| This posting has been closed |
The Data Architect will perform activities supporting Secure the Enterprise initiatives, such as:
- Develop ongoing compliance measurement requirement recommendations
- Assist in developing manual processes for short-term sustainment
- Support process improvement and refinement of STE attribute compliance requirements
- Identify and recommend duplicate requirements to be eliminated
- Support Data Working Group engagement
- Manage Exemptions in SPF Library and CIO Dashboard
- Work with dashboard team and service providers to recommend solutions that address dashboard analytic issues
- Applies advanced analytics to activity and access data to uncover unknown risks
- Utilizes advanced skills such as complex algorithms, statistics, and big data technologies with domain knowledge in network security, identity and access management, and vulnerability management
- Serve as a Subject Matter Expert with respect to National-level Security Policies to include ICD 503, NIST SP-800 Series, and CNSS Instruction 1253
- Communicate and interact with all system stakeholders to include Senior Management and the Authorizing Official
- Provide support to the Government on all matters (technical and otherwise) involving the security of the information system
- Provide highly technical and specialized recommendations concerning automated solutions to complex in formation processing problems
- Participate in medium to large complex information and system security projects, and major phases of very large projects
- Provide highly technical, specialized recommendations and security solutions to complex IT problems
- Manage and conduct fact-finding, analysis, development of hypothesis and conclusions, production of final reports, and delivery of presentations
- Assist Government with the development of requirement, from a project's inception to its conclusion for a particular IT subject matter area
- Conduct analysis and evaluation and with the preparation of recommendations for system improvements, optimization, development, and/or maintenance efforts in the following specialties: Risk Management, Information Assurance, System Security Architecture, Networking, Telecommunications and Communications Protocols, Automation, Software Life Cycle Management, Software Development Methodologies, and Modeling and Simulation
Here’s What You’ll Need:
Basic Qualifications:
- A Bachelor’s Degree required plus twelve (12) years of related work experience. A Master's Degree in Computer Science or IT Engineering or related field of study may be substituted for six year of experience.
- Must have an in-depth knowledge of the security authorization processes and procedures as define in the Risk Management Framework and be familiar with the ICD503, CNSSI1253, NIST SPs 800-37, 800-53, etc.
- Experience in several of the following areas: knowledge of current security tools, hardware/software security implementation; different communication protocols; and encryption techniques/tools
- Familiarity with commercial security products, security authorization techniques, security incident management, and PKI and authorization services
- Active TS/SCI with a Full Scope polygraph
Desired Requirements:
-
Experience with VBA (Visual Basic for Applications) specifically in manipulating data within Excel
-
Experience writing macros and functions and manipulating output for display
-
Experience with Python and writing API calls and formatting responses in JSON
-
Commitment to continuous learning because of the constant developing nature of cyber attacks
-
Understanding of the nonconventional network environment of ephemeral devices, elastic-load balancing, auto scaling, infrastructure as code, unmanned services, micro services, serverless compute and the compliance issues these bring- non-persistence on the network, need for dynamic IP addressing, continuously mutating architecture, unpredictability of assets and non-determinant traffic load and characteristics
-
Ability to quickly learn new concepts, data formats, and software
-
CISSP – ISSEP cert
-
CISSP – ISSAP cert
Skills
| Skill | Proficiency | Years Experience | Percent Used |
|---|---|---|---|
| Data Architecture | Any | 100% | |
| Big Data | Any | 75% | |
| CISSP | Any | 75% | |
| Compliance | Any | 75% | |
| JSON | Any | 75% | |
| Microsoft Excel | Any | 75% | |
| Network Security | Any | 75% | |
| NIST | Any | 75% | |
| Python | Any | 75% | |
| VBA | 3 - 6 | 75% | |
| Elastic Load Balancer | Any | 50% | |
| Vulnerability Managment | Any | 50% | |
| Cyber Security | Any | 25% | |
| Database Maintenance | Any | 25% | |
| IAM | Any | 25% | |
| IP Addressing | Any | 25% | |
| Microservices | Any | 25% | |
| Process Improvement | Any | 25% | |
| Risk Management | Any | 25% | |
| SPS | Any | 25% |