About this role
Lead the development of security architecture guidance and reference diagrams for on-premise and cloud platforms, supporting Zero Trust design for a large government agency and delivering strategic architecture artifacts.
Key Responsibilities
- Develops and aligns system security architectures with cybersecurity guidelines
- Develops security guidance including policy language and SOPs
- Assesses security postures and reviews candidate architectures
- Identifies and documents security and privacy requirements
- Supports RMF activities and translates capabilities into technical specifications
Technical Overview
Scope includes Azure-based security architectures, RMF/ NIST guidelines, architecture risk analysis, and creation of security documentation and roadmaps for secure system design across cloud and on-premise environments.
Ideal Candidate
The ideal candidate is a senior security architect with 7+ years designing Azure-based security architectures for on-prem and cloud, with deep experience in NIST 800-53 Rev5 and RMF, capable of leading Zero Trust guidance for a government agency.
Must-Have Skills
Experience designing security architectures hosted in Microsoft AzureExperience assessing/reviewing security architecturesDeveloping security architecture guidance including policy language and SOPsExtensive knowledge of NIST 800-53 Rev5Current knowledge of government-wide security mandates and CISA DirectivesDefine and document system security boundariesAnalyze user needs to guide secure architectureAssess enterprise security posturesDevelop technical documentation and diagramsDevelop presentation slide decks and briefingsDocument system and organizational security and privacy requirementsFamiliarity with identifying and protecting enterprise and system-level security dataCollaborate with stakeholders translating needs into technical security requirementsSupport cost estimation and technical guidance for secure system designIdentify gaps in security architecture and contribute to risk managementDocument and update security architecture lifecycle
Nice-to-Have Skills
Zero Trust Architecture designRMF activitiesArchitectural risk management plansExperience translating guidance into implementationCost estimation for secure system design
Tools & Platforms
Microsoft AzureAzureCOTS tooling
Required Skills
Experience designing security architectures hosted in Microsoft AzureAzure-native servicesand COTS tooling; Zero Trust architectures; architecture reviews; RMF; NIST 800-53 Rev5; CISA Directives; encryption; data at rest; security boundaries; SOPs; policy language; as-code hardening; reference architectures; documentation; briefings; stakeholder collaboration; cost estimation; governance and risk management
Hard Skills
Microsoft AzureAzureAzure-native servicesCOTS toolingZero TrustOn-premise and cloudSecurity architectureNIST 800-53 Rev5RMFArchitecture Risk Analysis (ARA)Policy languageStandard Operating Proceduresas-code hardeningEncryption at restDocumentation and diagramsReference architecturesSecurity boundariesData protectionCloud & on-premise integrationCloud security
Soft Skills
Strong communicationStakeholder collaborationAnalytical thinkingPlanningDocumentation
Certifications
Preferred
CompTIA Advanced Security Practitioner (CASP)CompTIA Cloud EssentialsCompTIA Cloud+CompTIA Security+EC-Council Certified Network Defense Architect (CNDA)EC-Council Certified Ethical Hacker (CEH)GIAC Continuous Monitoring Certification (GMON)GIAC Security Expert (GSE)ISC2 Certified Cloud Security Professional (CCSP)ISC2 Certified Information Systems Security Professional (CISSP)ISC2 CISSP Information Systems Security Architecture Professional (CISSP-ISSAP)ISC2 CISSP Information Systems Security Engineering Professional (CISSP-ISSEP)ISC2 Systems Security Certified Practitioner (SSCP)
Keywords for Your Resume
security architectazuremicrosoft azureazure-native serviceszero trustnist 800-53 rev5nist 800-53rev5nist special publicationscisa directivesrmfarchitecture risk analysis (ara)araas-code hardeningpolicy languagestandard operating proceduresencryptiondata at reston-premisecloudreference architecturesdocumentationbriefingsgovernment securityrmf activitiesMicrosoft AzureZero TrustNIST 800-53 Rev5RMFARASOPs
Get matched to jobs like this
Luna finds roles that fit your skills and career goals — no endless scrolling required.
Create a Free Profile