Responsible for information security technical and analytical projects in accordance with client policies and regulations, Intelligence Community Directive 503, and system life cycle best practices Project activities include guidance in design, development, testing, and deployment of client information systems based on analysis of the client’s current and planned information security architecture to identify potential vulnerabilities, and develop security measures to safeguard client information
Develops cyber defense architecture documents that define a baseline architecture, support capability gap analysis, and provide guidance for developing technology roadmaps Knowledgeable of tools that support cybersecurity functions like network mapping, vulnerability analysis, endpoint detection and response, digital rights management, and multifactor authentication
Additional duties and responsibilities include:
- Strong understanding of IT infrastructure and related disciplines, including networking, storage, backup server platforms, desktop environments, databases, middleware, monitoring tools and techniques, and security
- Ensure that system baselines and configuration management items are properly maintained through a rigorous change control process, including security event monitoring policies
- Maintain current knowledge of latest trends and technologies and ensure that the client’s cyber defense protections are adequate and effective.
- Recommend new technologies and innovations that will enhance the client’s cyber security posture, improve performance, or reduce life cycle costs.
Active TS/SCI Polygraph Bachelor of Science degree in Information Technology, IT Security, Network Systems Technology or related field or equivalent experience plus eight (8) to twelve (12) years of directly related experience or any equivalent combination of education, experience, training and certifications.
Minimum of 8 years of progressively more responsible experience in IT architecture with emphasis in systems engineering, design and implementation, to include experience in creating architecture frameworks and associated artifacts related to cyber security engineering and network engineering
Knowledge and experience in operations and maintenance and configuration management controls and their applications