Available Positions
Tittle: Zero Trust Enterprise Architect 
Location: Washington, DC or Houston, TX​
Client: Federal Agency
Job Description:
We are seeking a highly motivated and experienced Enterprise Architect with a strong understanding of Zero Trust principles to join our growing security team. Work with clients to deliver designs, implementing, and maintaining a secure enterprise architecture that aligns with Zero Trust security best practices.

Identify Zero Trust Capabilities:
 Assist with the identification of existent zero trust capabilities and gaps
in each OpDiv:
  • Engage with each OpDiv to conduct a detailed analysis of each environment.
  • Review documentation and key artifacts to recognize current zero trust status and
  • implementation plans.
  • Conduct assessments, document results, and propose solutions to mitigate gaps.
  • Provide report on findings and communicate and share results with Government  stakeholders  
Establish Zero Trust Roadmap:
Assist in establishing an enterprise ZTA roadmap:
  • Collaborate with HHS to develop an enterprise road map.
  • Align zero trust goals of each OpDiv with the department wide goals.
  • Draft and submit the enterprise ZTA roadmap  
  • Provide final enterprise ZTA roadmap within 30 business days after Government’s approval.
  • Identify possible solutions that can be offered at the enterprise level based on individual OpDiv assessments
  • Draft a high-level implementation plan and suggest recommended technologies
  • Provide the final high level implementation plan and suggest recommended technologies  
  • Develop a risk register to identify and track program risks and submit for review
  • Maintain risk register and provide monthly updates by the 5th business day.
Review and Maintain Zero Trust Scorecard
Review and <aintain the overall HHS scorecard as well as the ZTM
scorecard for each OpDiv 
  • Review and validate data collected for each HHS system and update ZTM scorecards to reflect actual ZTM level. Then provide report on assessments results and updated ZTM scorecards  
  • Develop and maintain a process automation to collect data for ZTM scorecards
  • Provide initial and annual training for users reporting scores on the tool.
  • Update ZTM scorecards by the 10th business day quarterly.
  • Assess scorecard results to develop reports on current scores and how to use the  information collected to improve ZT maturity.
  • Identify opportunities to improve reporting accuracy through automated collection methodology or other adjustments.
  • Work with OpDivs across HHS to identify gaps in reporting and establish a plan to mature ZT capabilities.
  • Identify opportunities to address maturity concurrently across as many areas of HHS as possible.
  • Ensure that all architecture artifacts developed for this requirements comply with NIST SP 800-207, “Zero Trust Architecture.”
  • Provides support the development, design, modernization, and migration activities within a HHS multi-cloud environment
  • This role demands a blend of technical expertise, strategic vision, leadership, and effective communication skills to drive successful outcomes for the organization
  • Stay updated with evolving cyber threats, vulnerabilities, and security trends. Review and analyze the organization's existing security infrastructure and identify potential weaknesses
  • Develop and design a comprehensive Zero Trust security framework aligned with the organization's business objectives. This includes defining access policies, network segmentation, identity and access management (IAM), encryption standards, and continuous monitoring strategies
  • Collaborate with IT teams to implement Zero Trust initiatives such as such as HHS Zero Trust Strategy,  Zero Trust Architectures, and DevSecOps across the organization's network, applications, databases, and cloud environments to improve an agencies security posture.
  • Ensure seamless integration of security protocols without disrupting business operations
    Conduct risk assessments and identify potential attack vectors.
  • Develop strategies and protocols to mitigate risks associated with unauthorized access, insider threats, and external breaches
  •  Implement robust IAM solutions such as multi-factor authentication (MFA), least privilege access, and identity governance. Ensure proper authentication and authorization mechanisms for all users, devices, and applications
  • Design, implement, and support network segmentation strategies to create micro-perimeters and restrict lateral movement within the network. Employ segmentation to isolate critical assets and limit the spread of potential threats
  •  Establish mechanisms for continuous monitoring of network traffic, user behaviors, and access patterns. Develop incident response plans and protocols to promptly address security incidents and breaches.
  • Ensure success and compliance with industry regulations, standards, and organizational policies. Establish governance frameworks to maintain adherence to Zero Trust principles across the organization
  •  Work closely with cross-functional teams, including security analysts, network engineers, developers, and business stakeholders. Communicate Zero Trust principles, requirements, and best practices effectively. Create documentation, guidelines, and training materials to educate employees and stakeholders about Zero Trust concepts, policies, and procedures
Qualifications
  • 10+ years of experience defining, establishing, and leading business development and solution delivery with Government or Commercial clients in a fast–paced environment
  • 10+ years of experience across cyber security and information technology
  • Applicant will have extensive knowledge and experience of Zero Trust frameworks to protect critical assets and data from evolving cyber threats
  • 10+ years of hands-on experience within the DHS Environment or HHS Environment
  • 8+ years of experience in Security Architecture or Engineering 5+ years of experience with platforms, such as AWS, Azure, GCP, or Oracle, or Red Hat or VMware NSX or Scale Computing
  • 5+ years of experience with DLP, Data Privacy, Disaster Recovery, and other Data Security Strategies
  • 8+ years of developing systems requirements and design specifications
  • 10+ years of experience regarding industry best practices in cyber security, threat management and proactive avoidance with both cloud-based and on-premises solutions
  • Experience leading and collaborating with technical teams of diverse IT related skill sets
  • Extensive knowledge and understanding of various cloud technologies and deploying those services in Government environments
  • Hands-on experience architecting, and serving as an escalation point to senior engineers on complex cloud solutions
  • Strong attention to detail, multitasking, and analytical skills
  • Ability to work independently and as part of a team
  • Exemplary communication, analytical skills, and technical knowledge across the client environment
 Preferred Qualifications:
  • Experience with cloud-based architecture, including AWS or Azure or GCP or Orcle or IBM
  • Experience with security automation and orchestration tools Experience with security frameworks, such as NIST CSF, MITRE ATT&CK, and CISA's EINSTEIN framework
  • Experience with security automation and orchestration tools Knowledge of network principles, such as Micro segmentation, ZTNA, SASE, SDDC, SDP, or WAN/SD-WAN
  • Knowledge of security frameworks that inform risk and design considerations
  • Ability to leverage client relationships at senior levels within the market across key stakeholders CISSP, CISA, Security+, CCNA Security, or relevant security or IAM certification
V3Main offers excellent careers opportunities for professionals who possess outstanding interpersonal skills and are results-oriented team players.  If you are interested to join our team,  please submit your resume and cover letter on the Apply page or email it to [email protected].