An employer in the Greenville, TX market is looking for a Security Architect to join their team. The role of a Security Architect is akin to that of an Infrastructure Architect, but with a specialized emphasis on cybersecurity.
Key Responsibilities:
Trend Analysis and Threat Detection: Analyze and understand emerging trends in threats and threat detection.
Strategic Roadmap Development: Set strategic roadmap objectives for the program based on threat prevention.
Cybersecurity Baseline Requirements: Define the cybersecurity baseline requirements for the program and support funding activities for these requirements.
Legacy System Adaptation: Adapt legacy implementations to address current and emerging threats, ensuring an appropriate security posture.
Security Deployment Guidelines: Establish guidelines for the efficient and effective deployment of security practices within a DoD AF information management system.
Body of Evidence Guidelines: Create guidelines for the efficient and effective collection and generation of the Body of Evidence necessary to attain an Authority to Operate (ATO) aligned with DoD and AF regulations, with regular reviews and updates.
Software Update Guidelines: Set update guidelines for commercial and open-source software and third-party packages to maintain a current security posture, including regular reviews and approvals of software updates and patches.
Collaboration with Compliance and Vulnerability Teams: Collaborate closely with the compliance and vulnerability teams to establish program benchmarks and standards that meet delivery milestones, with regular communication and coordination meetings to ensure alignment and progress.
Training and Awareness Programs: Provide training and awareness programs for the Engineering organization and relevant functions to promote a security-conscious culture.
Continuous Improvement Process: Implement a continuous improvement process for security to enhance efficiency and reduce costs.
Cross-Departmental Communication: Facilitate cross-departmental communication to address security concerns and implement best practices.
Third-Party Agreements: Ensure that third-party agreements, such as sub-contracts, include appropriate security requirements and compliance measures. For example, specify the minimum OS or container build environment and include Fortify, Tivey, and Nessus scan results as contract deliverables.
We are a company committed to creating inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity employer that believes everyone matters. Qualified candidates will receive consideration for employment opportunities without regard to race, religion, sex, age, marital status, national origin, sexual orientation, citizenship status, disability, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to
HR@insightglobal.com. The EEOC "Know Your Rights" Poster is available
here.
To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy:
https://insightglobal.com/workforce-privacy-policy/ .
Bachelors degree in Information Systems or related field
10+ years of experience in the cyber security information systems industry
Secret Clearance, with ability to obtain a Top Secret and willingness to obtain a Polygraph
Certified Information Systems Security Professional (CISSP)
Experience in administering and managing Tenable Security Center in a complex environment
In-depth understanding of ACAS (Assured Compliance Assessment Solution) requirements and best practices for vulnerability management and compliance
Experience with risk management framework based on NIST 800-53 documentation
Ability to manage ATO (Authority to Operate) processes
Solid understanding of networking
Experience with Trend Analysis and Threat Detection
Ability to set strategic roadmap objectives
Experience with Xacta
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.