"Alerted.org

Job Title: Platform Security Architect Location: Richmond, VA 23225 Job Type: Onsite About Position: The Platform Security Architect is a critical technical role responsible for ensuring the secure design and compliance of the platform's enterprise architecture. The Platform Security Architect will assist in ensuring systems complete needed steps in order to receive Authority to Operate, including but not limited to architectural design, System Security Plan, and compliance with organization design patterns. to effectively and securely support the organization in meeting specific business technology needs. This candidate will be considered a technical expert. Ideal candidates will have the following expectations, execute architecture design reviews to evaluate security controls and identify opportunities to enhance the security posture of the Commonwealths Platform services, build relationships with supplier infrastructure architects and engineering leads to disseminate and explain secure design methodologies and policies. Ideal candidates will also understand the landscape and components of cutting-edge architectures and the methods to securely deploy them. Job Description Summary The ideal candidate brings extensive expertise in cybersecurity architecture and system design, with a proven track record across state and federal compliance frameworks. Highlights of qualifications include: 8+ years of experience providing high-level design and architecture diagrams. 8+ years of experience technically validating solutions and integrating business, data, security, and systems architectures. 8+ years of familiarity with open architecture and cybersecurity principles aligned with cybersecurity framework goals. 8+ years of knowledge of encryption technologies used in commercial operating systems, including Public Key Infrastructures (PKI). 8+ years of hands-on experience with symmetric and asymmetric cryptography, certificate trust stores, and key escrow use for legal and discovery purposes. 8+ years of experience in network and endpoint security architecture. 8+ years of familiarity with network protocols such as SMB, RPC, HTTP, SQL. 8+ years of understanding of multi-tiered network applications, including ports and communication protocols. 8+ years of knowledge in Vulnerability Scoring (CVSS) and exploitation mechanisms like overflows, cross-site scripting, and SQL injection. 6+ years of experience working with Cloud Native architecture paradigms, including patterns and security methodologies. 8+ years of experience with cybersecurity frameworks like NIST, IRS 1075, HIPAA, and FedRAMP. 4+ years of experience in automated System Security Plans and Authority to Operate (ATO) documentation processes. 8+ years of experience in identity and access management (IAM) and general security best practices. 8+ years of experience aligning organizational activities with State and Federal mandates, including: Continuous Diagnostics and Monitoring (CDM) Cybersecurity Executive Orders OMB and NIST guidance Preferred Certifications (Desired) AWS Certified Security Azure Architect Certification Google Architect Certification Certified Information Systems Security Professional (CISSP) Certified Cloud Security Professional (CCSP)