• Provides technical leadership and is responsible for determining the direction for the IT architecture, standards, design and implementation approaches for the company’s application systems • Creates, evaluates and implements plans and design proposals for high impact IT solutions • Lead security architecture, design and management oversight of endpoints and servers • Lead security projects by designing, researching, proposing and implementation of new endpoint and server security controls • Provide endpoint and server security consultation and oversight for customer connections and/or merger and acquisitions • Conduct security architecture reviews of existing and proposed systems, identifying vulnerabilities and recommending appropriate controls and mitigation strategies

• Write security control implementation statements, specifically documenting Microsoft 365 implementation. • Perform security scans, review scan results, and provide application architecture consultation. • Protect the organization's information and information systems from unauthorized access, use, disclosure, disruption, modification, perusal, inspection, recording and destruction. • Manage security initiatives for cloud-based environments, with a strong emphasis on Microsoft Azure, O365, and Intune. • Conduct and maintain vulnerability scanning on networks; systems and applications. • Produce actionable; risk-based reports on security assessment results. • Assist with vulnerability remediation when necessary. • Continuously improve risk models; metrics; reports; processes; and activities. • Provide information security solutions compliant with the Risk Management Framework (RMF). • Collaborate with the customer security organization to ensure RMF processes are followed, policy is translated to operational procedures, proper tools are leveraged and verification that security policy and procedures are enforced.

• Communicate with prospective and existing clients to understand their security needs and develop engagement plans to satisfy their requirements. • Lead and perform cloud and infrastructure technical security assessments (Microsoft 365, Microsoft Azure, Google Workspace, AWS, Active Directory, etc.) • Translate organizational security documentation into operational practices. • Perform hands-on keyboard remediation activities in response to security-focused assessments. • Develop detailed reports with actionable recommendations to address security gaps and ensure remediation efforts align with organization needs and service level objectives. • Understand and apply security framework controls aligning to industry frameworks such as NIST, CIS, ISO, or MITRE ATT&CK. • Design, evaluate, and implement secure network architectures. • Provide assessments of emerging technology to facilitate solutions and recommendations for future architectural requirements that are cost effective and reduce risk while enhancing security. • Document and present findings and recommendations to clients, including C-Suite and board-level executives, in a professional manner. • Maintain relationships with clients post-assessment in order to assist and advise as they continue to build and improve their security. • Create, collaborate, and/or assist in maintaining internal tooling to enhance or assist in performing duties, as appropriate. • Train and mentor other employees in order to build the company's overall capacity and capability. • Perform business development tasks from the initial call with a referral or repeat client, through the proposal stage, and finally, to contract execution.

Role Description Implement and maintain comprehensive security controls for IRS Criminal Investigation's digital forensics infrastructure. Ensure FISMA High compliance while supporting sensitive law enforcement operations requiring advanced threat detection and response capabilities. Qualifications - Bachelor's degree in Cybersecurity, Information Assurance, or related field - 5+ years information security experience in federal environments - 3+ years FISMA High implementation and compliance management - Strong background in NIST 800-53 controls and Zero Trust Architecture - Experience with security automation and orchestration platforms - Demonstrated expertise in threat hunting and incident response - Knowledge of Treasury security requirements and criminal investigation sensitivities - Current or previous experience with the IRS Requirements - Security certifications required: CISSP, CISM, or similar advanced certification - NIST framework and FISMA compliance certifications preferred - Continuous monitoring and SIEM certifications beneficial Key Responsibilities - Maintain FISMA High security controls and NIST SP 800-53 compliance - Implement continuous monitoring and automated security assessments - Develop and execute security hardening procedures - Support ATO documentation and security change request processes - Deploy AI-driven security features and threat detection tools - Conduct regular vulnerability assessments and penetration testing coordination Benefits - Health, dental, and vision insurance - 401(k) retirement plan - Paid time off (PTO) and holidays - Group Term Life and Accidental Death and Dismemberment Insurance - Voluntary Term Life Insurance - Short and Long-term disability insurance