Jobs · Engineering · Texas

Cyber Senior Solutions Architect

Pantex Plant · Amarillo, TX · 2 wk ago
EngineeringFull-time

What You'll Do

As a Senior Solutions Architect with a dedicated cybersecurity specialization, you will be a pivotal leader, shaping the future of our enterprise security posture. In this critical role, you will ensure that robust cybersecurity controls are strategically integrated into all designs for applications, platforms, and Enterprise Information Technology (IT) systems from inception. This involves a deep commitment to building security directly into our Enterprise Architecture.

  • Strategic Cyber Security Vision: Developing and articulating a clear, forward-looking cybersecurity vision that balances comprehensive security requirements with critical business functionality and productivity goals. This requires a strong big-picture thinking approach to guide our security roadmap and architectural decisions.
  • Enterprise Architecture Cyber Integration: Serving as one of the primary security authorities within our Enterprise Architecture review process, ensuring all new and existing system designs rigorously adhere to established cybersecurity standards and architectural principles.
  • Zero Trust Architecture (ZTA) Leadership: You will be instrumental in driving our Zero Trust transformation journey as a key solutions architect for cybersecurity.
  • Cybersecurity Framework Implementation: Leading the architectural interpretation and implementation of other security best practices review process, ensuring alignment with leading security frameworks.

Preferred Knowledge and Abilities

  • Proven experience in developing and integrating robust cybersecurity designs for systems and networks, particularly those with multilevel security requirements or necessitating the processing of multiple classification levels of data, applicable primarily to government organizations.
  • Demonstrated ability to effectively document and strategically address an organization's information security, cybersecurity architecture, and systems security engineering requirements throughout the entire acquisition life cycle.
  • Track record of successfully employing secure configuration management processes.
  • Adeptness at ensuring that acquired or developed systems and architectures consistently adhere to organizational cybersecurity architecture guidelines.
  • Skilled in identifying and prioritizing critical business functions through effective collaboration with organizational stakeholders.
  • Capability to perform comprehensive security reviews, identify critical gaps in security architecture, and formulate effective security risk management plans.
  • Proficiency in defining and documenting the security posture impact resulting from the implementation of new systems or new interfaces between existing systems.
  • Expertise in evaluating security architectures and designs to determine the adequacy of proposed or provided security solutions in response to requirements outlined in acquisition documents.
  • Competence in determining (and documenting) the precise protection needs (i.e., security controls) for complex information systems and networks.
  • In-depth knowledge of business continuity and disaster recovery continuity of operations plans, including their development and implementation.
  • Demonstrated ability to serve as the primary liaison between enterprise architects and systems security engineers, effectively coordinating with system owners, common control providers, and system security officers on the appropriate allocation of security controls (system-specific, hybrid, or common).
  • Comprehensive knowledge of application firewall concepts and functions (e.g., single point of authentication/audit/policy enforcement, message scanning for malicious content, data anonymization for Payment Card Industry (PCI) and Personally Identifiable Information (PII) compliance, data loss protection scanning, accelerated cryptographic operations, Secure Socket Layer (SSL) security, Representational State Transfer (REST)/JavaScript Object Notation (JSON) processing).
  • Strong understanding and application of industry-standard and organizationally accepted analysis principles and methods.
  • Solid grasp of enterprise IT architectural concepts and patterns (e.g., baseline, validated design, and target architectures).
  • Proven capability to design robust security architectures and frameworks.
  • Skill in determining how a security system should function (including its resilience and dependability capabilities) and how changes in conditions, operations, or the environment will affect these outcomes.
  • Familiarity with and ability to apply program protection planning principles (e.g., IT supply chain security/risk management policies, anti-tampering techniques, and requirements).
  • Knowledgeable in the installation, integration, and optimization of complex system components.
  • Understanding of human-computer interaction principles as they relate to secure system design.
  • Proficiency in remote access technology concepts and their secure implementation.
  • Thorough knowledge of communication methods, principles, and concepts that support the network infrastructure, ensuring secure data flow.

Minimum Job Requirements

  • Bachelor's degree in engineering/science/information technology discipline: Minimum 4 years of relevant experience. Typical engineering/science/information technology experience ranging from 6 to 10 years.
  • OR Master's degree in engineering/science/information technology discipline: Minimum 2 years of relevant experience.
  • OR Applicants without a bachelor's degree may be considered based on a combination of at least 12 years of completed education and/or relevant experience.

Department of Energy (DOE) 426.2A Requirements

  • Eight or more years of progressive experience in cybersecurity architecture, solutions architecture, or a related field, with a demonstrated focus on strategic security planning and implementation.
  • Proven experience in designing, implementing, and managing Zero Trust Architecture (ZTA) principles and controls within complex enterprise environments.
  • Master’s degree in Information Technology, Cybersecurity, or related discipline.
  • Relevant industry cybersecurity certifications (e.g., Certified Information Systems Security Professional (CISSP)-Information Systems Security Architecture Professional (ISSAP), Sherwood Applied Business Security Architecture (SABSA), The Open Group Architecture Framework (TOGAF) with security specialization, Zero Trust certifications).
  • Demonstrated experience in implementing and operationalizing security frameworks such as U.S. National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF), NIST Special Publications (SP) 800-207 (Zero Trust Architecture), or similar leading standards.

Similar jobs

Senior Cyber Architect

QBE North AmericaMadison, WI· 1 mo ago
Engineering$138k–$207k/yrapply on qbe.wd3.myworkdayjobs.com