Senior Security Architect

DirectViz Solutions, (DVS) is a rapidly growing government contractor that provides strategic services that meet mission IT needs for government customers. DVS provides innovative information technology solutions to government clients through the knowledge and expertise of our dedicated employees. DVS is an employee-centric employer that provides competitive compensation, comprehensive medical plans, 401k match, PTO accrual, professional development reimbursement, corporate-funded technology certifications, and employee recognition and appreciation programs.

At DVS, we recognize that our employees are our number one resource. If you are a problem-solving people-person, apply today!

Summary: The Senior Security Architect will support the Information Security program by overseeing the security of various information systems, ensuring alignment with government standards, and maintaining robust documentation and risk management protocols. This role involves working with Information System Security Officers (ISSOs) to manage, update, and enforce security policies, privacy assessments, and system security plans, ensuring compliance and risk mitigation. The Senior Security Architect will also drive the establishment and maintenance of a Cyberthreat Dashboard, the Enterprise Security Operations Center (ESOC), and the Vulnerability Management Program.

Key Responsibilities:

• Security Documentation & Compliance:
  • Manage and maintain comprehensive security documentation for government systems.
  • Create and update privacy assessments, system security plans, and other documentation to ensure compliance.
  • Oversee policies and procedures for security, manage associated risks, and track training compliance.
• Annual Security Control Assessments (SCAs):
  • Conduct SCAs for approximately 63 systems, testing one-third of security controls annually.
  • Address and resolve identified security issues, ensuring new systems undergo thorough assessment.
• Incident Response & Cyberthreat Management:
  • Operate the Department of Labor's 24/7 Computer Security Incident Response Capability (CSIRC).
  • Train analysts on incident response procedures, focusing on incidents involving Personally Identifiable Information (PII).
  • Build and maintain a Cyberthreat Dashboard to report on threat activities and enhance situational awareness.
• Enterprise Security Operations Center (ESOC):
  • Establish and maintain security tools and processes for ESOC.
  • Monitor network activities for unauthorized access and potential security breaches.
  • Support the Office of the Chief Financial Officer (OCFO) by safeguarding financial systems and ensuring adherence to accounting standards.
• Vulnerability Management Program:
  • Lead the Vulnerability Management Program to identify and address security weaknesses.
  • Manage proactive monitoring of applications, databases, and other IT systems, ensuring compliance with security, accounting standards, and accessibility requirements.

Qualifications:

• Education:
  • Bachelor's degree in Computer Science, Information Management (IM), Information Technology, Engineering, or a related field; or equivalent experience.
  • Minimum of 6 years in a technical role, or 4 years in IT solutions at the senior management level (preferred).
  • Active Public Trust or the ability to obtain one.
• Certifications:
  • Certified Information Systems Security Professional (CISSP) - mandatory.
  • CISSP - Information Systems Security Architecture Professional (ISSAP) concentration - mandatory
  • Project Management Professional (PMP) from the Project Management Institute - mandatory
  • Information Technology Infrastructure Library (ITIL) 4 Foundation certification - mandatory
• Clearance: Public Trust or higher.

Additional Skills:

• Proven experience with information security documentation, compliance assessments, and incident response.
• Strong understanding of government standards and best practices in cybersecurity.
• Effective leadership and collaboration skills, with the ability to train and mentor team members.

Physical and Mental Qualifications:

• Be able to maintain awareness during scheduled working hours.
• Prolonged periods sitting or standing at desk and working on a computer (mouse and keyboard)
• Able to lift up to 15 pounds.
• Excellent verbal and written communication; good command of the English language
• Execute tasks independently and work as a team.
• Learns and memories routine tasks.
• Strong organizational, grammar, business correspondence, and self-management skills
• Candidates must be able to perform the essential functions of the position satisfactorily. If requested, reasonable accommodation will be provided for employees with disabilities.
• DVS retains the right to change or assign other duties to this position.

DirectViz Solutions, LLC (DVS) is an equal opportunity employer and prohibits discrimination and harassment against any employee or applicant for employment because of race, color, sex (including pregnancy), age, gender identity, creed, religion, national origin, sexual orientation, marital status, genetic information, disability, political affiliation, protected veteran status, or any other status protected by federal, state or local law.

DVS has a zero-tolerance policy for harassment, threats, coercion, discrimination, and intimidation. Employees may file a complaint or exercise any right protected by Executive Order 11246, Section 503 of the Rehabilitation Act of 1973, as amended, Section 4212 of the Vietnam Era Veterans Readjustment Assistance Act of 1974, or the Veterans Employment Opportunities Act of 1998.