THIS POSITION IS 100% ON-SITE - LOCAL CANDIDATES ONLY
CLEARANCE REQUIREMENT: The selected applicant will be subject to the end client’s background check process as well as basic Live Scan background checks. A polygraph exam may be required if deemed necessary during the background check.
Our client is seeking a Cybersecurity Architect who will provide expert technical leadership and oversight for the end client’s cybersecurity team, with a responsibility to protect assets, systems, and data against cyber threats. Primary responsibilities will be for the design, development and implementation of a robust and compliant enterprise-wide security architecture. Technical cyber services and expertise provided are associated with (but not limited to) endpoint and email security, firewall management, wireless security, virtual private technologies, and Incident Response with adherence to regulatory frameworks like CJIS.
RESPONSIBILITIES:
Palo Alto Networks Platform Management:
· Design, Implement and maintain Palo Alto Network firewalls (NGFW), Panorama Central Management and related security services (Wildfire, Threat Prevention, URL Filtering, Anti-Virus, etc.)
· Develop and enforce high-level security policies, rule sets and zone segmentation to align with Zero Trust principles across the entire network.
· Serve as the top-tier subject matter expert for all Palo-Alto related security engineering, configuration and troubleshooting.
Virtual Private Network technologies:
· Architect and optimize secure remote access solutions leveraging solutions such as Palo Alto Global Protect or other enterprise VPN technologies ensuring least privilege and MFA requirements are enforced and properly implemented.
Wireless Infrastructure Security:
· Develop and enforce security policies for corporate and guest wireless networks, ensuring segmentation, use of secure authentication protocols and encryption methodology.
DNS Security:
· Design and implement secure DNS architecture utilizing DNSSEC or private DNS Services.
Security Information and Event Management:
· Lead the design and tuning of the enterprise SIEM.
· Lead the design and tuning of device log integration into enterprise SIEM.
· Develop advanced correlation rules, alerts, dashboards and reporting to identify, prioritize and track security threats and anomalies.
Incident Response:
· Develop, maintain and test the OCSD Incident Response Plan and playbooks.
· Act as a lead resource during critical security incidents, providing technical expertise to guide the incident response lifecycle (Preparation, Detection, Containment, Eradication, Recovery, Lessons Learned)
· Conduct post-incident reviews to identify architectural gaps and define immediate and long-term security enhancements.
Regulatory Compliance - Criminal Justice Information Services (CJIS)
· Ensure all security architectures, policies and operational procedures strictly comply with local, state and federal mandates, specifically the CJIS requirements.
· Create and maintain enterprise-wide security standards, security control baselines, and reference architecture to dictate how technology is securely implemented across the organization.
· Conduct regular security assessments to identify control deficiencies and define remediation strategies.
QUALIFICATIONS
· BS in Cybersecurity or related technical field and 7+ years relevant industry experience,
or MS in Cybersecurity or related technical field and 5+ years relevant industry experience,
or PhD in Cybersecurity or related technical field with 4+ years industry experience.
· Certified Information Systems Security Professional (CISSP) or GIAC Reverse Engineering Malware (GREM) or similar.
· Professional experience providing expert technical leadership in support of a Security Operations Center (SOC) or similar organization that provides cyber security services.
· Strong understanding of Palo Alto Networks architecture and technologies.
· Expertise Palo Alto Networks firewalls, intrusion prevention systems and other security products.
· Experience with network security design, deployment, and maintenance.
· Experience with troubleshooting security issues.
· Experience with providing support to users.
· Excellent communication and interpersonal skills.
· Strong Project Management
· Ability to work independently and as part of a team.
· Ability to work under pressure and meet deadlines.
· Ability to work overtime as requested.
· Ability to work flexible hours including weekends and overnight
· Ability to manage multiple projects simultaneously
Never miss an opportunity! Create an alert based on the job you applied for.
