtual
Complete Description:
Role Overview:
We are seeking a highly experienced Cybersecurity Architect / Strategic Consultant to lead and guide the development, implementation, and evolution of customer cybersecurity strategy. This role demands a deep understanding of cybersecurity frameworks, risk management, emerging technologies, and technical security controls and architecture. The ideal candidate will be a trusted advisor to senior leadership, aligning cybersecurity initiatives with business objectives to safeguard organizational assets and reputation.
Key Responsibilities:
Strategic Planning and Advisory:
- Develop and refine the organization s cybersecurity strategy, ensuring alignment with overall business goals.
- Provide expert guidance on implementing industry-standard security program frameworks such as NIST CSF, ISO 27001, and CIS Controls.
- Identify emerging threats and recommend proactive technical measures to mitigate risks.
- Design and enablement of cyber controls functions and processes based on CMMC / NIST 800-171, NIST 800-53
Risk Management:
- Familiarity with risk management frameworks like NIST RMF, ISO 27005, and FAIR.
- Conduct comprehensive cybersecurity risk assessments, identifying vulnerabilities and recommending remediation strategies.
- Develop and maintain a robust risk management program to address both IT and operational risks.
- Implement technical solutions to manage and monitor risk effectively, including vulnerability management tools.
Technical Oversight
- Design and validate secure network architectures, focusing on principles such as Zero Trust and least privilege.
- Evaluate and implement advanced security technologies, including EDR, SIEM, DLP, and intrusion detection/prevention systems.
- Provide hands-on technical assessments of infrastructure, applications, and cloud environments to ensure security compliance.
- Oversee penetration testing activities and ensure identified vulnerabilities are remediated.
Policy and Governance
- Lead the development and enforcement of cybersecurity policies, standards, and procedures.
- Establish metrics and reporting mechanisms to measure the effectiveness of cybersecurity initiatives.
- Support incident response planning and governance, ensuring technical readiness for potential breaches.
Cloud and Emerging Technologies
- Provide technical guidance on securing multi-cloud environments, including AWS, Azure, and Google Cloud.
- Evaluate and implement cloud-native security tools, such as CSPM, CIEM, and workload protection platforms.
- Advise on emerging technologies like AI and ML, focusing on their application in threat detection and response.
Incident Response and Threat Intelligence
- Develop and oversee technical aspects of the incident response plan, ensuring readiness for real-world threats.
- Leverage threat intelligence platforms to proactively identify and address potential vulnerabilities.
- Coordinate with SOC teams to fine-tune detection rules and improve response times.
Qualifications:
Education:
Bachelor s or Master s degree in Cybersecurity, Computer Science, Information Technology, or a related field.
Experience:
- Minimum of 15 years of experience in information security.
- Proven experience with NIST CSF, NIST 800-53, and NIST 800-171 frameworks.
- Proven track record of developing and executing cybersecurity strategies for organizations of varying sizes and industries.
- Hands-on experience with risk assessments, compliance audits, and incident response planning.
- Prior role as a Sr. Security Consultant, Security Architect, or similar position is highly desirable
Certifications:
Relevant certifications (e.g., CISSP, CISM, CISA, CRISC, OSCP, CEH, or GSEC).
Skills:
- Experience in Information Security. Required 15 Years
- Proven experience with NIST CSF, NIST 800-53, and NIST 800-171 frameworks. Required
- Proven track record of developing and executing cybersecurity strategies for organizations of varying sizes and industries. Required
- Hands-on experience with risk assessments, compliance audits, and incident response planning. Required
- Proficiency with technical tools such as vulnerability scanners, SIEM platforms, and EDR solutions. Required
- Expertise in cloud security, Zero Trust architecture, and emerging technologies. Required
- Relevant certifications (e.g., CISSP, CISM, CISA, CRISC, OSCP, CEH, or GSEC). Required
- Bachelor s or Master s degree in Cybersecurity, Computer Science, Information Technology, or a related field. Required
Thanks!
|
|
Jitendra Kumar Talent Acquisition Specialist, Vyze, Inc. 24718 Tribe Square #306, Dulles, VA 20166 |
From:
Jitendra Kumar,
Vyze Inc
jitendra.kumar@vyzeinc.com
Reply to: jitendra.kumar@vyzeinc.com