Security Architect

Position DescriptionValiant Solutions is seeking a Security Architect to join our rapidly growing and innovative cybersecurity team! The Security Architect SME will lead the development of security architecture guidance, standards, and reference diagrams for on-premise and cloud platforms and systems. This is an exciting role to support both macro and micro security design for a large government agency. You’ll get to support a variety of cloud and on-premise projects, working with leading edge technology. This position requires a deep level of understanding of NIST Special Publications used to secure federal systems, including NIST SP 800-53. This knowledge must be combined with experience designing and assessing security architectures for both cloud and on-premise systems to protect the confidentiality, availability, and integrity of systems and their data using COTS tools, cloud native services, and component-level configuration settings. In this role, you will lead from the front as the key subject matter expert guiding our valued client. The successful candidate will support the design of Zero Trust security architectures and their associated guidance, working in iterations to tighten least privilege access controls and automate Zero Trust controls.Named one of the Best Places to Work in the Washington DC area for 12 consecutive years, Valiant is proud of our employee-centric culture and commitment to excellence. If you are interested in learning more about Valiant and this opportunity, we invite you to apply now!Eligibility Requirements: U.S. Citizenship is required due to federal contract obligations, along with the ability to successfully pass a federal background investigation.Location: This position allows for 100% remote work. Remote work requires a high level of trust in our employees, and we strictly adhere to the details outlined in our Remote Work Policy below.Required Experience7+ years of experience designing security architectures by referencing NIST security controls, agency policy, and government-wide security requirements. This experience must include the design of on-premise and cloud security fabrics for all layers of the system (application down to CSP).2+ years of experience designing Zero Trust Architectures to secure cloud and on-premise systemsExperience designing security architectures hosted in Microsoft Azure, using a combination of Azure-native services and COTS toolingExperience assessing/reviewing security architectures, writing reports with detailed explanatory findings, and providing briefings on your findings.Developing security architecture guidance to include policy language, Standard Operating Procedures, and as-code hardening standards.Extensive knowledge of NIST 800- 53rev5 and other NIST Special Publications.Current knowledge of government-wide security mandates and CISA DirectivesAbility to define and document system security boundaries and categorize systems based on security and privacy requirements.Skilled in analyzing user needs to inform and guide secure architecture planning.Proven ability to assess and evaluate enterprise security postures and identify impacts from new systems or interfaces.Experience developing technical documentation, including written documents and diagrams.Experience developing presentation slide decks and presenting to technical and non-technical personnel.Experience identifying and documenting system and organizational security and privacy requirements, including personal data handling.Familiarity with identifying and protecting enterprise and system-level security data.Ability to collaborate with stakeholders and translate functional needs into technical security requirements.Ability to support cost estimation and technical guidance related to secure system design and changes.Skilled in identifying gaps in security architecture and contributing to the development of security risk management plans.Proficiency in documenting and updating security architecture throughout the system development and acquisition lifecycle.Preferred Relevant Certifications:CompTIA Advanced Security Practitioner (CASP)CompTIA Cloud EssentialsComptia Cloud+Comptia Security+EC-Council Certified Network Defense Architect (CNDA)EC-Council Certified Ethical Hacker (CEH)GIAC Continuous Monitoring Certification (GMON)GIAC Security Expert (GSE)ISC2 Certified Cloud Security Professional (CCSP)ISC2 Certified Information Systems Security Professional (CISSP)ISC2 CISSP Information Systems Security Architecture Professional (CISSP-ISSAP)ISC2 CISSP Information Systems Security Engineering Professional (CISSP-ISSEP)ISC2 Systems Security Certified Practitioner (SSCP)ResponsibilitiesDevelop and align system security architectures with organizational cybersecurity guidelines, including defining security boundaries, documenting system categorization, and analyzing user needs and requirements.Develop focused guidance for specific security mechanisms such as encryption for data a