• Translate business and compliance requirements into practical, well-documented security architecture designs using recognized frameworks (e.g., ISO 27001, NIST, CIS) • Develop, document, and maintain consistent secure architectural patterns with an emphasis on cloud security (AWS, Azure, GCP) • Implement threat-informed design principles, integrating zero trust architectures and defensive depth strategies to address security gaps and enhance resilience • Maintain alignment between security policies, enterprise architecture principles, and client expectations • Conduct comprehensive risk assessments and threat modeling to evaluate existing or proposed architectures for vulnerabilities • Provide actionable mitigation strategies informed by a risk-based approach and evolving threat intelligence data • Participate in or support incident response initiatives, aiding in root cause analysis and the development of post-incident recommendations • Act as a trusted advisor to clients by engaging in technical discussions to inform strategic security decisions • Collaborate cross-functionally with development, operations, and engineering teams to validate that security controls are effectively implemented across the development lifecycle • Deliver technical insights in presentations, workshops, and reports tailored to both technical and executive audiences • Engage in audits, assessments, and reviews to ensure delivery meets strict alignment with industry frameworks • Provide clients with guidance on the implementation and enforcement of technical standards and cloud-specific security policies • Maintain up-to-date knowledge of regulations and frameworks such as NIS2 and DORA to address compliance risks and initiatives • Recommend improvements in security policies based on compliance evaluations and evolving risks • Contribute to the development of security roadmaps by delivering expert recommendations tailored to each client’s security objectives • Assess emerging technologies and threats, identifying opportunities to evolve architectural strategies through innovation and cutting-edge tools • Participate as an SME in pre-sales activities, assisting in defining technical collateral that supports project delivery

• Performs Command Cyber Readiness Inspections and cybersecurity vulnerability evaluations • Uses a variety of security techniques, technologies, and tools to evaluate security posture in highly complex computer systems and networks • Performs vulnerability and risk analysis and participates in a variety of computer security penetration studies • Analyzes and defines security requirements for computer and networking systems, to include mainframes, workstations, and personal computers • Recommends solutions to meet security requirements • Gathers and organizes technical information about an organization's mission goals and needs and makes recommendations to improve existing security posture • Provides enterprise-wide technical analysis and direction for problem definition, analysis and remediation for complex systems and enclaves • Provides workable recommendations and advice to client executive management on system improvements, optimization, and maintenance in the following areas: Information Systems Architecture, Automation, Telecommunications, Networking, Communication Protocols, Application Software, Electronic Email, VOIP and VTC • Competent to work at the highest level of all phases of information systems auditing

• Lead cybersecurity design practice for Federal and DoD clients • Oversee technical execution and documentation for projects • Manage staff and drive business development efforts • Ensure compliance with cybersecurity standards and conduct quality reviews

• Conduct independent security assessments of information systems and cloud environments, including IaaS, PaaS, and SaaS service models. • Apply comprehensive information assurance and cybersecurity knowledge to high-impact, complex technical assignments. • Plan, lead, and support major technology and security initiatives, ensuring alignment with organizational goals. • Evaluate security performance, risk posture, and assessment results; recommend corrective actions and improvements to support project success. • Serve as a technical expert across multiple concurrent security projects and initiatives. • Develop, implement, and maintain enterprise information assurance and security standards, policies, and procedures. • Coordinate, develop, and evaluate organizational security programs, ensuring compliance with regulatory and contractual requirements. • Recommend information assurance and security solutions to meet customer and mission needs. • Identify, document, report, and support the resolution of security incidents, violations, and vulnerabilities. • Support customers and stakeholders at senior levels in the development and implementation of security doctrine, policies, and procedures. • Apply cybersecurity expertise to government and commercial systems, including common user systems and specialized systems requiring enhanced security controls. • Provide integration and implementation support for computer system security solutions throughout the system lifecycle. • Analyze general information assurance-related technical issues and provide engineering and technical support to resolve identified problems. • Ensure all information systems remain secure, compliant, and operational, supporting continuous monitoring and risk management activities.