Position Title:  Enterprise Security Architect       

Location: Washington, DC

Security Clearance Type: Top Secret

Work Status: US Citizen

Position Status: Full-time

Compensation:  90K

JOB DESCRIPTION:

This is a senior-level position within the Vanguard program's Enterprise Security Office (ESO) acting as a senior security engineer directly providing services to the Vanguard program. Directly providing services includes directly supporting the ESO and being attached to various projects and other Vanguard offices to provide security-specific functions, guidance, and expertise.

This position focuses on strategy, design, and implementation of security systems that support security policy and business needs; providing technical expertise necessary to support assessments and tests; and designs or configurations that mitigate identified risks.

 Responsibilities include:

• Acting as a team lead for the Security Engineering and Architecture Team within ESO, with specific responsibilities
• Management of staff allocation across services
• Performance management of staff
• Training and development management
• Cross-service information sharing within the team
• Supports the development, documentation, and maturation of the enterprise security architecture in support of customer and stakeholder mission, strategy, processes, and business needs
• Assesses current and proposed systems for compliance with enterprise architecture, security policies, and standards
•  Identifies security architecture gaps, vulnerabilities, and risks
• Develops solutions to address security architecture gaps, and new or updated requirements
• Evaluates emerging technology such as social media and mobile computing and makes recommendations against security policy and architecture
• Collaborates closely with engineering and operations on all tasks, and with customer stakeholders as appropriate
• Participates in technical meetings such as change control boards and technical review boards

 Required Education/Skills:

• Bachelor’s degree in an information security or engineering field, or equivalent experience; advanced degree preferred    
• 12+ years’ experience in an information security or engineering field, including 7 years acting in a technical leadership role directing the use of analysis, design methodologies, and/or design tools in the development and implementation of large projects
• Experience as a security engineer or systems engineer including systems architecture, requirements analysis, integration, and process execution and evaluation
• Experience with engineering development lifecycle and information security engineering
• Experience with evaluating vulnerability bulletins such as US-CERT bulletins, and providing recommendations in response
• Experience with IT governance and operations
• Interpersonal skills including the ability to collaborate effectively, self-awareness, and excellent written and oral communications
  
  

Desired Education/Skills:

ITIL(r) Planning, Protection & Optimization (PPO) certification

Familiarity with service-oriented architecture

Familiarity with the Federal Enterprise Architecture Framework(FEAF)

Familiarity with DoS environment (data and voice networks, IT security systems, policies and procedures), Foreign Affairs Handbooks (FAHs), Foreign Affairs Manuals (FAMs)

One of the following certifications:

• ISACA Certified Information Systems Auditor (CISA)
• GIAC Security Expert (GSE)
• GIAC Certified Incident Handler (GCIH)
• SCP Security Certified Network Architect (SCNA) (ISC)2
• Certified Information Systems Security Professional (CISSP)
•  GIAC Security Leadership (GSLC)
•  ISACA Certified Information Security Manager (CISM)