Position Summary BayFirst Solutions, a subsidiary of Versar, Inc., is seeking a Senior Security Architect to support the DHS Homeland Security Enterprise Network (HSEN) within the Office of the Chief Information Officer (OCIO). This candidate will be a member of a high functioning team supporting cybersecurity countermeasures to strengthen DHS enterprise and HQ networks. This candidate will work directly with team of network and security engineers, data center specialists, industry vendors, and DHS stakeholder groups that includes 20+ DHS Components. This effort is responsible for providing Security Engineering and Architecture Support for the following HSEN services along with to include:
- Maintaining and improving network and security capabilities to include modernization and emerging technologies
- Providing technical support for the design, build, and upgrade of network and security systems
- Ensuring that the network security architecture is in compliance with security standards and complies with federal and DHS architectural guidelines
- Providing performance engineering and network management support to include monitoring using the tools and technologies provided by DHS IT Operations.
- Ensuring the security tools and infrastructure are available and operational from the perimeter down to the endpoint and data itself.
The candidate's core responsibilities will be but not limited to:
- Maintaining and maturing security tool architecture for security operations monitoring
- Building and evolving a three-year security architecture roadmap based on DHS requirements
- Developing and maintaining design documentation for team of Security Engineers, Architects, and Tools Engineers.
- Design and develop cyber security technologies along with integration of new architectural features into existing infrastructures while maintaining the integrity and security of enterprise-wide cyber systems and networks.
Additional Duties / Responsibilities
- Support the integration of security processes, controls, and technologies into technical solutions using standard solutions, and a consistent approach in design, development, and testing.
- Correct anomalies identified during periodic security testing, while ensuring certification and accreditation
- Provide security engineering and SME support for NOSC hardware, software, and networking technologies
- Conduct market research, product evaluation, prototyping, integration, development, deployment, recapitalization, operations, and maintenance support for a variety of NOSC software and computing and networking technologies
- Orchestrate the operations of all NOSC software, and computing and networking technologies
- Perform O&M on NOSC software tools and computing and networking infrastructure devices and systems
- Create and maintain standard NOSC Tool Engineering Design Documentation and Test Plans
- Create diagrams encompassing the entire "end-to-end" configuration and flow among all solution elements
- Test security features of point products being acquired by DHS stakeholders
- Implement and maintain a robust capacity management plan for each of the security tools
- Design, implement and maintain continuity of operations for the security tool systems
- Design implement and maintain custom signature and security feeds to the NOSC tools in addition to integration to the government's security information and event management (SIEM) system for active monitoring and event retention
- Provide application support to the government to install event forwarders on non- security devices
- Develop and maintain Concept of Operations (CONOPS), System Design Document (SDD), and Role Based Access Control (RBAC) documentation
- Develop and maintain Dataflow Diagram of the systems, including ports and protocols, IP addresses, network segmentation
- Deploy and integrate the components of the security system in accordance to the detailed Implementation Plan
- Provide architecture advisement to the government including, but not limited to, network security and engineering, active directory design and implementation, application integration, and system hierarchy.
- Provide subject matter expertise on Government identified security technologies and serve as a subject matter resource
- Provide system support in the event of an emergency should application administrators require assistance
- Create and deploy custom reports and dashboards (e.g., Splunk, Swimlane, Grafana, Tenable.sc, etc.)
- Maintain and improve security monitoring and administration tools portfolio to include modernization and emerging technologies
- Maintain compliance with business operational requirements to include a disaster recovery strategy for the security tools
- Provide recommendations for configuration management, and check for compliance with DHS guidelines
Minimum Qualifications / Requirements
- At least six (6) years of professional experience in with cybersecurity and security solution architecture, systems analysis, design, or development
- U.S. Federal government consulting experience preferred
- Must be able to work with minimal direction on a wide range of projects and tasks that help mature security processes, tools, and operations
- Past experience within the Department of Homeland Security or other government agency is preferred
- U.S. citizenship required and eligibility for a DHS EoD is required to be considered for this position
Education
- BA / BS (relevant field); relevant experience may be a substitute for education.
- Advanced degree(s) beyond the minimum degree requirement in a relevant field may be considered for additional experience.
Software/Hardware Desired
- Experience with Tools such as Swinlane and Splunk a plus
|