What are the responsibilities and job description for the Enterprise Architect IV position at Kforce Technology Staffing?
Job Description
RESPONSIBILITIES:
Kforce has a client in Greenwood Village, CO that is seeking an Enterprise Architect IV responsible for leading the development of cyber-security architecture in an agile environment, ensuring technology initiatives are implemented within the framework to secure one of our key government client's cloud environments. The Enterprise Architect will be accountable for strategic planning, architecture, and securing enterprise information by identifying network and application security requirements, implementing and testing security controls and procedures.
Responsibilities:
* Design security solutions for Azure cloud environments including leading architecture reviews for decision records
* Build architectural runway for infosec requirements for both infrastructure and application development teams; Collaborate with agile teams to ensure security requirements are met
* Analyze and continuously monitor cybersecurity and privacy policies, processes and compliance artifacts, systems authorization, and management in a cloud environment
* Analyze and map existing security controls and safeguards to compliance requirements for a cloud environment
* Conduct architecture reviews and security impact assessments for technology and software development initiatives
* Assist in the implementation a Azure Zero-Trust Architecture as a core part of all design and development of the cloud solution
* Coordinate application and infrastructure risk mitigation and vulnerability remediation activities
* Assist in the design, development, implementation, and deployment of a hybrid cloud solution in a FedRAMP High environment involving integration of hybrid cloud solutions with on-premises components and systems
* Assess vulnerabilities and attacker tactics, techniques, and procedures (TTP) and provide incident response support to locate and prevent threats
REQUIREMENTS:
* InfoSec certifications: CISSP, CCSP, CISM
* Azure/AWS/Google training and certification
* Microsoft certifications/exams are recommended: Sc-100 Cybersecurity Architect; Sc-300 Identity and Access Administration; AZ-500 Azure Security Engineer
* 5 years of cyber related experience in a commercial environment with Azure, in a technical information security and risk management role
* 5 years of firsthand experience working with the various Azure security tools/platforms such as Azure AD, Sentinel, Defender, Monitor, Key Vault, or similar in other platforms
* Familiar with Identity Access and Management concepts, multifactor authentication, SSO/Federation
* Familiar with Privileged Access Management key concepts
* Ability to set up and configure the Azure security platforms, and function as an overall lead managing end to end security on the Azure Cloud regions
* Experience with vulnerability testing as it relates to Azure systems
* Familiar with security concepts & tools related to CI/CD pipelines, and software scanning
* Experience withCrowdstrike Falcon EDR for Azure
* Experience managing/maintaining FISMA compliance for a government information system in accordance with requirements from NIST
* Experience working as system or portfolio architect on agile release trains
* Working knowledge of current NIST 800-53 for Azure and FedRAMP High for Azure, Azure CIS Benchmark compliance
* Working knowledge of Azure CAF and Terraform
* Microsoft Azure Cloud experience preferred; GovCloud experience preferred
* OpenText Fortify experience a plus
Demonstratable understanding of Information Security and Risk Management capabilities related to cloud computing across Windows and Linux, with demonstrated direct experience with the following domains:
* Identity, Credential and Access Management (ICAM)
* Authentication and Authorization including SSO and Identify Federation
* Zero-Trust Model
* Defense-In-Depth
* Governance and Compliance
The pay range is the lowest to highest compensation we reasonably in good faith believe we would pay at posting for this role. We may ultimately pay more or less than this range. Employee pay is based on factors like relevant education, qualifications, certifications, experience, skills, seniority, location, performance, union contract and business needs. This range may be modified in the future.
We offer comprehensive benefits including medical/dental/vision insurance, HSA, FSA, 401(k), and life, disability & ADD insurance to eligible employees. Salaried personnel receive paid time off. Hourly employees are not eligible for paid time off unless required by law. Hourly employees on a Service Contract Act project are eligible for paid sick leave.
Note: Pay is not considered compensation until it is earned, vested and determinable. The amount and availability of any compensation remains in Kforce's sole discretion unless and until paid and may be modified in its discretion consistent with the law.
This job is not eligible for bonuses, incentives or commissions.
Kforce is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.
Kforce has a client in Greenwood Village, CO that is seeking an Enterprise Architect IV responsible for leading the development of cyber-security architecture in an agile environment, ensuring technology initiatives are implemented within the framework to secure one of our key government client's cloud environments. The Enterprise Architect will be accountable for strategic planning, architecture, and securing enterprise information by identifying network and application security requirements, implementing and testing security controls and procedures.
Responsibilities:
* Design security solutions for Azure cloud environments including leading architecture reviews for decision records
* Build architectural runway for infosec requirements for both infrastructure and application development teams; Collaborate with agile teams to ensure security requirements are met
* Analyze and continuously monitor cybersecurity and privacy policies, processes and compliance artifacts, systems authorization, and management in a cloud environment
* Analyze and map existing security controls and safeguards to compliance requirements for a cloud environment
* Conduct architecture reviews and security impact assessments for technology and software development initiatives
* Assist in the implementation a Azure Zero-Trust Architecture as a core part of all design and development of the cloud solution
* Coordinate application and infrastructure risk mitigation and vulnerability remediation activities
* Assist in the design, development, implementation, and deployment of a hybrid cloud solution in a FedRAMP High environment involving integration of hybrid cloud solutions with on-premises components and systems
* Assess vulnerabilities and attacker tactics, techniques, and procedures (TTP) and provide incident response support to locate and prevent threats
REQUIREMENTS:
* InfoSec certifications: CISSP, CCSP, CISM
* Azure/AWS/Google training and certification
* Microsoft certifications/exams are recommended: Sc-100 Cybersecurity Architect; Sc-300 Identity and Access Administration; AZ-500 Azure Security Engineer
* 5 years of cyber related experience in a commercial environment with Azure, in a technical information security and risk management role
* 5 years of firsthand experience working with the various Azure security tools/platforms such as Azure AD, Sentinel, Defender, Monitor, Key Vault, or similar in other platforms
* Familiar with Identity Access and Management concepts, multifactor authentication, SSO/Federation
* Familiar with Privileged Access Management key concepts
* Ability to set up and configure the Azure security platforms, and function as an overall lead managing end to end security on the Azure Cloud regions
* Experience with vulnerability testing as it relates to Azure systems
* Familiar with security concepts & tools related to CI/CD pipelines, and software scanning
* Experience withCrowdstrike Falcon EDR for Azure
* Experience managing/maintaining FISMA compliance for a government information system in accordance with requirements from NIST
* Experience working as system or portfolio architect on agile release trains
* Working knowledge of current NIST 800-53 for Azure and FedRAMP High for Azure, Azure CIS Benchmark compliance
* Working knowledge of Azure CAF and Terraform
* Microsoft Azure Cloud experience preferred; GovCloud experience preferred
* OpenText Fortify experience a plus
Demonstratable understanding of Information Security and Risk Management capabilities related to cloud computing across Windows and Linux, with demonstrated direct experience with the following domains:
* Identity, Credential and Access Management (ICAM)
* Authentication and Authorization including SSO and Identify Federation
* Zero-Trust Model
* Defense-In-Depth
* Governance and Compliance
The pay range is the lowest to highest compensation we reasonably in good faith believe we would pay at posting for this role. We may ultimately pay more or less than this range. Employee pay is based on factors like relevant education, qualifications, certifications, experience, skills, seniority, location, performance, union contract and business needs. This range may be modified in the future.
We offer comprehensive benefits including medical/dental/vision insurance, HSA, FSA, 401(k), and life, disability & ADD insurance to eligible employees. Salaried personnel receive paid time off. Hourly employees are not eligible for paid time off unless required by law. Hourly employees on a Service Contract Act project are eligible for paid sick leave.
Note: Pay is not considered compensation until it is earned, vested and determinable. The amount and availability of any compensation remains in Kforce's sole discretion unless and until paid and may be modified in its discretion consistent with the law.
This job is not eligible for bonuses, incentives or commissions.
Kforce is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.
Salary : $80 - $98
Enterprise Architect - Reference Architect–Mid
Reference Architect–Mid - COMPASS, Inc. -
Springfield, VA
Enterprise Architect (HYBRID)
TriTech Enterprise Systems, Inc. -
Richmond, VA
VDOT Enterprise/Platform Architect
Argyll Infotech Enterprise Pvt Ltd -
Richmond, VA
