CVP
CVP is hiring: Cybersecurity Architect in Bethesda
CVP, Bethesda, MD, United States, 20811
CVP is an award-winning healthcare and next-gen technology consulting firm recognized for excellence and innovation in the solutions we have provided our clients across healthcare, national security, and the public sector.
We are seeking a Cybersecurity Architect to join our team of experts tasked with securing the critical networks and systems our clients depend on.
Responsibilities
- Designs, architects, maintains, configures and troubleshoots cyber security systems.
- Coordinates cyber security audits and communicates results.
- Pursues necessary changes of critical tasks identified from audits.
- Develops, documents and communicates cyber security policies and procedures.
- Build architectures and frameworks that reflect the organization’s current state as well as future goals and objectives.
- Capture and integrate essential system capabilities or business functions required for partial or full system restoration after a catastrophic failure event.
- Collaborate and seek continuous consultation with other analysts and experts—both internal and external to the organization—to leverage analytical and technical expertise.
- Communicate complex information, concepts, or ideas in a confident and well-organized manner through verbal, written, and/or visual means.
- Define appropriate levels of system availability based on critical system functions and ensure that system requirements identify appropriate disaster recovery and continuity of operations requirements to include any appropriate fail-over/alternate site requirements, backup requirements, and material supportability requirements for system recover/restoration.
- Design the integration of hardware and software solutions.
- Develop a system security context, a preliminary system security Concept of Operations (CONOPS), and define baseline system security requirements in accordance with applicable cybersecurity requirements.
- Develop enterprise architecture or system components required to meet organization needs.
- Document and update as necessary all definition and architecture activities.
- Document how the implementation of a new system or new interface between systems impacts the current and target environment including but not limited to security posture.
- Ensure acquired or developed system(s) and architecture(s) are consistent with organization's cybersecurity architecture guidelines.
- Evaluate security architectures and designs to determine the adequacy of security design and architecture proposed or provided in response to requirements contained in acquisition documents.
- Execute technology integration processes.
- Identify and prioritize critical business functions in collaboration with organizational stakeholders.
- Identify cybersecurity and privacy issues that stem from connections with internal and external customers and partner organizations.
- Integrate results regarding the identification of gaps in security architecture.
- Provide input to the Risk Management Framework process activities and related documentation (e.g., system life-cycle support plans, concept of operations, operational procedures, and maintenance training materials).
- Write and publish cyber defense recommendations, reports, and white papers to appropriate management and stakeholders.
- Write detailed functional specifications that document the architecture development process.
- Maintain appropriate technical and procedural documentation.
- Complete projects, tasks, and associated deliverables on time and with quality.
Qualifications
- Must be eligible to obtain a Public Trust clearance
- 4-year college degree in Computer Science or related field and 2 years’ experience or 5 years’ experience in lieu of a college degree.
- Experience demonstrating strong analytical, troubleshooting and problem-solving skills for cybersecurity.
- Excellent communication skills, both written and oral.
- Knowledge of NIST and FISMA guidelines.
- Certified Information System Security Professional (CISSP).
- Eight (8) years of experience in engineering, with a focus on cybersecurity.
- NIH experience.
Desired Skills
- Any of the following:
- Certified Information Security Architect Professional (CISSP-ISSAP)
- Global Information Assurance Certification (GIAC)
- GDSA: GIAC Defensible Security Architecture
- GSLC: GIAC Security Leadership
- GISP: GIAC Information Security Professional
- GSTRT: GIAC Strategic Planning, Policy, and Leadership
- GSE: GIAC Security Expert
- GCIP: GIAC Critical Infrastructure Protection
- Knowledge of applicable laws, statutes (e.g., in Titles 10, 18, 32, 50 in U.S. Code), Presidential Directives, executive branch guidelines, and/or administrative/criminal legal guidelines and procedures.