Talent.com
Sr. Cyber Defense Architect

Sr. Cyber Defense Architect

DarkStar Intelligence LLCFort Meade, MD, US
23 hours ago
Job type
  • Full-time
  • Quick Apply
Job description

Sr.

Cyber Defense Architect  Location :

  • Fort Meade, MD  | Type : Full-Time | Clearance : TS / SCI CI polygraph required Overview We are seeking a Sr.
  • Cyber Defense Architect who brings together deep expertise across offensive cyber techniques, blue-team defensive operations, and Splunk engineering to build, evaluate, and strengthen enterprise security from the kernel to the application layer.
  • This is not a traditional SOC analyst or Splunk admin role.

This role requires someone who :

  • Understands how systems can be exploited at the OS, kernel, and application levels Knows how those attacks appear in logs, memory, and telemetry Can architect, tune, and maintain Splunk Enterprise ingestion and SPL analytics Can evaluate vulnerabilities based on real system impact , not just headlines Can communicate across red, blue, and purple team environments Can translate raw system behavior into accurate detections, policies, and risk decisions This is a highly technical, hands-on role aimed at building a more resilient, detection-driven security posture Key Responsibilities : Offensive Understanding & Adversary Insight Analyze and explain how exploits interact with CPU rings, kernels, drivers, and OS structures.
  • Identify exploitation paths, misconfigurations, and lateral movement opportunities.
  • Demonstrate attacker methods and help design the defenses to stop them.
  • Defensive Cyber & SOC Operations Investigate alerts with a deep understanding of how system internals behave under attack.
  • Conduct root cause analysis across logs, processes, memory, and network activity.
  • Build detection logic tied directly to attacker behavior, not generic signatures.
  • Threat Hunting Perform proactive, hypothesis-driven hunts across enterprise telemetry.
  • Map hunt results to attack chains and OS-level artifacts.
  • Identify blind spots and propose visibility improvements.
  • Splunk Architecture & Analytics Administer Splunk Enterprise, including data ingestion, parsing, indexes, and forwarders.
  • Develop high-fidelity SPL queries, dashboards, correlation searches, and threat detections.
  • Normalize logs for consistent detection across OS, network, cloud, containers, and application layers.
  • Ensure logs reflect true system behavior , not noisy or low-value events.
  • System & OS Internals Expertise Explain OS behavior from kernel mode to user mode and across the rings of control .
  • Understand memory management, syscalls, interrupts, drivers, services, and authentication flows.
  • Diagnose Linux and Windows artifacts that signal compromise or misconfiguration.
  • VM, Hypervisor, and Container Knowledge Understand how VMs virtualize hardware and how containers share the kernel.
  • Evaluate how vulnerabilities behave differently in VM vs containerized environments.
  • Assess whether a vulnerability is meaningful based on system architecture and exposure.
  • Policy Shaping & Risk Context Assess vulnerability severity in context—not every critical CVE is a critical risk.
  • Provide recommendations on which vulnerabilities are operationally relevant.
  • Shape detection, hardening, and response policies based on real technical behavior.
  • Support leadership by translating system-level findings into clear, actionable guidance.

    • Minimum Qualifications Clearance :

  • Active TS / SCI with CI Polygraph Required Technical Expertise Deep understanding of Linux and Windows internals , including kernel functions, process behavior, memory, and logging.
  • Strong hands-on experience with offensive tooling, exploitation concepts, and attacker tradecraft.
  • Strong defensive background in SOC operations, detection engineering, and threat analysis .
  • Ability to build and optimize raw SPL , develop detections, and administer Splunk data flows.
  • Understanding of network stacks, OSI model behavior in the OS, and how telemetry is generated.
  • Hybrid Skillset Requirements Comfortable switching between attacker mindset and defender mindset.
  • Able to articulate complex system interactions clearly and accurately.
  • Understands system impact and can differentiate theoretical vs practical risk.
  • Capable of building detections from first principles—understanding the behavior itself, not relying on feeds.
  • Soft Skills Strong communication skills across technical and non-technical stakeholders.
  • Ability to walk red, blue, and purple team members through system-level logic.
  • Detail-oriented thinker who can contextualize threats within mission needs.

    • Desired Background Senior Red Team Operator with Blue Team experience Senior SOC Analyst with OS internals and detection engineering background Splunk Engineer with adversary and system knowledge Cyber Defense Operator with purple team exposure Security Architect with hands-on operational experience Compensation & Benefits Salary Range :

  • $200,000 – $255,000 annually Final compensation will depend on experience, qualifications, internal equity, and market data.
  • DarkStar provides a competitive and comprehensive benefits package for full-time employees.

    • Additional Details Travel :

  • Minimal Work Environment : On-site at Fort Meade, MD Security Note All applicants must be U.S. citizens and maintain eligibility for a U.S. government security clearance.
  • About DarkStar Intelligence DarkStar Intelligence is a Service-Disabled Veteran-Owned Small Business (SDVOSB) committed to advancing national security through mission support and tradecraft development.

    • We prioritize both client satisfaction and employee retention, delivering high-quality, intelligence-based solutions grounded in our “Core Four” values :

  • Humility : We place mission success above personal recognition.

    • Passion :

  • We bring enthusiasm and dedication to every challenge.

    • Agility :

  • We adapt quickly to evolving operational needs.

    • Ownership :

  • We hold ourselves accountable for results and uphold the highest standards of excellence.
  • We are mission-driven and results-oriented, striving to make our country safer through every task we undertake.
  • Equal Employment Opportunity (EEO) Commitment At DarkStar Intelligence LLC, we are committed to maintaining a professional and legally compliant work environment where individuals are treated with respect and fairness.
  • We adhere strictly to all applicable Equal Employment Opportunity (EEO) laws and regulations.
  • Employment decisions at DarkStar are made solely on the basis of individual qualifications, performance, and business needs.

    • We prohibit discrimination in all aspects of employment—including hiring, compensation, promotion, training, discipline, and termination—on the basis of :

  • Race or color, Religion, Sex (including pregnancy, sexual orientation, and gender identity), National origin, Age, Disability, Genetic information, Veteran status.
  • Or any other status protected by applicable federal, state, or local law Our EEO standards are embedded in all employment practices to ensure compliance, fairness, and accountability.
  • We enforce a zero-tolerance policy for unlawful discrimination or harassment and encourage employees to report concerns without fear of retaliation.

    • EEO Flyer :

  • shorturl.at / abpNX Employee Benefits DarkStar Intelligence provides a competitive and comprehensive benefits package to support the health, financial stability, and personal well-being of our team members.

    • Core Benefits for employees :

  • Health Coverage : Medical, dental, and vision plans Income Protection : Life insurance, short-term disability, and long-term disability Retirement Planning : 401(k) plan with employer contributions Work-Life Support : Employee Assistance Program (EAP) and legal services Paid Leave : Generous PTO, 11 paid federal holidays, and one floating holiday Voluntary Benefits : Legal & Identity Protection : LegalShield and IDShield Additional Insurance : Whole life, accident, and critical care coverage We believe in recognizing and supporting the professionals who make our mission possible.
  • Your well-being is an investment in our collective success.
  • Powered by JazzHR
    • Create a job alert for this search

    Cyber Architect • Fort Meade, MD, US

    Related jobs
    • Promoted
    Chief Cloud Architect and Lead Infrastructure SME

    Chief Cloud Architect and Lead Infrastructure SME

    MediumAlexandria, VA, United States
    Full-time
    Must possess a favorably adjudicated Tier 5 investigation.Possess one of the following certifications : CASP+, CCNP Security, CISA, CISSO, GCIA, GCSA, GCLD, GICSP, GSLC, CISSP, CISSP-ISSAP, CISSP-IS...Show moreLast updated: 30+ days ago
    Security Architect

    Security Architect

    SERVISS LLCWashington, DC, US
    Full-time
    Quick Apply
    About SERVISS At SERVISS, we deliver cutting-edge cybersecurity and IT solutions to government and commercial clients, with a mission to secure systems, data, and critical infrastructure through in...Show moreLast updated: 30+ days ago
    • Promoted
    Cybersecurity and Cryptography Architect, Senior

    Cybersecurity and Cryptography Architect, Senior

    Booz Allen HamiltonArlington, VA, United States
    Full-time +1
    Connect with others in our people-first culture and enhance our collective ingenuity.Learn how well support you as you pursue a balanced, fulfilling life. Discover what to expect during your journey...Show moreLast updated: 30+ days ago
    • Promoted
    Network Security SME, Lead

    Network Security SME, Lead

    Booz Allen HamiltonWashington, DC, United States
    Full-time +1
    Network Security SME, Lead page is loaded.Apply locations Washington, DC time type Full time posted on Posted 5 Days Ago time left to apply End Date : November 17, 2025 (30+ days left to apply) job ...Show moreLast updated: 30+ days ago
    • Promoted
    Chief Cloud Architect and Lead Infrastructure SME

    Chief Cloud Architect and Lead Infrastructure SME

    PingWindAlexandria, VA, United States
    Full-time
    Must possess a favorably adjudicated Tier 5 investigation.Possess one of the following certifications : CASP+, CCNP Security, CISA, CISSO, GCIA, GCSA, GCLD, GICSP, GSLC, CISSP, CISSP-ISSAP, CISSP-IS...Show moreLast updated: 30+ days ago
    • Promoted
    Director - Cybersecurity

    Director - Cybersecurity

    The Security Executive CouncilAlexandria, VA, United States
    Full-time
    The Director - Cybersecurity is responsible for leading Five Guys cybersecurity strategy, governance, and operations to protect critical assets, data, and infrastructure. This executive-level role o...Show moreLast updated: 15 days ago
    • Promoted
    Computer Network Defense Lead

    Computer Network Defense Lead

    Intrepid Solutions and Services LLCBethesda, MD, United States
    Full-time
    Intrepid Solutions and Services LLC.Be among the first 25 applicants.Intrepid Solutions and Services LLC.Get AI-powered advice on this job and more exclusive features. We are seeking an experienced ...Show moreLast updated: 30+ days ago
    • Promoted
    CyberArk Engineer

    CyberArk Engineer

    Leidos IncOdenton, MD, United States
    Full-time
    BLUF : Applicants must have prior experience administering CyberArk components as well as a Secret clearance or higher to be considered. CyberArk for Privileged Access Management (PAM) within the Def...Show moreLast updated: 17 days ago
    • Promoted
    Sr. ISSE

    Sr. ISSE

    Leidos IncAnnapolis Junction, MD, United States
    Full-time
    National Security Sector's (NSS) Cyber & Analytics Business Area (CABA).Our talented team is at the forefront in Security Engineering, Computer Network Operations (CNO), Mission Software, Analytica...Show moreLast updated: 30+ days ago
    • Promoted
    Sr. Security Architect (Zero Trust)- Hybrid Flexibility

    Sr. Security Architect (Zero Trust)- Hybrid Flexibility

    MediumBethesda, MD, United States
    Full-time
    We are seeking a highly skilled.The ideal candidate will have a deep understanding of enterprise security design, identity management, network segmentation, and cloud / hybrid security controls.This ...Show moreLast updated: 7 days ago
    PEO Cyber Solutions Architect (CSE / A, Senior)

    PEO Cyber Solutions Architect (CSE / A, Senior)

    GormatAnnapolis Junction, MD, USA
    Full-time
    Quick Apply
    Provide architectural leadership for enterprise cyber solutions.Lead cross-functional technical teams to align engineering deliverables with organizational cyber strategy.Guide system engineering l...Show moreLast updated: 30+ days ago
    • Promoted
    Cyber Network Defense Analyst

    Cyber Network Defense Analyst

    Leidos IncWashington, DC, United States
    Full-time
    We empower our teams, contribute to our communities, and operate sustainable.Everything we do is built on a commitment to do the right thing for our customers, our people, and our community.Our Mis...Show moreLast updated: 15 days ago
    • Promoted
    Director of Offensive Cyber Research

    Director of Offensive Cyber Research

    TwentyWashington, DC, United States
    Full-time
    Twenty is seeking an exceptional Director of Offensive Cyber Research for an in‑office position in its Arlington, VA office to lead and shape our entire offensive cyber research organization.We’re ...Show moreLast updated: 3 days ago
    • Promoted
    Principal Cyber Threat Hunter

    Principal Cyber Threat Hunter

    Leidos IncAdelphi, MD, United States
    Full-time
    The Leidos Digital Modernization group has a career opportunity for a.This position will support a large Department of Defense (DOD) Cyber Security Service Providers (CSSP) and is responsible for p...Show moreLast updated: 30+ days ago
    • Promoted
    Senior Security Architect

    Senior Security Architect

    TradeJobsWorkForce22240 Arlington, VA, US
    Full-time
    Senior Security Architect Job Duties : Enhances security team accomplishments and competence by planning deliver...Show moreLast updated: 30+ days ago
    • Promoted
    Chief Cloud Architect and Lead Infrastructure SME

    Chief Cloud Architect and Lead Infrastructure SME

    PingWind Inc. (SDVOSB)Alexandria, VA, United States
    Full-time
    Chief Cloud Architect and Lead Infrastructure SME.Chief Cloud Architect and Lead Infrastructure SME.Chief Cloud Architect and Lead Infrastructure SME. Be among the first 25 applicants.Chief Cloud Ar...Show moreLast updated: 30+ days ago
    Security Architect (IASAE II) / Cybersecurity Architect

    Security Architect (IASAE II) / Cybersecurity Architect

    Nationwide IT ServicesArlington, VA, US
    Full-time
    Quick Apply
    Security Architect (IASAE II) / Cybersecurity Architect Location : .Remote Clearance : Active Secret Clearance Required Employment Type : Full-time Performance-Based Position Description Overview Na...Show moreLast updated: 30+ days ago
    • Promoted
    • New!
    Sr. Architect

    Sr. Architect

    407 Management LLCLaurel, MD, United States
    Full-time
    Read on to find out what you will need to succeed in this position, including skills, qualifications, and experience.Control project from start to finish to ensure high-quality, innovative, and fun...Show moreLast updated: 9 hours ago