Overview
Remote
Up to $135,000
Full Time
Skills
requirements
modeling
documentation
engagement
communication
testing
tooling
agile
Job Details
Senior Security Architect
Remote
Changeis, Inc. is seeking a highly skilled and motivated Senior Software Engineer to support our current work with the Supply Chain Systems Team.
Remote
Changeis, Inc. is seeking a highly skilled and motivated Senior Software Engineer to support our current work with the Supply Chain Systems Team.
- As a Senior Security Architect, you will play a key role in in ensuring the confidentiality,integrity,and availability of our critical systems and data,aligning Agency security strategies with program objectives and regulatory requirements.The Security Architect will act as a key advisor, translating complex security concepts into actionable plans for various stakeholders and driving continuous improvement in our security posture.
The Senior Security Architect requires strong technical skills, attention to detail, and excellent communication skills to support the vital mission of the Client s Supply Chain Systems. Deep expertise in designing and implementing security solutions across diverse environments (including cloud and hybrid) are essential to this role.
Key Responsibilities:
As a key member of our security team, you'll play a critical role in maintaining the integrity and resilience of our systems. Your responsibilities will include:
Security Monitoring & Reporting:
- Conduct daily audits of application environment security controls ("doors and locks").
- Perform semi-annual privileged user access reviews and generate reports.
- Provide 2-4 monthly data calls regarding BOD 22-01 status updates.
- Manage CSIMS system for Splunk dashboard monitoring, incident hunting, and monthly vulnerability scanning dashboard reporting for the Infrastructure team.
- Maintain monthly updates of BOD 22-01 vulnerability statuses within IRIS.
Vulnerability & Configuration Management:
- Ensure the team has a clear plan of action for every vulnerability type, keeping relevant documentation up-to-date.
- Conduct weekly code reviews focusing on security-relevant changes.
- Maintain accountability for tracking all configuration changes.
- Verify that all new system software is accounted for and approved via the FAA Technology Roadmap.
Audit & Compliance:
- Coordinate and support 1-3 audit assessments annually, including IRAT, Pentest, and Financial Audits.
- Perform annual reviews of Security Authorization documentation.
- Ensure the Continuous Monitoring Plan and other relevant plans are updated annually with required security actions and frequencies to support NAS operations.
Documentation & Training:
- Keep annual documentation updated through ATOM.
- Maintain current SCM-ERP Security Plan documentation annually, including Architectural Drawings, Access Control Plan, Flaw Remediation and Vulnerability Management Plan, Incident Response Plan, and Security Auditing Plan.
- Provide team security plan awareness training, detailing plans and ensuring teams know where to find relevant security control requirements (NIST 800-53 Rev 5, DOT Compendium, and FAA Security Handbook).
Cybersecurity Project Leadership:
- Serve as the Business Owner for Enterprise-wide Cybersecurity related projects.
Required Qualifications:
- U.S. Citizenship is required.
- Bachelor's degree in Computer Science, Information Technology, Engineering, or a related field, or equivalent experience.
- 11-15 years of progressive experience in software development, systems integration, and/or technical architecture.
- Demonstrated proficiency in learning new technologies to accomplish tasks or achieve organization objectives.
- Experience with project management methodologies (Agile, Scrum).
Preferred Technical Skills:
- Cloud Computing Platforms (AWS)
- Containerization (Red Hat OpenShift on AWS, Kubernetes)
- Scripting/Programming Languages (Bash, Python, GO)
- Infrastructure as Code (Ansible, Terraform, Packer)
- CI/CD Tools (Make, Tekton, GitHub Actions, Kustomize, ArgoCD)
- Security Frameworks and Compliance Standards (CIS, DISA)
- Experience with DevSecOps practices and tools (CI/CD, automated testing, infrastructure-as-code).
- Experience working with government security standards and processes (e.g., FedRAMP, NIST).
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.