Security Community Architect at Red Hat focusing on open source security and governance. Collaborating with stakeholders to implement security policies and enhance community engagement.
About the role
- Security Architect engineering enterprise and cloud security controls for a civilian federal agency. Seeking skilled professionals familiar with Zero Trust Architecture and vulnerability management.
Responsibilities
- Design and implement secure architecture solutions across cloud, on Prem, and hybrid environments.
- Develop security standards, policies, and technical guidelines aligned with organizational and regulatory requirements.
- Conduct architecture reviews, threat modeling, and risk assessments for new and existing systems.
- Collaborate with engineering, DevOps, and product teams to ensure security requirements are integrated into system designs.
- Implement, and operate ICAM solutions, including identity lifecycle management, authentication, authorization, and access governance.
- Implement Zero Trust Architecture in alignment with NIST SP 800-207, emphasizing continuous verification, least privilege, and identity-based access.
- Deploy and support SASE / SSE capabilities, including ZTNA, Secure Web Gateway, CASB, and Firewall-as-a-Service.
- Support PIV smart card and certificate-based authentication across users, devices, applications, and cloud environments.
- Operate, and maintain PKI and certificate management services, including certificate issuance, renewal, revocation, and automation.
- Engineer and secure cloud environments (AWS, Azure, or GCP), focusing on identity, networking, logging, and secure configurations.
- Perform vulnerability scanning, risk prioritization, and coordination of remediation activities.
- Support patch management efforts by validating system configurations and verifying remediation of security findings.
- Monitor security and identity events using SIEM and related tools; investigate and respond to security incidents.
- Participate in incident response activities, including alert triage, investigation, containment, eradication, and recovery.
- Develop and maintain incident response playbooks, runbooks, and post-incident documentation.
- Develop and maintain security engineering documentation, standards, and operational runbooks.
- Collaborate with IT, cloud, and application teams to integrate security controls into system designs and CICD pipelines.
- Provide compliance and audit support, including technical evidence for ATO, continuous monitoring, and remediation activities.
Requirements
- Strong knowledge of network security, application security, and cloud security architecture.
- Hands-on experience with major cloud platforms (AWS, Azure, or Google Cloud) and their native security services.
- Expertise in security frameworks such as NIST, ISO 27001, CIS Benchmarks, OWASP, and Zero Trust.
- Proficiency with identity and access management (IAM), SSO, MFA, and federation technologies.
- Solid understanding of encryption, PKI, firewalls, WAFs, SIEM, EDR, and vulnerability management tools.
- Proven experience in identifying and remediating vulnerabilities in both Linux and Windows environments with a strong understanding of compliance requirements.
- Proficiency in using security tools such as Nessus, ORCA, AWS Security Hub, Azure Security Center, Google Cloud Security Command Center, and other vulnerability scanning tools.
- Familiarity with Red Hat Satellite server, WSUS, IBM BigFix or other similar toolsets.
- Knowledge of scripting languages such as Python, Bash, PowerShell, Ansible for automation of security remediation tasks.
- Excellent problem-solving skills and the ability to work under pressure in a fast-paced environment.
- Must be a US citizen.
- Must be able to obtain public trust prior to starting work.
Benefits
- full benefits
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Mid - Level Multi Operations Specialist managing technical support for video security systems at Boeing. Responsibilities include system administration, troubleshooting, and project management in complex environments.
Senior Security Analyst assessing security controls and risks for governance, risk, and compliance. Collaborating with teams to strengthen security posture while ensuring compliance with frameworks like ISO 27001.
Technical Support role in industrial safety for Grifols, a global healthcare leader. Responsibilities include compliance management and operational support for industrial safety.
Senior Information Security Advisor ensuring patient data protection and implementing security frameworks at Novo Nordisk. Leading strategic initiatives to safeguard healthcare data and maintain trust across the organization.
Senior Analyst handling AMS support for SAP Security with Deloitte. Focus on troubleshooting, solution design, and team leadership in a diverse working environment.
Identity Security Specialist developing custom identity management solutions at Lincoln Electric. Leading integration with systems like Active Directory and ensuring compliance with security policies in a global context.
OT Security Consultant at Sword delivering security across operational and industrial environments. Leading assessments and improvement plans while collaborating with engineering and asset teams.
Lead cybersecurity operations for Operational Technology at NTT DATA Romania. Focus on security threat detection, response, and optimization in various customer environments.
Offensive Security Engineer at Replit leading penetration testing and security for cloud - native platform. Focused on securing AI - integrated system through advanced adversarial tactics and code analysis.