Cybersecurity Architect Job Description
Cybersecurity Architect Duties & Responsibilities
To write an effective cybersecurity architect job description, begin by listing detailed duties, responsibilities and expectations. We have included cybersecurity architect job description templates that you can modify and use.
Sample responsibilities for this position include:
Cybersecurity Architect Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Cybersecurity Architect
List any licenses or certifications required by the position: CISSP, ITIL, CEH, CISM, GIAC, CRISC, CISA, AWS, GSED, GDSA
Education for Cybersecurity Architect
Typically a job would require a certain level of education.
Employers hiring for the cybersecurity architect job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Master's Degree in Computer Science, Engineering, Technical, Information Technology, Information Security, Education, Information Systems, Computer Engineering, Business, Architecture
Skills for Cybersecurity Architect
Desired skills for cybersecurity architect include:
Desired experience for cybersecurity architect includes:
Cybersecurity Architect Examples
Cybersecurity Architect Job Description
- Assess complex IT environments and map the data flow of the through systems/applications and organizational functions
- Architect and design cybersecurity solutions for multi-tenant managed security services environment supporting multiple federal government agencies
- Design shared services / cloud infrastructure environment to obtain the equivalent of FedRAMP HIGH certification
- Plan, design, and evaluate cybersecurity solutions
- Assess architecture and current solution limitations, define and design system specifications, and input/output processes and working parameters for solution compatibilities
- Provide expert level consultation and technical services on all aspects of cybersecurity, specifically continuous monitoring
- Manage large-scale programs of national or international scope
- Provide security architecture and engineering expertise across agency initiatives to ensure a secure enterprise that includes internal systems, cloud services and external/third-party service provider systems
- Perform research, evaluation and engineering of security technology, products, and solutions designed to safeguard, monitor, and assess the security of an organization’s IT assets
- Review, analyze, and comment on project-deliverable documents in support of the Software/System Development Lifecycle (SDLC) and System Engineering Life Cycle (SELC)
- Mastery understanding of the Internet protocol version 4 and 6 suite, Radius, BOOTP, ARP, IP, ICMP, BGP, OSPF, TCP, UDP, LDAP, DNS, DHCP, SNMP, SMTP, SIP, GRE, Netflow/cflowd and POP3
- System orchestration and control infrastructure elements, API integration frameworks, Openstack, DevOps or similar system control elastic compute environments
- Experience in designing and implementing technical solutions for network security, including firewall, proxy services, VPN/remote access, intrusion detection/ prevention, and software-defined network security
- Credible and persuasive
- Bachelors and fourteen (14) years or more of related experience
- IASAE Level I Certification Required (CISSP, CASP CE
Cybersecurity Architect Job Description
- Provide support to requirements definition, system design documentation, and development of network and system diagrams
- Understand FEDRAMP and FISMA requirements for enterprise system deployment
- Plan, design, and evaluate cybersecurity solutions, provide consultation and technical services on all aspects of cybersecurity, specifically continuous monitoring
- Architectural design reviews of the SIEM
- Responsible for maturity and stability of ArcSight platform
- Design custom SIEM solutions for administration and log integrations
- Leverages Agile practices to develop or identify new concepts, tools or systems to improve the overall security posture of the organization
- Works with the CIO organization and business units to promote security engineering practices and develop security reference architectures for new solutions
- Leads projects to pilot / test new security solutions in limited deployment to evaluate and recommend for large-scale deployment
- Leads design and deployment of new security solutions across the corporate enterprise
- Working knowledge of vulnerability scanners (IP360, Nessus) and interpreting results
- Ability to complete manual configuration review for different operating system (Linux, Solaris, Windows XP, Windows 7, Windows Server 2003, Windows Server 2008, Windows Server 2012) based on the CIS benchmarks
- Ability to complete manual configuration review for different database servers (MySql, MSSQL, Oracle) based on the CIS benchmarks
- Detail technical knowledge of database and operating system security
- Create new ways to solve existing enterprise security issues
- Ability to translate tactical issues and address them from a strategic perspective
Cybersecurity Architect Job Description
- Consult with Business Analysts and Advisors to understand the intended business requirements in driving the enhanced solution to be secure while still delivering the intended business value
- Work with the End-to-End Solution Architects and the Platform Architects to define security controls (document security requirements and applicable design options) to apply in delivering business value while reducing risk
- Provide guidance to Computer Systems Developers in delivering code and Computer Systems Engineers in configuring systems to address the stated security requirements and design
- Ensures architectures, technologies and solutions align with and integrate regulatory requirements
- Provides cybersecurity architecture and engineering services to major programs in the areas of cybersecurity controls
- Develops cybersecurity project architectures
- Gain understanding of the organization’s systems, networks, people, duties, and goals and ensure that they are documented in a standards-compliant framework
- This position can be a Salary Grade E03 or E04 level
- Implement security systems by specifying intrusion detection methodologies and equipment
- Upgrade security systems by monitoring security environment
- Must have expertise in security operations management, incident management, governance and solution development, delivery and engineering
- Experience with security protocols including SSL, HTTPS, PGP, AES, DES, SSH, SCP, Kerberos, IPSEC, PKI
- Proficient in nmap scanning (Slow Scans, Service detection, OS detection, namp Scipts)
- Effective ability to effectively interact with various levels of senior management is necessary
- Candidates must be fluent in the English language
- Security assessment reports
Cybersecurity Architect Job Description
- Participates in Enterprise Security Solutioning activities and is familiar with Solutioning processes, tools, and methodologies to support the security offerings
- Lead the design and test of complex security related systems to support ongoing deployment on classified and sensitive but unclassified (SBU) networks
- Support mission-focused infrastructure to ensure performance and availability of system and environment
- Perform testing of infrastructure changes in lab environment to simulate effects on production systems, prepare test plans, and properly document test results
- Schedule and coordinate system maintenance and upgrade activities to reduce impact to production environment
- Develop and maintain independent Virtual Server Infrastructure and administer storage, networking, compliance, & best practices
- Plan, monitor, and implement backup and recovery of Windows and UNIX/Linux OS’s
- Proactively monitor system performance and improve system architecture to maximize performance and eliminate potential problems
- Troubleshoot and/or provide technical support in the event of an issue
- Publish standards, policies, and procedures, and work with development staff to standardize environment and improve efficiency
- Knowledge of PCI, HIPPA, ISO 2700x and or FISCA security standards and frameworks
- Technical evaluation plans
- Technical reports for technical audience (System Admin, Network Admin, Database Admin, Application Developers)
- Technical reports for executive audience (Authorizing Official, CISO, System Owner)
- 5 years of cybersecurity services experience or related security technology or discipline such as vulnerability scanning, asset discovery, identify management, encryption, firewall technology or information protection
- 2 to 5 years’ experience shall be in a security design or technical evaluation
Cybersecurity Architect Job Description
- To define and to document the SW architecture of the cybersecurity modules
- To manage the activity of revision and documentation of the SW domain
- To participate when requested to the meetings with the customer supporting the relevant Feature Leader and SW Project Leader on technical discussion
- To support the Feature Reference during the effort estimation activities
- To provide technical governance in the team (internal and external) during the implementation process
- To support the SW development team during debug phase and bug analysis
- To support the integration and validation teams in validation activities
- To support the System Requirement Engineer and Feature leader in the change request process
- To specify and to select the basic SW technologies needed to achieve the target performances and to ensure the best cost/performance compromise
- To elaborate internal System Requirements related to SW in cooperation with the System Requirement Engineer and HW System Architect
- 2 years of experience providing network security services with an additional year of experience with general information technology support
- Functional expertise in two or more information assurance technologies or capabilities such as Vulnerability/Threat Assessments, Network Intrusion Detection, Secure Operations, Firewall Design & Deployment, Public Key Encryption, Virtual Private Networks
- Proficient in Windows and Linux operating systems and nmap scanning (Slow Scans, Service detection, OS detection, nmap Scipts)
- Preferred understanding of for different operating system (Linux, Solaris, Windows XP, Windows 7, Windows Server 2003, Windows Server 2008, Windows Server 2012) based on the CIS benchmarks
- Preferred understanding of different database servers (MySql, MSSQL, Oracle) based on the CIS benchmarks
- Create new ways to solve existing enterprise security issues and security assessment reports with technical evaluation plans