Security Architect

🚨 Hiring: Security Architect📍 Location: Brooklyn, NY Experience: 8+ Years🧑 💻 Work Mode: Hybrid (At least 3 days onsite required)📅 Duration: 3 years (+ 2 years extension option)Develop and implement Zero Trust and Micro-Segmentation architectures.Eliminate Implicit Trust and Enforce Strict Access Control.Audit Zero Trust Environment.Security Objective: Reduce attack surface and limit reach of attackers.📋 Tasks Breakdown✔ Review services in all environments and locations relying on implicit trust✔ Determine if any services or resource have access to elevated privileges and determine controls needed reduce risk while allowing sufficient rights for operations once the data center project is completed✔ Apply Least Privilege Access for applications and services✔ Determine if services and applications with elevated privileges can undergo additional segmentation to limit access and risk✔ Determine impact to agency and risk of compromise for areas with elevated privileges✔ Develop procedures to audit and maintain Implement zero trust and micro segmentation architectures✔ Develop zero trust security patterns to distribute to application team, infrastructure admin and program areas✔ Develop Audit and Remediation tools to monitor and enforce zero trust rules🛠 Technical Skill Matrix✔ Work experience with company✔ 5+ years of experience in Tiered and Environmental Segmentation / Policy Development✔ 5+ years of experience in Application Dependency Mapping✔ 5+ years of experience in Dynamic Access Control / Continuous Trust Monitoring✔ 5+ years of experience in Micro-Segmentation / Software Defined Networking✔ 5+ years of experience in Agile Environment Collaboration✔ 5+ years of experience in Project Management✔ 5+ years of experience in Cross-Functional Team Collaboration✔ 5+ years of experience in Client Engagement & Communication✔ Tools Experience (5+ years preferred):CISCO, Palo Alto, Fortinet, Bluecoat, Web Application Firewall (WAF) / CDN, Splunk SIEM, Microsoft Defender, Google SecOps, CrowdStrike, PowerShell, Prowler, Rapid7, STRIDE📩 If you have strong experience in Security Architecture, Zero Trust implementation, Micro-Segmentation, and Government environments, please share your resume before the submission deadline.