Cybersecurity Architect Job at CVP in Bethesda

CVP is an award-winning healthcare and next-gen technology consulting firm recognized for excellence and innovation in the solutions we have provided our clients across healthcare, national security, and the public sector. We are seeking a Cybersecurity Architect to join our team of experts tasked with securing the critical networks and systems our clients depend on. Responsibilities Designs, architects, maintains, configures and troubleshoots cyber security systems. Coordinates cyber security audits and communicates results. Pursues necessary changes of critical tasks identified from audits. Develops, documents and communicates cyber security policies and procedures. Build architectures and frameworks that reflect the organization’s current state as well as future goals and objectives. Capture and integrate essential system capabilities or business functions required for partial or full system restoration after a catastrophic failure event. Collaborate and seek continuous consultation with other analysts and experts—both internal and external to the organization—to leverage analytical and technical expertise. Communicate complex information, concepts, or ideas in a confident and well-organized manner through verbal, written, and/or visual means. Define appropriate levels of system availability based on critical system functions and ensure that system requirements identify appropriate disaster recovery and continuity of operations requirements to include any appropriate fail-over/alternate site requirements, backup requirements, and material supportability requirements for system recover/restoration. Design the integration of hardware and software solutions. Develop a system security context, a preliminary system security Concept of Operations (CONOPS), and define baseline system security requirements in accordance with applicable cybersecurity requirements. Develop enterprise architecture or system components required to meet organization needs. Document and update as necessary all definition and architecture activities. Document how the implementation of a new system or new interface between systems impacts the current and target environment including but not limited to security posture. Ensure acquired or developed system(s) and architecture(s) are consistent with organization's cybersecurity architecture guidelines. Evaluate security architectures and designs to determine the adequacy of security design and architecture proposed or provided in response to requirements contained in acquisition documents. Execute technology integration processes. Identify and prioritize critical business functions in collaboration with organizational stakeholders. Identify cybersecurity and privacy issues that stem from connections with internal and external customers and partner organizations. Integrate results regarding the identification of gaps in security architecture. Provide input to the Risk Management Framework process activities and related documentation (e.g., system life-cycle support plans, concept of operations, operational procedures, and maintenance training materials). Write and publish cyber defense recommendations, reports, and white papers to appropriate management and stakeholders. Write detailed functional specifications that document the architecture development process. Maintain appropriate technical and procedural documentation. Complete projects, tasks, and associated deliverables on time and with quality. Qualifications Must be eligible to obtain a Public Trust clearance 4-year college degree in Computer Science or related field and 2 years’ experience or 5 years’ experience in lieu of a college degree. Experience demonstrating strong analytical, troubleshooting and problem-solving skills for cybersecurity. Excellent communication skills, both written and oral. Knowledge of NIST and FISMA guidelines. Certified Information System Security Professional (CISSP). Eight (8) years of experience in engineering, with a focus on cybersecurity. NIH experience. Desired Skills Any of the following: Certified Information Security Architect Professional (CISSP-ISSAP) Global Information Assurance Certification (GIAC) GDSA: GIAC Defensible Security Architecture GSLC: GIAC Security Leadership GISP: GIAC Information Security Professional GSTRT: GIAC Strategic Planning, Policy, and Leadership GSE: GIAC Security Expert GCIP: GIAC Critical Infrastructure Protection Knowledge of applicable laws, statutes (e.g., in Titles 10, 18, 32, 50 in U.S. Code), Presidential Directives, executive branch guidelines, and/or administrative/criminal legal guidelines and procedures. #J-18808-Ljbffr