Cyber Security Architect

Primary Responsibilities:

• Design and architect comprehensive cybersecurity frameworks for VA corporate IT systems, integrating security into legacy, cloud-based (e.g., AWS, Azure), and DevSecOps environments. 
• Engineer security solutions that meet VA compliance requirements (e.g., FISMA, NIST 800-53, FIPS 140-2, HIPAA), incorporating advanced controls such as encryption, identity management, and intrusion detection. 
• Collaborate with Cyber Security Risk Leads, DevOps Engineers, and Data Architects to embed security-by-design principles into Continuous Integration/Continuous Delivery (CI/CD) pipelines and Agile workflows. 
• Develop security architecture blueprints, risk models, and technical specifications, ensuring scalability, resilience, and alignment with VA OIT’s modernization goals. 
• Conduct architectural reviews and threat modeling, identifying vulnerabilities and recommending mitigation strategies to protect VA systems and data. 
• Utilize VA-approved tools (e.g., Jira, GitHub, ServiceNow) to document security designs, track implementation, and contribute to Biweekly Status Reports on architecture status and security enhancements. 
• Provide technical leadership during Agile ceremonies (e.g., sprint planning, retrospectives), aligning security architectures with the VIP Lean-Agile framework and sprint deliverables. 
• Oversee the secure integration of emerging technologies, such as Artificial Intelligence (AI), containerization (e.g., Docker, Kubernetes), and zero-trust models, into VA IT systems. 
• Work with VA stakeholders, including the Information Security Officer (ISO) and Contracting Officer’s Representative (COR), to validate security architectures and address evolving threats. 
• Mentor team members on advanced cybersecurity architecture and engineering practices, contributing to Trilogy’s staff development and technical excellence initiatives. 
• Support incident response efforts by providing architectural expertise to investigate breaches, implement fixes, and enhance system defenses. 
• Drive exceptional customer satisfaction by delivering robust, Veteran-centric security architectures that safeguard VA operations and align with federal mandates. 

Minimum Requirements:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or a related field.
• CISSP-ISSAP (Information Systems Security Architecture Professional) and CISSP-ISSEP (Information Systems Security Engineering Professional) certifications required. 
• 8+ years of experience in cybersecurity architecture, security engineering, or a related role, with a focus on federal or VA IT environments. 
• Proven expertise in designing and implementing security architectures, with hands-on experience in cloud platforms (AWS, Azure), security tools (e.g., Splunk, Tenable), and federal compliance frameworks. 
• Strong technical and strategic skills, with the ability to architect secure, scalable systems in a dynamic, fast-paced environment. 
• Familiarity with VA security standards (e.g., FISMA, NIST, HIPAA) and the VIP Lean-Agile framework is highly desirable. 
• Proficiency in MS Office Applications (Word, Excel, PowerPoint, Visio, SharePoint) and VA-approved tools (e.g., Jira, GitHub, ServiceNow). 
• Ability to adapt to evolving security requirements and travel occasionally to VA sites in Washington, D.C., as needed. 

Preferred Qualifications:

• Master’s preferred
• Additional certifications such as TOGAF, SABSA, or CEH preferred.

Benefits (including but not limited to):

• Health, dental, and vision plans
• Optional FSA
• Paid parental leave
• Safe Harbor 401(k) with employer contributions 100% vested from day 1
• Paid time off and 11 paid holidays
• No cost group term life/AD&D plan, and optional supplemental coverage
• Pet insurance
• Monthly phone and internet stipend
• Tuition and training reimbursement