Security Architect

Position Description

Valiant Solutions is seeking a Security Architect to join our rapidly growing and innovative cybersecurity team!


The Security Architect SME will lead the development of security architecture guidance, standards, and reference diagrams for on-premise and cloud platforms and systems. This is an exciting role to support both macro and micro security design for a large government agency. You'll get to support a variety of cloud and on-premise projects, working with leading edge technology. This position requires a deep level of understanding of NIST Special Publications used to secure federal systems, including NIST SP 800-53. This knowledge must be combined with experience designing and assessing security architectures for both cloud and on-premise systems to protect the confidentiality, availability, and integrity of systems and their data using COTS tools, cloud native services, and component-level configuration settings. In this role, you will lead from the front as the key subject matter expert guiding our valued client. The successful candidate will support the design of Zero Trust security architectures and their associated guidance, working in iterations to tighten least privilege access controls and automate Zero Trust controls.

Named one of the Best Places to Work in the Washington DC area for 12 consecutive years , Valiant is proud of our employee-centric culture and commitment to excellence. If you are interested in learning more about Valiant and this opportunity, we invite you to apply now!

Eligibility Requirements: U.S. Citizenship is required due to federal contract obligations, along with the ability to successfully pass a federal background investigation

Location: This position allows for 100% remote work. Remote work requires a high level of trust in our employees, and we strictly adhere to the details outlined in our Remote Work Policy below.

Required Experience

• 7+ years of experience designing security architectures by referencing NIST security controls, agency policy, and government-wide security requirements. This experience must include the design of on-premise and cloud security fabrics for all layers of the system (application down to CSP).
• 2+ years of experience designing Zero Trust Architectures to secure cloud and on-premise systems
• Experience designing security architectures hosted in Microsoft Azure, using a combination of Azure-native services and COTS tooling
• Experience assessing/reviewing security architectures, writing reports with detailed explanatory findings, and providing briefings on your findings.
• Developing security architecture guidance to include policy language, Standard Operating Procedures, and as-code hardening standards.
• Extensive knowledge of NIST 800- 53rev5 and other NIST Special Publications.
• Current knowledge of government-wide security mandates and CISA Directives
• Ability to define and document system security boundaries and categorize systems based on security and privacy requirements.
• Skilled in analyzing user needs to inform and guide secure architecture planning.
• Proven ability to assess and evaluate enterprise security postures and identify impacts from new systems or interfaces.
• Experience developing technical documentation, including written documents and diagrams.
• Experience developing presentation slide decks and presenting to technical and non-technical personnel.
• Experience identifying and documenting system and organizational security and privacy requirements, including personal data handling.
• Familiarity with identifying and protecting enterprise and system-level security data.
• Ability to collaborate with stakeholders and translate functional needs into technical security requirements.
• Ability to support cost estimation and technical guidance related to secure system design and changes.
• Skilled in identifying gaps in security architecture and contributing to the development of security risk management plans.
• Proficiency in documenting and updating security architecture throughout the system development and acquisition lifecycle.

Preferred Relevant Certifications:

• CompTIA Advanced Security Practitioner (CASP)
• CompTIA Cloud Essentials
• Comptia Cloud+
• Comptia Security+
• EC-Council Certified Network Defense Architect (CNDA)
• EC-Council Certified Ethical Hacker (CEH)
• GIAC Continuous Monitoring Certification (GMON)
• GIAC Security Expert (GSE)
• ISC2 Certified Cloud Security Professional (CCSP)
• ISC2 Certified Information Systems Security Professional (CISSP)
• ISC2 CISSP Information Systems Security Architecture Professional (CISSP-ISSAP)
• ISC2 CISSP Information Systems Security Engineering Professional (CISSP-ISSEP)
• ISC2 Systems Security Certified Practitioner (SSCP)

Responsibilities

• Develop and align system security architectures with organizational cybersecurity guidelines, including defining security boundaries, documenting system categorization, and analyzing user needs and requirements.
• Develop focused guidance for specific security mechanisms such as encryption for data at rest
• Assess and evaluate security postures, reviewing candidate architectures, identifying protection needs, and determining how new systems or interfaces impact enterprise security.
• Identify and document security and privacy requirements, including types of personal information, stakeholder interests, and data that require protection, ensuring proper allocation at both system and organizational levels.
• Support acquisition and procurement efforts by providing input on security requirements for statements of work, project costs, and translating proposed capabilities into technical specifications.
• Contribute to risk management and compliance, performing architecture reviews, identifying security gaps, supporting RMF activities, and maintaining documentation throughout the acquisition lifecycle.

• Provide high-quality technical, engineering, analytical, and planning support to meet the organization's requirements.
• Perform architectural review and analysis, developing strategic enterprise solutions that address the evolving business requirements and changing cybersecurity threat landscape.

• Develop and deliver reports (e.g., reference architectures, white papers, roadmaps, architecture risk analysis) to facilitate the following, including but not limited to:
• Define and develop security architecture and engineering standards
• Develop business use cases and design patterns to articulate the organization's goals and objectives
• Document the current "as-is" through a holistic review of the agency enterprise
• Develop an envisioned target "to-be" based on the agency's needs and threat models
• Assess the gaps between "as-is" and "to-be", and provide roadmaps to close gaps.
• Develop baselines and reference architectures consistent with standard frameworks
• Perform Architect Risk Analysis (ARA) through systematic and comprehensive reviews
• Identify, integrate, mature, and communicate key concepts that define continued direct interaction with the agency's technical and operational leadership.
• Identify, frame, and support the resolution of critical issues impacting the organization.
• Update artifacts periodically to meet regulatory, audit, and compliance requirements.

About Valiant Solutions

Valiant Solutions is a security-focused IT solutions provider with public clients nationwide. Named one of the fastest growing privately held companies by Inc. 5000, Washington Technology's Fast 50, and Washington Business Journal's Best Places to Work in the D.C. area, Valiant Solutions prides itself on providing its employees with great benefits and career development opportunities. As a company, we are just as committed to growing careers as we are to building world-class IT solutions, all while enjoying an unparalleled work-life balance. We are in a phase of tremendous growth and building the team that will take us to the next level. We seek people whose talents and accomplishments will contribute to a thriving company, who have the character to support their capacity, and can make a positive impact on our culture. Alongside our talented team, you'll learn to think quickly on your feet and expand your own personal and professional skill set. Our management team will inspire you to consider new perspectives and challenge you to become a better practitioner in the fast-paced industry of IT security. We hire people we respect - and we trust them to deliver results leveraging their expertise. If you would enjoy working in a dynamic environment as part of a stellar team of professionals, then we invite you to apply online today.

Benefits Snapshot (includes, but not limited to)
Valiant pays 99% of the Medical, Dental, and Vision Coverage for Full-time Employees
Valiant contributes 25% towards Health Coverage for Family and Dependents
100% Paid Short Term Disability and Life Insurance Policy for Full-time Employees
100% Paid Certifications
401K Matching up to 4%
Paid Time Off
Paid Federal Holidays
Wellness & Fitness Program
Valiant University - Online Education and Training Portal
FSA programs for: Medical Costs, Dependent Care, Transit, and Parking
Referral Bonuses

The salary range for this position is a general guideline and not a guarantee of compensation or salary. It has been benchmarked in relation to the scope of the role, market rate, and internal equity. The salary for this role is expected to be in the $150,000 - $160,000 range. Where a candidate falls within the band can be determined based on one or more of the following: skillset, experience level, achievements, education, geographic location, security clearance, involvement in corporate tasks, and other non-discriminatory factors. In addition to the base salary, this role will include benefits as described above. Valiant reserves the right to adjust the salary range, experience requirements, and position responsibilities at any time without prior notice.

Remote Work Policy


Remote work necessitates a high level of trust in our employees. To ensure that employee performance does not suffer in a remote work environment, all employees who telecommute are expected to have a quiet and distraction-free workspace with adequate internet, dedicate their full attention and availability to their job duties during working hours, and maintain a schedule during core business hours that align with those of their coworkers and Valiant's clients. In alignment with Valiant's inclusive and engaging environment, cameras are encouraged and can be required to be on during virtual video conferences. Additionally, in alignment with the Office of the Inspector General's effort to eliminate conflicting employment, all Valiant employees are required to disclose any current or future outside employment engagements. During onboarding and throughout employment, employees must disclose any current activities or intent to engage in outside employment or other professional activities and obtain written approval. Employees may not solicit or conduct any outside business during core business hours for Valiant Solutions and our clients.

Equal Employment Opportunity

Valiant Solutions is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, disability, genetic information, marital status, or veteran status, in accordance with applicable law.

Physical Demands

Sitting or standing at a desk for prolonged periods of time and consistent operation of a computer. Frequent communication and exchanging of accurate information via electronic communication, phones, and in person. Occasionally lift and/or move moderate amounts of weight, typically less than 20 pounds. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of the job.

Authorization to Share Resume and Personal Information

By submitting your resume for this position, you authorize Valiant Solutions to share your resume, as well as, personal information included on the resume, with its subsidiaries, affiliates and teaming partners for the purpose of considering you for this position and other available positions requiring comparable skills, education and experience. Should Valiant Solutions or its affiliates and teaming partners wish to initiate pre-employment discussions, you will be asked to complete an employment application and related employment documents.

#LI-LH1