Security Enterprise Architect

Security Enterprise Architect

Job Category: Information Technology

Time Type: Full time

Minimum Clearance Required to Start: None

Employee Type: Regular

Percentage of Travel Required: Up to 10%

Type of Travel: Local

* * *

The Opportunity:

CACI is seeking an experienced Security Enterprise Architect to lead, design, implement, and optimize the DHS security infrastructure. The ideal candidate will have deep understanding of enterprise security concepts and architectures, automation, and extensive experience with a wide range of security tools and technologies.
 

The Security Enterprise Architect will be self-directed, organized, and results driven. In this role, the candidate will work as a mentor and teacher, working to identify skills gaps and working to fill them through training and performance improvement. The candidate will constantly look for a drive innovation through automation, conduct tool analysis, and evolving the DHS security landscape through a vetted roadmap.

Responsibilities:

• Develop and maintain a comprehensive security tool roadmap
• Design and implement automation strategies leveraging the suite of existing security tools
• Oversee the integration and management of various security tools and platforms, identifying opportunities for optimization
• Collaborate with cross-functional teams to ensure security best practices are followed
• Provide SME level technical expertise in incident response if needed
• Evaluate and recommend new security technologies and solutions
• Assist with the development and management of security architecture documentation
• Ensure compliance with DHS and industry standards and regulations
• Design, implement, and maintain complex Splunk deployments for security monitoring, threat detection, data ingestion, and search optimization
• Document and map the architecture of the current DHS security tool landscape and lead the development of a security engineering roadmap for future improvements.
• Develop and optimize Splunk searches, dashboards, and alerts to enhance security operations
• Define and manage index clustering, search head clustering, and forwarder deployment.
• Oversee end-to-end security tool deployments and configuration projects, including infrastructure planning, installation, and integration.
• Develop and maintain efficient data retention, archiving, and lifecycle policies in compliance with department requirements and standards.
• Conduct performance tuning and capacity planning across applicable tools
• Integrate tools such as CrowdStrike, Cribl, CyberArk, CA PAM, Suricata, Tenable, Tanium, Thales, CASB, Trellix, Axonius, and others.


Qualifications:
 

• Ability to attain DHS EOD
• ITIL V4 Foundations certification (or obtain in first 6 months)
• BA or equivalent +10 years of experience
• Minimum of 10 years of experience in IT security, with at least 5 years in a senior security architecture role
• CISSP certification
• Open Group Architecture Framework certification or similar
• Knowledge of scripting languages (Python, Bash) and regular expressions
• Knowledge of machine learning and advanced analytics in security contexts
• Any combination of the following certs: Security +, CEH, GPEN, OSEP, GSEC, etc.
• Proven experience as a Security Enterprise Architect or similar role
• Knowledge of security tools and technologies including: Splunk, Cribl, Swimlane or other SOAR technologies, Automation: Ansible, Operating Systems: RHEL, Email security: Proofpoint, Threat intelligence: Mandiant, Virtualization:, Certificate management: Venafi, Identity and Access Management: CyberArk, CA PAM, Network security: IDS, IPS, Corelight, Endpoint security: Crowdstrike, Tanium, Cloud security: CASB technologies, Vulnerability management: Tenable
• Strong experience in security tool roadmap development
• Expertise in implementing and managing automation in security processes
• Excellent problem-solving and analytical skills
• Strong communication and leadership abilities

-

________________________________________________________________________________________

What You Can Expect:

 

A culture of integrity.

At CACI, we place character and innovation at the center of everything we do. As a valued team member, you’ll be part of a high-performing group dedicated to our customer’s missions and driven by a higher purpose – to ensure the safety of our nation.

 

An environment of trust.

CACI values the unique contributions that every employee brings to our company and our customers - every day. You’ll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality.

 

A focus on continuous growth.

Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground — in your career and in our legacy.

 

Your potential is limitless. So is ours.

Learn more about CACI here.

________________________________________________________________________________________

Pay Range: There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn more here.

Since this position can be worked in more than one location, the range shown is the national average for the position.

The proposed salary range for this position is:

$104,200-$229,200

CACI is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, age, national origin, disability, status as a protected veteran, or any other protected characteristic.