Sr. Solutions Architect (DevSecOps) II (6444)

About The Position

Requirements

• Active TS/SCI Clearance with CI poly
• 7+ years of engineering with hands-on experience securing containerized/Kubernetes environments (OpenShift preferred).
• 3 years of experience with DevSecOps practices, CI/CD pipelines, and other automation tools (e.g., Jenkins, GitLab CI/CD, Artifactory, SonarQube, and Prisma Cloud).
• 3 years of experience in cloud engineering (AWS Preferred), with expertise in designing, implementing, and managing advanced cloud solutions
• Strong experience with designing and building implementations of required security controls; and implementing continuous monitoring and auditing of solutions for compliance with security controls.
• Strong experience in managing and mentoring cybersecurity analysts and engineers.
• Strong experience in implementing security controls from government regulatory frameworks and security standards (e.g., NIST SP 800-53, RMF, ICD 503, FISMA, FedRAMP).
• Demonstrated experience implementing controls for cloud, container, and/or DevSecOps services and solutions from IL5 to IL6+ environments.
• Experience with log aggregation and analysis tools (e.g., Splunk), such as performing querying and analysis of aggregated logs to identify security-relevant anomalies or risks.
• Experience performing periodic (Daily, Weekly, Monthly) security checks to support continuous monitoring aligned with the NIST Risk Management Framework
• Experience with incident response, security incident handling, and forensic analysis techniques.
• Effective communication skills, with the ability to convey complex technical concepts to both technical and non-technical stakeholders.
• CISSP or equivalent certification to support DoD 8140 requirements.
• Bachelor's degree in Computer Science, Cybersecurity, or a related field.

Responsibilities

• Serve as a Platform Engineer for containerized environments, service mesh technologies and microservices with cybersecurity requirements as the primary consideration.
• Advise both strategic and design priorities for various platform technologies and tools.
• Provide leadership and guidance to a cross-functional team of engineers and cyber security professionals who support the management of security controls for cloud based services, including cloud brokering, DevSecOps tools and containerized workloads solutions.
• Develop effective and sustainable solutions to monitor network traffic, system logs, and security alerts to detect and respond to potential security incidents within the platform.
• Support the team to analyze and investigate anomalies and security breaches, assess threat intelligence feeds, conduct threat analysis, taking appropriate actions to mitigate risks and vulnerabilities.
• Collaborate with other platform engineers and developers among other cross-functional teams, to establish, embed, and enforce security policies, standards, and procedures throughout the system lifecycle.
• Support the team’s requirement to perform security assessments, implement incident response plans and recommend mitigations.
• Maintain thorough and accurate documentation of security architecture processes, control implementation procedures, configurations, and continuous monitoring strategies.
• Prepare detailed reports on security findings, incidents, and actions taken.

Benefits

• Health, dental, and vision insurance
• 401(k) retirement plan with company match
• Paid time off (PTO) and holidays
• Parental Leave and dependent care
• Flexible work arrangements
• Professional development opportunities
• Employee assistance and wellness programs