Cyber Systems Architect, Senior Advisor

Peraton is seeking an experienced Enterprise Cybersecurity Architect to define and lead the cybersecurity architecture strategy across the BNATCS program where cybersecurity is inseparable from safety. In this environment, a security failure is not merely a data breach — it can directly endanger human life, disrupt the national airspace, and compromise public safety. This role demands an architect who understands that every security design decision carries safety implications and who can embed that mindset across the entire integrated enterprise. 

In Peraton's role as a systems integrator, you will be responsible for securing the full spectrum of integrated systems — custom-developed, COTS, GOTS, and third-party vendor components — ensuring that cybersecurity controls are consistent, enforceable, and verifiable across organizational and technical boundaries. You will serve as the principal authority on enterprise cybersecurity architecture, guiding engineering teams, subcontractors, and program leadership through the unique challenge of protecting safety-critical systems in an evolving threat landscape. 

This role is based in Herndon, VA.

Responsibilities:

Security Architecture & Strategy 

• Define and maintain the enterprise cybersecurity architecture vision, encompassing network security, application security, data protection, identity and access management, and endpoint security across all integrated systems 

• Develop and govern cybersecurity reference architectures, standards, and design patterns that ensure consistent security posture across internal teams, subcontractors, and vendor-delivered components 

• Drive the enterprise-wide adoption of Zero Trust Architecture (ZTA), defining segmentation strategies, identity verification models, and least-privilege access controls appropriate for safety-critical environments 

• Lead cybersecurity technology roadmap development, identifying strategic investments, capability gaps, and modernization priorities across the security portfolio 

Safety-Critical Cybersecurity 

• Architect cybersecurity controls that account for the safety-of-life implications inherent in aviation systems — ensuring that security mechanisms do not introduce latency, single points of failure, or operational disruptions that could compromise airspace safety 

• Integrate cybersecurity requirements with safety engineering and system assurance processes, ensuring that security risk assessments are conducted alongside safety hazard analyses 

• Design resilience and continuity architectures — failover, graceful degradation, and recovery strategies — that maintain both security and safety posture during cyber incidents 

• Develop security architectures for real-time, low-latency, and high-availability systems where traditional security controls must be adapted to meet stringent operational performance requirements 

Integration Security & Governance 

• Conduct security architecture assessments across the integrated system portfolio, identifying vulnerabilities, trust boundary gaps, and inconsistencies in security controls between vendor and custom components 

• Define and manage security interface requirements and security-relevant interface control documents (ICDs) for all system-to-system data exchanges across the integrated enterprise 

• Conduct technical security reviews of vendor and subcontractor deliverables to ensure alignment with enterprise cybersecurity standards, secure coding practices, and compliance requirements 

• Establish and chair security architecture review boards to evaluate proposed designs, adjudicate security trade-offs, and enforce architectural standards across all integrated systems 

Compliance & Risk 

• Ensure enterprise-wide compliance with FedRAMP, RMF, NIST 800-53, FISMA, FAA cybersecurity directives, and agency-specific security policies 

• Lead threat modeling, risk assessments, and attack surface analyses across the integrated enterprise, with particular attention to safety-critical system boundaries 

• Collaborate with cybersecurity operations, incident response, and security monitoring teams to ensure that architectural designs support effective detection, response, and recovery capabilities 

• Architect security solutions for hybrid and multi-cloud environments (AWS GovCloud, Azure Government) that meet federal compliance requirements while supporting mission performance 

Leadership & Communication 

• Translate complex cybersecurity risks, architectural trade-offs, and safety-security interdependencies into clear, actionable guidance for executive stakeholders, program managers, and government customers 

• Mentor and guide security engineers, solution architects, and development teams to ensure cybersecurity and safety intent is preserved from design through implementation and integration 

• Drive cross-functional alignment across cybersecurity, software engineering, data architecture, infrastructure, and operations teams 

Required Qualifications 

• 15+ years of experience in cybersecurity architecture, security engineering, or enterprise IT security within large-scale programs 

• Bachelor's degree in Computer Science, Cybersecurity, Information Systems, Computer Engineering, or a related field (or 4 additional years of relevant experience in lieu of degree) 
• US Citizenship
• Public Trust Clearance - Ability to Obtain and Maintain 

• Demonstrated experience serving as a cybersecurity architect within a systems integrator environment, securing multi-vendor, multi-technology solutions across complex trust boundaries 

• Deep expertise in Zero Trust Architecture, network security design, identity and access management (IAM), and data protection strategies at enterprise scale 

• Proven experience securing safety-critical or mission-critical systems where cybersecurity failures carry operational or life-safety consequences 

• Mastery of FedRAMP, RMF, NIST 800-53, FISMA, and federal cybersecurity governance frameworks 

• Hands-on experience with security technologies including SIEM, SOAR, EDR, CSPM, IAM platforms, PKI, and network segmentation tools 

• Strong understanding of cloud security architecture on AWS and/or Azure, including cloud-native security services, landing zone security, and workload protection 

• Experience conducting threat modeling, risk assessments, and security architecture reviews across heterogeneous integrated environments 

• Familiarity with safety engineering principles (e.g., system safety, hazard analysis, fault tolerance) and their intersection with cybersecurity 

• ITIL certification and experience integrating cybersecurity governance with ITSM processes 

• Proven ability to lead cross-functional teams and drive security alignment across engineering, operations, and subcontractor organizations 

Preferred Qualifications 

• Experience securing FAA, aviation, or national airspace systems and familiarity with aviation-specific cybersecurity requirements and safety standards 

• Background in securing real-time systems, low-latency architectures, and edge computing environments where traditional security controls require adaptation 

• Experience with network security architecture (SD-WAN, secure transport, micro-segmentation) within large-scale integrated environments 

• Familiarity with AIOps, security observability platforms, automated threat detection, and security orchestration at enterprise scale 

• Experience with DevSecOps pipeline security — static/dynamic analysis, container security, software supply chain security, and secure CI/CD practices 

• Hands-on experience with model-based systems engineering (MBSE) or architecture modeling tools for security architecture documentation 

• Relevant certifications such as CISSP, CCSP, CISM, or GICSP (Global Industrial Cyber Security Professional) 

• Experience with EO 14028 (Improving the Nation's Cybersecurity) compliance 

• OMB M-22-09 Zero Trust implementation experience 

• HSPD-12 identity management 

• ICS/OT security assessment experience of FAA safety case development experience

#BNATCS