Senior Cyber Solutions Architect — Supply Chain Risk/Automation

If you are unable to complete this application due to a disability, contact this employer to ask for an accommodation or an alternative application process. Senior Cyber Solutions Architect — Supply Chain Risk/Automation 11 days ago Requisition ID: 1038 Job Description Status: Active Location: Hybrid – Arlington, VA Schedule: Full-time | Core hours 9:00 AM – 5:00 PM ET Focus Areas: Cyber Supply Chain Risk Management (C-SCRM), Workflow Automation, Data Aggregation & Visualization, Enterprise Cybersecurity Architecture, Federal Information Assurance Overview At phia we hire talented and passionate people who are focused on collaborative, meaningful work, providing technical and operational subject matter expertise and support services to our partners and clients. phia is seeking a TS-cleared Senior Cyber Solutions Architect to modernize how federal cyber supply chain risk work gets done — translating manual, fragmented processes into automated, data-driven workflows that produce decision-ready products for senior government leaders. You will combine deep subject matter expertise in cyber supply chain risk management with the architectural judgment to design (and in many cases help build) the platforms, data pipelines, and workflows that turn raw vendor risk inputs into a polished, consumable product. This role suits a seasoned cybersecurity professional who is equally comfortable defining architecture for others to implement and rolling up their sleeves to prototype the tooling themselves. Your architecture decisions will shape how the federal government evaluates supply chain risk for years to come, and the platforms you help build will be used by senior decision-makers across the interagency. This role offers cross-agency visibility, exposure to senior federal leadership, and a natural trajectory toward Chief Architect or CTO-level work for technologists building in that direction. What You’ll Do Modernize Manual Processes: Lead the redesign of manual vendor risk analysis and information sharing workflows into automated, data-driven processes that scale with mission demand. Architect Data & Workflow Platforms: Design (and where appropriate, help build) the data aggregation, processing, and presentation platforms that ingest vendor risk inputs from many sources and turn them into executive-ready decision products. Translate Risk to Technical Requirements: Convert vendor risk findings, policy requirements, and mission needs into platform requirements, data models, and workflow architectures engineers can build against. Senior Technical Advisory: Serve as the senior technical advisor for collaboration platforms and cross-enterprise solutions that support vendor risk assessment and cyber supply chain mission outcomes. Executive Advisory: Provide enterprise IT and systems ecosystem advisory to senior leadership, ensuring technical solutions align with federal authorities, acquisition security requirements, and cyber supply chain policy. Incident Response Coordination: Support incident response coordination involving third-party vendors and supply chain compromises, ensuring alignment across technical, operational, and governance functions. Executive Documentation: Develop executive-level documentation, dashboards, and decision packages that communicate vendor risk posture and support governance, investment, and acquisition decisions. Mission Resilience: Ensure technical solutions support long-term mission resilience, interoperability, and compliance with federal cybersecurity and supply chain risk management requirements. Who You Are Builder–Architect: You sit comfortably on the spectrum between defining architecture and building it. You can write the blueprint, and you can prototype the tooling that proves the blueprint works. Cross-Domain Technologist: You operate at the intersection of cybersecurity, data and platform engineering, vendor risk management, and federal mission execution. Federal-Fluent: You have substantial experience supporting federal information communication technology and cyber supply chain risk management initiatives. Translator: You convert complex vendor risk analysis into executive-ready technical solutions, automation requirements, and governance artifacts. Trusted Advisor: You influence decisions across organizational and interagency boundaries and build credibility with senior federal stakeholders. Communicator: You coordinate across multiple stakeholders and teams to align to and execute unified goals and plans. Preferred Skills Hands-on experience with one or more automation and data tooling stacks used in federal environments: Power Platform (Power Apps, Power Automate, Power BI), ServiceNow workflow development, SharePoint / SPFx, Python for data work, Azure data services, or comparable low-code/no-code platforms Experience designing or defining requirements for data aggregation, ETL, and visualization workflows that turn fragmented inputs into a polished, consumable product Familiarity with NIST SP 800-161 (C-SCRM) and related federal SCRM guidance Experience supporting interagency cyber supply chain risk management bodies or initiatives Degree in cybersecurity, computer science, data engineering, or a related field Active federal agency suitability already in place Required Education + Experience Experience: 7+ years supporting federal cybersecurity programs, ideally with focus on Supply Chain Risk Management (SCRM), platform and workflow automation, or both. Demonstrated experience converting policy and mission requirements into technical architectures, and coordinating across multiple stakeholders to align on and execute unified plans. Advanced cybersecurity credentials such as CISSP — or equivalent demonstrated technical depth in data, automation, or platform engineering in federal environments — are aligned with the scope of this role. Clearance: Active TS security clearance and SCI eligible at time of proposal submission. Ability to obtain and maintain federal agency suitability (EOD).

GENERAL PROGRAM REQUIREMENTS:

Citizenship: Must be a U.S. Citizen. No exception. Work Hours: Full-time, Monday–Friday, core hours 9:00 AM – 5:00 PM ET. Work Location: Hybrid schedule based out of phia’s Arlington, VA office. Travel: Minimal; occasional travel within the National Capital Region as required by mission. Who We Are phia LLC (“phia”) is a Northern Virginia based, small business established in 2011 with focus in Cyber Intelligence, Cyber Security/Defense, Intrusion Analysis & Incident Response, Cyber Architecture & Capability Analysis, Cyber Policy & Strategy, Information Assurance/Security, Compliance, Certification & Accreditation, Communications Security, Traditional Security, and Facilities Security. phia also provides cyber operations support functions such as: Program and Process Management, Engineering, Development, and Systems Administration that allows for Cyber Operations to efficiently integrate our customer’s missions and objectives. phia supports various agencies and offices within the Department of Defense (DoD), Federal government, and private/commercial entities. phia offers excellent benefits to enhance work-life balance, including the following: Medical Insurance Vision Insurance Life Insurance Short Term & Long-Term Disability 401k Retirement Savings Plan with Company Match Paid Holidays Paid Time Off (PTO) Tuition and Professional Development Assistance phia does not discriminate on the basis of race, sex, color, religion, age, national origin, marital status, disability, veteran status, genetic information, sexual orientation, gender identity, or any other reason prohibited by law in the provision of employment opportunities and benefits. #J-18808-Ljbffr phia, LLC