Security Architecture / Engineering Lead

Development InfoStructure

$110K — $130K *
Information Technology
5 - 7 years of experience
Job Overview by Ladders

Qualifications

  • Bachelor's degree in Computer Science, Engineering, Cybersecurity, or related field (or equivalent experience)
  • Minimum 7 years in enterprise security infrastructure engineering and administration
  • Proven experience with Zero Trust architectures in hybrid environments
  • CISSP or equivalent senior security certification required
  • Hands-on experience with SIEM, EDR, NGFW, cloud security, DLP, PAM, IDS/IPS technologies
  • Familiarity with OMB M-22-09 federal requirements

Responsibilities

  • Operate and maintain enterprise security tools and infrastructure
  • Maintain a minimum of 95% operational availability for cybersecurity systems
  • Configure, tune, and troubleshoot security devices
  • Design and implement Zero Trust security solutions per OMB M-22-09
  • Produce Zero Trust Security Architecture Reference Documents
  • Support contingency planning for disaster recovery of security systems
  • Deliver System Availability and Uptime Reports

Benefits

  • Flexibility to work primarily offsite with occasional required travel
  • Core hours are Monday-Friday, 7:00 AM - 6:00 PM EST
  • After-hours support for emergency incidents as needed
  • Opportunity to engage with advanced cybersecurity tools and architecture
  • Contribution to federal cybersecurity initiatives and standards
Full Job Description
Job Overview
The Security Architecture / Engineering Lead serves as the technical leader for the enterprise cybersecurity tool stack under the Information Security Program Support Services (ISPSS) effort supporting the NIH Office of the Director, Office of Information Technology (OD OIT), responsible for operating and engineering security tools at a minimum 95% monthly operational availability and advancing the Zero Trust architecture across on-premises and cloud environments. This role drives execution across SIEM, EDR, next-generation firewall, cloud security, DLP, PAM, and IDS/IPS operations, security engineering, and Zero Trust implementation under OMB M-22-09 in close coordination with NIH/OD OIT leadership.

This is a full-time position with work performed primarily offsite, though travel to NIH/OD facilities in the Bethesda, MD area will be required on an as-needed basis. Core hours are Monday-Friday, 7:00 AM - 6:00 PM EST, and after-hours support for emergency incidents will be required as needed by NIH/OD. Position is contingent upon award and client approval.

Primary Duties
Operate & Engineer Security Infrastructure
  • Operate, manage, deploy, and maintain enterprise security tools (SIEM, EDR, NGFW, cloud security, DLP, PAM, IDS/IPS) and supporting infrastructure
  • Maintain a minimum 95% monthly operational availability for contractor-managed cybersecurity systems and services
  • Configure, tune, patch, and troubleshoot security devices; update sensors and signatures in support of monitoring and incident response
  • Identify infrastructure gaps and recommend improvements to visibility and security
Lead Zero Trust Architecture
  • Design, document, and implement Zero Trust security solutions across on-premises and cloud environments per OMB M-22-09
  • Produce Baseline Zero Trust Security Architecture Reference Documents and the Privileged Access SOP
  • Provide enhanced incident response capabilities as part of Zero Trust architectures
Ensure Reliability & Documentation
  • Provide contingency planning support for emergency restoration and disaster recovery of security systems
  • Perform and verify backups; manage the Security Artifact / ATO Tracking System
  • Maintain configuration management data, maintenance logs, and architecture documentation
  • Deliver System Availability & Uptime Reports and gaps-remediation reporting


Required Qualifications

Education & Experience
  • Bachelor's degree in Computer Science, Engineering, Cybersecurity, or a related field (or equivalent experience)
  • Minimum 7 years engineering and administering enterprise security infrastructure
  • Demonstrated experience designing and implementing Zero Trust architectures in hybrid environments
Required Certifications
  • CISSP (or comparable senior security certification)
  • Relevant OEM/platform certifications for the deployed toolset are a plus
Technical Skills
  • Hands-on experience with enterprise SIEM, EDR, NGFW, cloud security, DLP, PAM, and IDS/IPS technologies
  • Cloud and on-premises security engineering; familiarity with WAFs and network security
  • Understanding of OMB M-22-09 and federal Zero Trust requirements
Leadership Capabilities
  • Ability to brief technical and executive audiences on security-engineering decisions
  • Strong documentation and cross-team coordination skills


Preferred Qualifications
  • Experience supporting NIH/HHS or federal hybrid (on-prem + cloud) environments
  • Experience with NIH STRIDES or comparable cloud programs
  • Automation/scripting for security operations

Clearance
  • Must be able to obtain and maintain the NIH/OD/OIT required clearance level and complete all suitability/onboarding requirements

Salary Range
  • $110,000 - $130,000

Similar Jobs

More Jobs at Development InfoStructure

More Information Technology Jobs

Find similar Security Architecture / Engineering Lead jobs: