Government and Public Sector - Service Delivery Center - Cybersecurity Cloud Architect

About The Position

Requirements

• Working knowledge of security frameworks and standards such as ISO 27001/2, PCI DSS, NIST 800-53, NIST CSF and the cybersecurity laws and regulations such as FISMA
• Ability to produce high-quality work products within expected timeframes
• Ability to interface with app development teams across time zones and drive engagements to completion
• Leadership experience
• Bachelor's degree in a related field
• A minimum of 3 years of related work experience
• Proficiency in network security and security controls (firewalls, IDS/IPS, encryption, access management
• Experience with ServiceNow and AuditBoard
• Experience documenting security architecture, experience with cybersecurity architecture and design
• Familiarity with security frameworks and technologies
• Must be able to obtain and maintain a Secret-level clearance or higher
• Cybersecurity assessments
• IT and cybersecurity policies, standards, procedures and controls
• Cybersecurity strategies and roadmaps
• Cybersecurity awareness and training
• Cybersecurity metrics and reporting
• Cybersecurity organization design and implementation
• Cybersecurity and risk management solution design and implementation (e.g. SNOW IRM, Archer GRC, RiskLens, Azure Security Center, etc.)
• Federal RMF solution operations (e.g eMass CSAM, Xacta, etc.)
• Cybersecurity and IT architecture experience (e.g. cloud security architect, security architect)
• Flexibility to travel up to 20%

Nice To Haves

• CISSP, CISM, CISA, CIPT, CIPM, CIPP CRISC or other relevant certification
• Prior experience in a service delivery center or similar environment
• AWS certification

Responsibilities

• Design and assess security architecture for technologies such as SaaS, PaaS, laaS, AI/ML, and Zero Trust Architecture (ZTA)
• Develop and implement application and cloud security architectures, primarily in AWS as well as Azure and Oracle
• Ensure compliance with cybersecurity frameworks including NIST 800-53, NIST 800-171, OWASP, CIS, STIG, SOX, CMMC and DFAR requirements
• Conduct network security assessments, focusing on ZTA, secure connectivity (Firewall Ingress/Egress), and data encryption, and key management
• Manage workload independently and escalate issues proactively; Collaborate directly with Product Owners to explain technical architecture requirements and address any related questions
• Effectively lead and motivate service delivery center team who support technology consulting engagements and provide technical leadership with the SRC&R service operations and delivery
• Provide guidance and direction to the on-site GPS SRC&R consultants in identifying process improvements, including junior staff members, enhancing existing SRC&R solutions and operating SRC&R processes as required
• Assess cybersecurity controls, programs and strategies using our proprietary framework and industry frameworks
• Operate SRC&R solutions based upon engagement defined policies and procedures
• Cybersecurity measurements and monitoring development and operations
• Cybersecurity strategy and roadmap development
• NIST Risk Management Framework and Assessment and Authorization enhancement, operations and governance
• Cybersecurity focused Supply Chain Risk Management and/or Third-Party Risk management operations, assessment and enablement
• Drive high-quality work products within expected timeframes in a fast-paced work environment
• Monitor progress and manage risk while ensuring stakeholders are kept informed about progress and expected outcomes
• Use knowledge of industry trends to identify engagement and client service issues and communicate this information to the on-site engagement team through written correspondence and verbal presentations.
• Stay informed of current Cybersecurity industry trends relevant to the services being delivered

Benefits

• We offer a comprehensive compensation and benefits package where you’ll be rewarded based on your performance and recognized for the value you bring to the business.
• The base salary range for this job in all geographic locations in the US is $73,100 to $132,900.
• The base salary range for New York City Metro Area, Washington State and California (excluding Sacramento) is $87,600 to $151,400.
• Individual salaries within those ranges are determined through a wide variety of factors including but not limited to education, experience, knowledge, skills and geography.
• In addition, our Total Rewards package includes medical and dental coverage, pension and 401(k) plans, and a wide range of paid time off options.
• Under our flexible vacation policy, you’ll decide how much vacation time you need based on your own personal circumstances.
• You’ll also be granted time off for designated EY Paid Holidays, Winter/Summer breaks, Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being.