Previous Job
Previous
Architect - Reston, VA
Ref No.: 17-02662
Location: Reston, Virginia
Job Title: Architect
Job Location: Reston, VA
Position Type: Contract
Rate: DOE
Period: 07/24/2017 – 06/29/2018

US Citizen and Green Card preferred.

Job Description

Specialized knowledge and skills
  • 5+ years' experience reviewing project architecture and solutions
  • 6+ years of leading experience application security architecture efforts that requires close collaboration with project and business stakeholders
  • Ability to lead security architecture consultation with other parts information security, Enterprise/Business/Data Architecture, IT and Business partner and peers on proper security architecture and software development processes to ensure the application developed and systems implemented are in line with security best practices and company policies and standards and are compliant with required framework (ISO, SOX, SWIFT, OWASP, NIST Cyber security, etc.).
  • Ability to develop repeatable application security architectures working with internal and external partners. Contribute to the development of architectural reference material to ensure that security practices are being implemented in a repeatable fashion.
  • Partner with EA Portfolio and initiative architects to assess security threads, identifying and tailoring security requirement, and integrating security controls into the Software Development Lifecycle (SDLC).
  • Ability to document and diagram technical system and architectures.
  • Experience in an environment using agile methodology.
  • Demonstrated experience integrating security within the various cloud service model (e.g laas Paas Saas). Able to identify the appropriate security solution for various cloud implementation. Able to architect, implement and document system security control.
  • Ability to review system documentation for proposed projects (e.g. system requirement, detailed design/architecture, interface document, etc.), identify security gaps and provide security recommendation to address those gaps, and complete risk profiles for cloud computing solution.
  • Ability to advice and approve of changes and architectures and assign areas for an application security perspective.
  • Ability to perform as a subject matter expert and contribute to the development of company security policy and procedures.
  • Ability to lead efforts that document and present risks and security issues that could impact the confidentiality integrity and or availability of the business (both internally and externally).
  • Ability to assess risk to application associated with emerging threat and threat vectors
  • Previous industry experience with application security including static code review, automatic code scan, security architecture review, penetration testing, and mitigating application level vulnerabilities.
  • Strong knowledge of networking, Unix/Linux, visualization, authentication, cryptography. Must be fullyconversant up and down the technology stack. Proven expertise in building a defense in depth infrastructure security architecture that include security controls across the technology stack.
  • Must have solid knowledge and understanding of securing all major OS
  • Demonstrated working knowledge of major cloud platforms, AWS, Azure, Salesforce, ServiceNow, etc.
  • Expert knowledge of operating system, application, network and database securities architectures
  • Proficiency in AppSec and web services security
  • Ability to facilitate communications to business stakeholders and interact effectively with all levels of management.
  • Ability to work in a highly collaborative environment and be comfortable with ambiguity.
  • Exceptional experience influencing collaborating and negotiating positive outcomes across stakeholders in highly matrixed organization.
  • Experience with Enterprise Architecture frameworks such as TOGAF, DoDAF, FEAF etc.
  • Excellent verbal and written communications skills
  • Applicable security certification desired CISSP, CEH, GSEC or CSSLP or advanced degree in InfoSec
  • Prior Financial Services and consulting experience a plus