Cybersecurity Architect Compliance Engineer Lead II

About Zen:

Zen Strategics is a minority-owned SBA 8(a) specialized consulting firm, providing innovative Cybersecurity, Cloud Migration, and Information Technology Modernization solutions for the US Federal Government. Zen Strategics is currently seeking qualified candidates to fill the position of the Cybersecurity Architecture, Compliance, and Engineering (ACE) Team Lead on the Department of Education (DoED)’s Cybersecurity and Privacy Support Services (CPSS) program at the Financial Student Aid (FSA) Office.

Job Description:

We are seeking a functional leader with a background in cybersecurity architecture and systems engineering. The ACE Team Lead serves as the lead architect and manages a small (20) group of cybersecurity engineers and subject matter experts.

As the lead architect, the ACE Lead is responsible for the following tasks:

• Map cybersecurity and privacy requirements and corresponding system requirements to the enterprise architecture including reference models, segment architectures, and solution architectures.
• Serve as the primary liaison between the enterprise architect and the systems security or privacy engineer.
• Coordinate with system owners, common control providers, and system security or privacy officers on the allocation of controls.
• Advise authorizing officials, chief information officers, senior accountable officials for risk management or risk executive (function), senior agency information security officers, and senior agency officials for privacy on a range of security and privacy issues.
• Review and develop high-level architecture designs and diagrams.

As the functional leader for the ACE Lead reports directly to Project Manager for Zen Strategics and is responsible for task management of the ACE team whose scope of work includes the following:

• Engineering: Provides full-service engineering and architecture support to design and document ongoing and future initiatives to enhance the security monitoring and incident response capability. The support is focused on implementation, optimization, administration, and integration of security tools and technology, design, and documentation, and developing innovative solutions to keep the SOC on the cutting edge of technology.
• CyberHygiene: Provides continuous monitoring of FSA networks and systems. This includes the operational, management and control of the FSA CDM program. The CDM program's primary function is to reduce the risk associated with information systems by proactively scanning the enterprise for potential weaknesses, such as: vulnerabilities in unpatched systems, misconfigurations, unaccounted for network aware systems, and the presence of unauthorized software and disseminating scan results to ISSOs, ISOs, and the CISO.
• Red Team: Coordinates and conducts all penetration testing on systems operated by and on behalf of FSA.

The successful candidate will have strong analytic and communication skills and work well in a dynamic, multi-disciplinary environment.

Essential Skills:

• Ability to lead multidisciplinary teams, effectively managing tasks and ensuring on-time delivery of the highest quality work products and contract deliverables
• Knowledge of configuration management, hardware/software asset management, engineering lifecycle, Tier III support service
• Knowledge of cybersecurity support services and their processes – CDM, pen testing, SOC operations, etc
• Knowledge of cybersecurity processes such as POA&Ms, risk management, ATO, etc.
• Knowledge of asset management data base, preferably CSAM
• Knowledge of SIEM solutions and cybersecurity operations architecture
• Knowledge of requirements management
• Understanding of cloud services and concepts such as IaaS/SaaS
• Knowledge of federal government procurement processes
• Knowledge of network infrastructure including firewalls
• Ability to produce system design documents and architectural diagrams
• Understanding of security controls, specifically NIST SP 800-53

Qualifications

• Bachelor’s degree or higher computer science or information systems
• Experience as technical lead or other demonstrated leadership role

Desired Skills

• Knowledge of security tools such as Splunk Tanium Tenable, Fortify, etc.
• Knowledge of industry security standards for security such as FISMA, NIST and DISA STIG
• Familiarity with collaboration tools (SharePoint, Teams, Visio, PowerPoint, JIRA) and project management concepts (Agile, Scrum, Traditional, et