Organization: Accenture Federal Services
Location: Arlington, VA
We believe that great outcomes are everything. It’s what drives us to turn bold ideas into breakthrough solutions. By combining digital technologies with what works across the world’s leading businesses, we use agile approaches to help clients solve their toughest problems fast—the first time. So, you can deliver what matters most.
Count on us to help you embrace new ways of working, building for change and put customers at the core. A wholly owned subsidiary of Accenture, we bring over 30 years of experience serving the federal government, including every cabinet-level department. Our 9,000 dedicated colleagues and change makers work with our clients at the heart of the nation’s priorities in defense, intel, public safety, health and civilian to help you make a difference for the people you employ, serve and protect.
An Application & Data Security Architect who will work in the Information Security Governance Team in the CISO organization to ensure that IT solutions are built, tested, and deployed with secure designs and incorporating key business priorities. This role requires active collaboration with a variety of different technology teams within AFS IT, AFS Information Security, AFS Technology Growth Platform, and Accenture Information Security to promote secure engineering practices. You have expertise in one or more of the following areas: cloud security, application security, data security. You will need to work with IT and Security stakeholders to develop security requirements with a strong understanding of external regulations and best practices as well as unique business needs and capabilities.
Participate in IT application development and data architecture projects to provide security planning advice and requirements
Coordinate with Agile / DevOps teams to advocate secure coding and software architecture practices and escalate concerns
Validate IT software and platform architectures for security best practices and recommend changes to enhance security and reduce risks, where applicable
Determine baseline security configuration standards
Validate platform security configurations and review application changes
Articulate security concerns related to the solution being developed and requests review and guidance to minimize risks associated with the proposed solutions
Identify security requirements by evaluating business needs and technical requirements and relate them to required/desired security controls
Support the Risk Management Team as necessary in conducting security assessments of existing and potential vendors, contractors, and software
Acts as an advisor and business enabler to IT teams seeking guidance on security practices and controls to support secure solution design
Liaise with other security architects and security practitioners to share best practices and insights
Track developments and changes in the digital business and threat environments to ensure they are adequately addressed in security strategy plans and architecture artifacts
Stay up-to-date on the state of enterprise IT and IS tools, trends, and processes
Here's what you need:
U.S. Citizenship required
4 years of experience with secure application development and design
3 years of experience in cloud security and/or data security
Strong working knowledge of securing enterprise data architecture components (ETL, data warehousing, data governance, BI reporting)
Strong working knowledge of securing relational databases (SQL, MySQL, Oracle, etc.)
Hands-on experience with object-oriented programming and scripting
Strong understanding of web application network protocols (HTTP(S), TLS, SFTP, etc.) and API security
Understanding of the OWASP Top 10 application security risks and its mitigations
- 3 years direct architectural experience
- Prior experience reviewing and securing application architectures or APIs
- Knowledge of US federal security requirements related to regulations/standards such as NIST, FAR/DFARS, SOX, CMMC, etc.
- Knowledge of data privacy regulations and frameworks
- Strong experience with IT project management and the project lifecycle, both waterfall and Agile methodologies
- Certifications: CISSP, CISSP-IASSP, SSCP, SANS GIAC (e.g. GCIA, GCIH, GPEN), CASP, CCNP
Candidates who are currently employed by a client of Accenture or an affiliated Accenture business may not be eligible for consideration.
Applicants for employment in the US must have work authorization that does not now or in the future require sponsorship of a visa for employment authorization in the United States and with Accenture (i.e., H1-B visa, F-1 visa (OPT), TN visa or any other non-immigrant status).
Accenture is a Federal Contractor and an EEO and Affirmative Action Employer of Females/Minorities/Veterans/Individuals with Disabilities.
Equal Employment Opportunity
All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law.
Job candidates will not be obligated to disclose sealed or expunged records of conviction or arrest as part of the hiring process.
Accenture is committed to providing veteran employment opportunities to our service men and women.
Life at Accenture
Work where you're inspired to explore your passions and where your talents are nurtured and cultivated. Innovate with leading-edge technologies on some of the coolest projects you can imagine.
Learn more about Accenture
Our more than 500,000 people in more than 120 countries, combine unmatched experience and specialized skills across more than 40 industries. We embrace the power of change to create value and shared success for our clients, people, shareholders, partners and communities.