IRS Cybersecurity Enterprise Architect (IRS MBI, Public Trust Required)

IRS Cybersecurity Enterprise Architect SME Key Personnel | Full-Time | Hybrid/Onsite – New Carrollton, MD | Public Trust MBI Required

Overview

Broadway Ventures is pursuing a federal cybersecurity contract with the Internal Revenue Service and is seeking a senior Cybersecurity Enterprise Architect to serve as a Key Personnel designee. This individual will be embedded directly within the IRS IT Cybersecurity Engineering & Architecture Branch, serving as a chief technical adviser to senior IRS leadership and driving enterprise-wide cybersecurity modernization initiatives. This is a high-visibility role with direct impact on one of the largest and most complex federal IT environments in the government.

Responsibilities

• Design, develop, and maintain the IRS enterprise cybersecurity reference architecture aligned with Zero Trust Architecture (ZTA) principles and DHS Continuous Diagnostics and Mitigation (CDM) program requirements
• Serve as the primary architecture adviser to IRS CTO and CIO-level leadership on cybersecurity strategy, technology investment, and modernization roadmap
• Lead planning and design efforts for CDM capability implementation across asset management, identity credentialing, network security, and data protection domains
• Provide technical leadership across all five ZTA pillars: identity, device, network, application, and data
• Evaluate and recommend emerging cybersecurity technologies for adoption and integration into the IRS hybrid cloud/on-premises environment
• Identify and drive tool consolidation efforts to reduce redundancy and technical debt across the security tool stack
• Participate in architecture review boards, technical working groups, and governance bodies
• Develop and maintain architecture documentation, design artifacts, and technical standards
• Ensure security-by-design is embedded across all IRS systems, applications, and cloud migrations
• Support evaluation of Palo Alto product integrations (Prisma, XSIAM) and Microsoft O365 G5 security suite enhancements including DLP and MCAS

Required Qualifications

• 15–20 years of hands-on experience in cybersecurity architecture within large-scale enterprise environments
• Bachelor's degree in Information Technology, Cybersecurity, Computer Science, or related field (equivalent experience considered)
• Deep expertise in Zero Trust Architecture frameworks including CISA ZTMM 2.0 and NIST SP 800-207
• Demonstrated experience with CDM program implementation in a federal environment
• Proficiency with enterprise endpoint protection platforms including Qualys, Palo Alto XDR, and Microsoft Defender for Endpoint (MDE)
• Experience with log management and analytics platforms including Splunk, Guardium, and VMware
• Strong background in identity and access management, authentication technologies (F5, PIV/smart card, VLDAP), and enterprise directory integration
• Knowledge of federal IT security requirements including FISMA, NIST SP 800-53, FedRAMP, EO 14028, and OMB M-22-09
• Experience supporting hybrid cloud and on-premises enterprise infrastructure
• Ability to plan, test, and scale deployments in high-availability enterprise environments
• Excellent written and verbal communication skills with demonstrated ability to brief senior government leadership

Preferred Qualifications

• Prior experience supporting IRS or Treasury Department cybersecurity programs as a prime, subcontractor, or second-tier subcontractor
• Intimate knowledge of IRS log architecture, data center environments, or IRS-specific systems (BEARS, TIGTA, LOGC)
• Experience supporting a federal security operations center (SOC)
• Registration or familiarity with the DHS CISA CDM Approved Products List (APL)
• Relevant certifications such as CISSP, SABSA, TOGAF, or equivalent

Clearance

Public Trust — Medium Background Investigation (MBI) required. Candidates with an existing favorable adjudication on file with FPS or IRS, or a prior MBI within the last year at the same or lower risk level, are strongly preferred. Candidate must be able to obtain Staff-Like Access (SLA) within 60 days of contract award. Pre-screening will be conducted at contractor expense.

Work Schedule and Location

Core hours are 0800–1700 EST, Monday–Friday. Place of performance is IRS headquarters, 5000 Ellin Rd, New Carrollton, MD. Hybrid schedule may be negotiable; candidates should expect a primarily onsite or hybrid commitment given the embedded nature of the role and system access requirements. Candidates in the DC/MD/VA metro area or willing to commute regularly are strongly preferred.

Pay: $250,000.00 - $275,000.00 per year

Benefits:

• 401(k)
• Dental insurance
• Health insurance
• Paid time off
• Vision insurance

Application Question(s):

• Do you currently possess a IRS MBI Public Trust?

Work Location: Hybrid remote in New Carrollton, MD 20784