Chief Security Architect

Employer
JobLeads
Location
Silver Spring, MD
Posted
Jul 06, 2018
Closes
Jul 16, 2018
Industry
Security
Hours
Full Time
As a trusted systems integrator for more than 50 years, General Dynamics Information Technology provides information technology (IT), systems engineering, professional services and simulation and training to customers in the defense, federal civilian government, health, homeland security, intelligence, state and local government and commercial sectors.With approximately 32,000 professionals worldwide, the company delivers IT enterprise solutions, manages large-scale, mission-critical IT programs and provides mission support services.GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.General Dynamics IT has an opening for a Chief Security Architect with strong communication and technical skills that will support the designs and defines enterprise architecture for applications and infrastructure in support of the Department of Commerce Enterprise Security Operations Center (ESOC) and the NOAA Cyber Security Center (NCSC). The ESOC provides cybersecurity monitoring and situational awareness across the DOC, and in the future will likely expand to provide security services to other agencies in the DOC. The NCSC provides cybersecurity support across four major functional support groups; the NOAA Security Operations Center (SOC), NOAA Computer Incident Response Team (N-CIRT), System Administration Staff (SAS), and Enterprise Security Solutions (ESS). The candidate must be a US Citizen and be able to obtain Department of Commerce vetting clearance. Specific roles & responsibilities for the position include but not limited to the following: * Enhances security team accomplishments and competence by planning delivery of solutions; answering technical and procedural questions for less experienced team members; teaching improved processes; mentoring team members. * Determines security requirements by evaluating business strategies and requirements; researching information security standards; conducting system security and vulnerability analyses and risk assessments; studying architecture/platform; identifying integration issues; preparing cost estimates. * Plans security systems by evaluating network and security technologies; developing requirements for local area networks (LANs), wide area networks (WANs), virtual private networks (VPNs), routers, firewalls, and related security and network devices; designs public key infrastructures (PKIs), including use of certification authorities (CAs) and digital signatures as well as hardware and software; adhering to industry standards. * Implements security systems by specifying intrusion detection methodologies and equipment; directing equipment and software installation and calibration; preparing preventive and reactive measures; creating, transmitting, and maintaining keys; providing technical support; completing documentation. * Verifies security systems by developing and implementing test scripts. * Maintains security by monitoring and ensuring compliance to standards, policies, and procedures; conducting incident response analyses; developing and conducting training programs. * Upgrades security systems by monitoring security environment; identifying security gaps; evaluating and implementing enhancements. * Prepares system security reports by collecting, analyzing, and summarizing data and trends. * Updates job knowledge by tracking and understanding emerging security practices and standards; participating in educational opportunities; reading professional publications; maintaining personal networks; participating in professional organizations. * Enhances department and organization reputation by accepting ownership for accomplishing new and different requests; exploring opportunities to add value to job accomplishments.* 12+ years of experience in IT, cyber security, and/or other projects related to critical network infrastructure protection. Demonstrated oral and written communications skills. * 8+ years of current experience in cyber security system or solution design, engineering, evaluation, integration and/or deployment. * 5+ years of experience in managing enterprise-wide cyber security programs. * Research, advice, and present briefings on trends in cyber security in the Federal Government and in Industry. * Recommend and support implementation and execution of new programs in response to new and emerging national security initiatives; identify and recommend programmatic improvement opportunities. * Advise on the effective implementation of Department level cyber programs. * Direct experience of FISMA compliance requirements and risk management delivery principles and best practices. * Consistently challenge existing strategies and programs efforts to demonstrate relevance to established priorities * Possess a strong working knowledge of operational cybersecurity processes, procedures and best practices as practiced within the Federal government. * Must be able to communicate across multiple levels, including to Senior Executives. They must be able to provide context around briefings and to present a solid position. * Possess ability to present cyber approaches to stakeholders, including engineers and analysts, to gain the necessary engagement to support successful implementation of new technologies and enhancements to existing technologies. * Maintain both a tactical and long-term strategic outlook for Program needed capabilities and trends., * 15+ years of continuous and progressive hands-on experience with a Bachelor's Degree in Computer Science, Mathematics, Physics, Engineering or a related technical discipline. * 15-20 years of related information technology experience. * Certification(s) Required: CISSP