Security Architect
Apply on
Security Architect Senior Level
Task Area 4: National Security Systems (NSS) Risk Management and Compliance
Security Clearance Required:
- Top Secret and SCI Eligible
Certification Requirements:
- CISSP or CISM or CRISC or CCSP
Required Years of Experience:
- 8
Job Location:
- Hybrid, SCIF, TSA Headquarters 6595 Springfield Center Dr. Springfield, VA 22150
Education Requirement:
- Bachelor s degree in computer science or related field
Desired Skillset / Knowledge:
- Foundation and understand the capabilities of Security Architecture
- Abundant knowledge of scanning applications (Nessus)
- Apply STIGs
- Cloud
- Linux
- System Administrator background
- MS SQL
- Splunk
Job Description:
National Security System (NSS) assessment and analysis shall consist of cybersecurity
risk assessments, security control assessments, creation of Body of Evidence (BoE)
artifacts (e.g., Security Assessment Report (SAR)) in support of Risk Management
Framework (RMF) activities in accordance with DHS 4300B policy and guidance, system categorization coordination, and cyber risk recommendation reporting, in support of NSCD work products. The Contractor shall provide the monitoring and analysis services.
Responsibilities:
- Architecture and design documents. Document changes and create/update architecture and design documents.
- Procedures Documents. Develop procedures for the continuous monitoring of devices accessing DHS networks that are outside the scope of current manual and automated capabilities to ensure visibility of all systems.
- Trending and ad-hoc reports. Generate trending and ad-hoc reports as requested.
- Guidance documents and policy. Develop draft guidance and policy regarding virtual environments.
- Support current and future enhancements and transition of DHS CISOD tools and requirements. POC should be able to generate scripts, queries primarily in MS SQL & Splunk.
- Provide architecture advisement to the government including, but not limited to, network security and engineering, active directory design and implementation, application integration, and system hierarchy.
- Analyze continuous monitoring, configuration management, vulnerability management, asset management, software management and self-reported data to identify trends and anomalies cybersecurity performance and mitigation of risks.
- Create Security Impact Analysis Reports.
- Document technical meeting notes.
- Create presentation/briefs.
Additional Support:
- Prepare documents such as charters, agendas, presentations, and memorandum.
- Maintain distribution groups, points of contact lists, and group membership listings
- Publish messages and notifications to the DHS community
- Coordinate with the CISOD Business Offices to route and track communications with executives and HQ components.
- Create and maintain forms, document templates and a register for CISOD forms and templates which support cybersecurity activities throughout the department.
- Prepare, track, and provide status reports on data calls
- Develop, maintain, and update Standard Operating Procedures (SOPs), handbooks, ConOps and instructions for all internal processes.
- Keep up to date internal SOP/documentations of all processes at a location specified by the Federal Lead (SharePoint, Shared Folder, Knowledgebase, etc.).
- Generate meetings minutes as requested
- Follow and leverage the internal DHS processes to perform their duties.
- Create and deploy custom reports and dashboards, working with the government points of contact, to provide specific content to the government on a need by basis and as otherwise specified by the Federal Leads on a set frequency.
- Provide weekly and ad hoc reports summarizing the adherence to agreed-upon schedules.
- The report shall include detailed summaries of:
- length and number of delays
- recommendations for get-well plans
- Additionally, the reports shall summarize the work completed and milestones met to include metrics.
- Generate trending and ad-hoc reports as requested. Reporting includes extracting data from the CISOD databases, designing, developing, and implementing automated reports. Data being reported may represent subsets of the overall Performance reporting or new/unique data sets based on entire compliance data stored within the supporting tools
- Engage and support in planning and coordinating the various Working Group Meetings
- Provide guidance and recommendations to Federal SMEs on processes and projects.
- Provide customer service support to DHS Enterprise by responding and resolving DHS Helpdesk tickets.
- Support modernization of all Cybersecurity processes and methodologies to be employed across the Enterprise and MGMT
- Collaborate and coordinate successfully with other contract vendors and Government personnel.
- Respond to component questions via helpdesk tickets, Microsoft Teams messages, emails, and phone calls.
- Provide recommendations and feedback on the DHS policies
- Provide, develop, maintain, update, store, and distribute weekly/monthly/quarterly/ad-hoc reports, meeting minutes, user feedback as requested by the Federal Lead.
- Propose process improvements accordingly to Federal Lead.
- Support Cybersecurity process innovation and automation to support the new Cybersecurity processes and methodologies that will be developed in automated tools.
- Develop, update, maintain and provide training materials and resources to provide guidance to DHS Enterprise and MGMT on subject areas.
- Develop, maintain, update, store, and distribute Standard Operating Procedures for all routine activities to ensure standardization of activities and enable the transition of activities across members of the team
- Develop metrics and recommend improvements for tracking progress on cybersecurity subject areas and programs.
- Develop and maintain weekly Executive reports and PMR reports.
- Attend Working Groups, meetings and discussions and provide feedback and ideas for improvements.
- Develop unique Cybersecurity training materials and resources to provide guidance regarding process, documentation and understanding of responsibilities. This can be provided in-person, online or on a training platform like the Performance and Learning Management System (PALMS) or the Federal Virtual Training Environment (FedVTE).
- Develop trainings for users across HQ components based on the new changes recommended by DHS Management for this FY
- Develop and maintain Key Performance Indicators (KPI) and metrics to evaluate the performance and identify key areas of improvements in the subject areas or programs. Recommend changes to improve the quality and reduce the level of effort and elapsed time required for approved metrics weekly to the Federal Lead.
- Develop metric reports to evaluate Cybersecurity Risk management and
- Scorecard progress on weekly/monthly basis.
- Collaborate with other teams to ensure that Cybersecurity processes are effectively maintained and tracked.
- Work with DHS Enterprise to identify, develop, and implement Cybersecurity programs best practices, and general guidance for use across the federal government.
- Support current and future enhancements and transition of DHS CISOD tools and requirements.