Security Engineer/Architect

Job Description: • Analyze complex technical findings and determine necessary resources needed to solve problem-sets across multiple cybersecurity and technical domains for the Department of Veteran’s Affairs systems • Lead teams to assess, develop and implement technical solutions to remediate vulnerabilities and other complex cybersecurity challenges • Facilitate working sessions and distill complex concepts into non-technical/common language • Partner with technical teams to develop and implement technical solutions • Design, build, and deploy secure cloud-native architectures and infrastructure components for VA information systems • Develop and maintain CI/CD pipelines with integrated security scanning, policy enforcement, and remediation tools • Implement secure infrastructure as code/policy as code using tools such as Terraform/CloudFormation, including writing and implementing PaC scripts • Align security architectures with Federal Zero Trust strategy, VA directives, and OMB policies • Enable automation of system telemetry and analytics pipelines for cyber situational awareness • Provide engineering and technical analysis on behalf of Agency Authorizing Officials (AOs) for System Security Plans (SSPs), Risk Assessments, Security Controls Traceability Matrices (SCTMs), and POA&Ms • Support system authorization and compliance activities including continuous monitoring and system audits • Conduct regular and ad-hoc analysis of security control findings and develop and implement remediation strategies Requirements: • Bachelor’s Degree in Computer Science, Engineering, or technical equivalent • 10 years of relevant technical experience or 18 years of total experience in lieu of degree • At least 2+ years acting as an ISSE or working as a security engineer for federal systems • Eight (8) years minimum of security engineering, DevSecOps, or cloud architecture experience • U.S. Citizenship and must be able to obtain a Public Trust security clearance from the U.S. Government • Rebellious attitude and willingness to challenge the status quo • Expertise in securing platforms hosted in AWS GovCloud and Azure Government • Strong hands-on implementation experience with most of NIST RMF, FISMA, FedRAMP, and Zero Trust architecture • Hands-on skills in IaC tools like Terraform and CI/CD tools such as GitLab/Jenkins, with ability to adopt new technologies if procured by the agency • Experience with network isolation tools such as Palo Alto Next Generation Firewalls (NGFW) and Juniper Mist Network Access Control (NAC) solutions or comparable • Excellent written and oral communication skills; ability to explain complex, technical information in easily understood terms; ability to brief Senior VA leadership regularly • Experience with IoT/IoMT security solutions is a plus Benefits: • one of the best benefits packages in the industry • financial support during the probationary period Apply tot his job