Senior Cybersecurity Architect

Tustin, CA


Apply Save Back to Results

Type: Contract-to-Hire

Category: Security

Industry: Government

Reference ID: JN -102025-104105

Date Posted: 02/13/2026

Shortcut: http://careers.eliassen.com/hu4hqC


Description:

Onsite in Tustin, CA

 

Our client seeks an experienced Security Architect with prior experience in law enforcement, government, or public safety IT environments and familiarity with CJIS, NIST, FedRAMP, or state compliance frameworks.

 

Due to federal security clearance requirements, applicant must be a United States Citizen or Permanent Resident. This is a contract to hire opportunity. Applicants must be willing and able to work on a w2 basis and convert to FTE following contract duration. For our w2 consultants, we offer a great benefits package that includes Medical, Dental, and Vision benefits, 401k with company matching, and life insurance.

 

Rate: $80.00 to $90.00/hr. w2

 


Responsibilities:

Responsibilities

  • Design, implement, and maintain Palo Alto Networks next-generation firewalls, Panorama, and related security services including WildFire, Threat Prevention, URL Filtering, and Anti-Virus.
  • Develop and enforce security policies, rule sets, and network zone segmentation aligned to Zero Trust across the enterprise.
  • Serve as the top-tier subject matter expert for Palo Alto security engineering, configuration, and troubleshooting.
  • Architect and optimize secure remote access solutions using enterprise VPN technologies such as Palo Alto GlobalProtect with least privilege and MFA controls.
  • Develop and enforce wireless security policies for corporate and guest networks, including segmentation, secure authentication, and encryption.
  • Design and implement secure DNS architectures leveraging DNSSEC or private DNS services.
  • Lead design and tuning of the enterprise SIEM, including device log integration, correlation rules, alerts, dashboards, and reporting.
  • Develop, maintain, and test the Incident Response Plan and playbooks, and lead technical response across the incident lifecycle.
  • Conduct post-incident reviews to identify architectural gaps and define short- and long-term security enhancements.
  • Ensure security architectures, policies, and procedures comply with CJIS and other applicable mandates.
  • Create and maintain enterprise security standards, control baselines, and reference architectures.
  • Conduct regular security assessments, identify control deficiencies, and define remediation strategies.
  • Plan, coordinate, and implement security measures to regulate access and prevent unauthorized modification, destruction, or disclosure of information.
  • Evaluate and recommend new and emerging security products and technologies.
  • Develop and interpret security policies and procedures and support security awareness and technology training.

Experience Requirements:

Experience Requirements

  • 7+ years of relevant industry experience with security engineering, system and network security, authentication and security protocols, cryptography, and application security.
  • Professional experience providing expert technical leadership in a SOC or similar cybersecurity services organization.
  • Strong hands-on understanding of Palo Alto Networks architecture, NGFWs, intrusion prevention systems, and associated security products.
  • Experience with network security design, deployment, maintenance, and troubleshooting.
  • Experience leading SIEM design, log onboarding, correlation development, and tuning.
  • Experience developing and executing incident response plans and playbooks.
  • Experience supporting users and collaborating across teams with strong communication and interpersonal skills.
  • Project management capability with the ability to manage multiple projects and meet deadlines under pressure.
  • Ability to work independently and as part of a team, including flexible hours, weekends, overnight, and overtime as requested.
  • Consistent implementation of security solutions and experience with infrastructure or application-level vulnerability testing and auditing.

Education Requirements:

Education Requirements

  • BS in Cybersecurity or related technical field with 7+ years of relevant experience, or MS with 5+ years, or PhD with 4+ years.
  • Certification: CISSP or GIAC Reverse Engineering Malware (GREM) or similar.
  • Bachelor's degree in a technical field such as computer science, computer engineering, or related field.

Recruitment Transparency Notice
 
Eliassen Group values transparency in our recruitment practices. Please be advised that Eliassen Group utilizes artificial intelligence (AI) tools as part of its initial application screening process. You may receive email and SMS notifications from the Eliassen Virtual Recruiting Team (noreply@eliassen.com, 781-808-2924) inviting you to complete a brief voice screening as part of your application process. These tools assist our hiring teams in different ways, including but not limited to, assistance in reviewing application materials to help identify candidates whose qualifications most closely match the requirements of the position. All AI-assisted evaluations and responses are reviewed by human recruiters before any hiring decisions are made. The use of AI in our process is intended to support fairness, efficiency, and consistency, and Eliassen Group takes measures to prevent bias or discrimination in connection with its hiring practices. By proceeding, you acknowledge, agree, and consent to Eliassen Group’s use of these tools, including AI tools, as part of the application and hiring process.
 
Skills, experience, and other compensable factors will be considered when determining pay rate. The pay range provided in this posting reflects a W2 hourly rate; other employment options may be available that may result in pay outside of the provided range.

W2 employees of Eliassen Group who are regularly scheduled to work 30 or more hours per week are eligible for the following benefits: medical (choice of 3 plans), dental, vision, pre-tax accounts, other voluntary benefits including life and disability insurance, 401(k) with match, and sick time if required by law in the worked-in state/locality.
Please be advised- If anyone reaches out to you about an open position connected with Eliassen Group, please confirm that they have an Eliassen.com email address and never provide personal or financial information to anyone who is not clearly associated with Eliassen Group. If you have any indication of fraudulent activity, please contact InfoSec@eliassen.com.
 
About Eliassen Group:
 
Eliassen Group is a leading strategic consulting company for human-powered solutions. For over 30 years, Eliassen has helped thousands of companies reach further and achieve more with their technology solutions, financial, risk & compliance, and advisory solutions, and clinical solutions. With offices from coast to coast and throughout Europe, Eliassen provides a local community presence, balanced with international reach. Eliassen Group strives to positively impact the lives of their employees, clients, consultants, and the communities in which they operate.
 
Eliassen Group is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.
 
Don’t miss out on our referral program! If we hire a candidate that you refer us to then you can be eligible for a $1,000 referral check!
 

  • Sr. Network Security Engineer III

     Washington dc, DC

    Description: Onsite in Washington, DC The Sr. Network Security Engineer III will secure and harden mission-critical enterprise networks for our client within a federal environment. The role will design and manage firewalls, VPNs, IDS/IPS, and NAC, enfo...

    Date Posted: 03/09/2026 Recommended

  • Network Engineer SME

     Cambridge, MA

    Description: Hybrid 3 days per week in Cambridge, MA The organization is a premier technology integrator across engineering, intelligence, and enterprise IT, employing approximately 15,000 professionals worldwide. It designs, develops, and sustains sol...

    Date Posted: 02/25/2026 Recommended

  • Senior Cybersecurity Engineer

     Washington dc, DC

    Description: Hybrid 2-3 days onsite in Washington, DC Our client seeks a senior cybersecurity engineer to deliver NSA CSfC-compliant architectures for secure communications in classified environments. The role drives implementation of Data-at-Rest and ...

    Date Posted: 03/12/2026 Recommended

  • Senior Full Stack Engineer, AI

     Anywhere

    Description: Remote Our client seeks a senior full stack engineer to accelerate AI adoption across the organization. The role blends full stack development, AI engineering, and internal consulting to design secure, scalable solutions and guide teams on...

    Date Posted: 03/03/2026 Recommended

  • Technical Lead

     Charlotte, NC

    Description: Hybrid 3 On in Charlotte, NC The organization seeks a Technical Lead to provide technical direction and architectural leadership for backend platform services, application integrations, and data-driven systems. The role will partner with s...

    Date Posted: 02/18/2026 Recommended

  • IAM/RBAC Engineer

     Pittsburgh, PA

    Description: Hybrid 4 in either Pittsburgh, PA, New York, NY or Lake Mary, FL The organization seeks an IAM/RBAC Engineer to design, implement, and administer access controls in Microsoft Entra ID and Azure RBAC. The contractor will enforce least-privi...

    Date Posted: 03/03/2026 Recommended

  • AI Engineer

     Pittsburgh, PA

    Description: Hybrid 3 days onsite, 2 days remote in Pittsburgh, PA Our client is scaling enterprise generative AI and agent-based solutions across business functions. The team operates across data, application, and AI layers, emphasizing secure archite...

    Date Posted: 03/12/2026 Recommended

  • Lead Software Engineer

     Hartford, CT

    Description: Hybrid 2-3 days onsite in either Hartford, CT or Short Hills, NJ As Lead Software Engineer, you will drive technical direction and execution for robust, scalable, and maintainable enterprise software solutions within a cloud-first environm...

    Date Posted: 02/12/2026 Recommended

  • Data Center Infrastructure Engineer

     Washington dc, DC

    Description: Hybrid 2-3 days in Washington, DC The Data Center Infrastructure Engineer will design and sustain mission-critical data center environments for the federal sector. The role will support secure, high-availability operations across servers, ...

    Date Posted: 03/13/2026 Recommended

  • DevOps Engineer

     Austin, TX

    Description: Hybrid T, W, Th onsite in Austin, TX Our client is seeking a DevOps Engineer to manage CI/CD pipelines and deployment processes for a commerce platform. The role will focus on automation, environment reliability, and collaboration with dev...

    Date Posted: 03/10/2026 Recommended

  • Security Administrator

     Cincinnati, OH

    Description: Hybrid 4 days week onsite, then 3 days onsite/2 remote in Cincinnati, OH We are hiring a Security Administrator for our client, a leading plumbing, sewer, and water damage company headquartered in Cincinnati, Ohio. The role will secure ent...

    Date Posted: 03/05/2026 Recommended

  • Principal Identity Architect

     Boston, MA

    Description: Hybrid Tues, Wed, Thurs onsite in Boston, MA The organization seeks a Principal Identity Architect to lead enterprise identity strategy and execution across Identity Governance and Administration and Privileged Access Management. The role ...

    Date Posted: 02/17/2026 Recommended

  • Vice President, Application Support Engineer

     Pittsburgh, PA

    Description: Hybrid 4 in either Pittsburgh, PA or Lake Mary, FL Our client seeks a Vice President, Application Support Engineer to strengthen production support for a Depositary Receipts platform. The role will diagnose and resolve complex incidents, d...

    Date Posted: 03/09/2026 Recommended

  • Software Engineer

     Merrimack, NH

    Description: Hybrid 2 weeks per month onsite in Merrimack, NH The Common Platform Solutions team within Asset Management provides standardized technology stacks, frameworks, and reusable components that accelerate delivery. This role reports to a direc...

    Date Posted: 03/07/2026 Recommended

  • Linux Systems Administrator

     Westlake, TX

    Description: Hybrid Onsite Every Other Week in either Westlake, TX or MMK, NH The organization seeks a Linux Systems Administrator to support distributed compute operations and server stability across Linux, Unix, Windows, hypervisors, and storage. The...

    Date Posted: 03/03/2026 Recommended

  • Information Security Engineer (Ping Identity)

     Anywhere

    Description: Remote Our client is a large U.S. financial institution headquartered in Cincinnati, Ohio, with a broad regional branch and ATM network across multiple states. The organization is a principal subsidiary of a public bank holding company and...

    Date Posted: 03/10/2026 Recommended

  • Mid-Level Platform Engineer – B2B Data Exchange

     Anywhere

    Description: Remote Our client is seeking a mid-level platform engineer to design and operate secure, scalable B2B data exchange capabilities on AWS. The role focuses on reusable patterns, guardrails, and automation that enable compliant, observable da...

    Date Posted: 03/11/2026 Recommended

  • Sr. Network Engineer III

     Washington dc, DC

    Description: Onsite in Washington, DC The Sr. Network Engineer III will serve as a subject matter expert for unified communications across voice, video, and collaboration platforms in a fast-paced, mission-critical environment. The role will design, im...

    Date Posted: 03/09/2026 Recommended

  • Senior Software Engineer

     Pittsburgh, PA

    Description: Hybrid 4 in Pittsburgh, PA The organization is launching a secure, fault‑tolerant Azure platform for high‑volume data ingestion, ledger‑based recordkeeping, and analytics for a controlled user base. This backend‑focused full‑stack role emp...

    Date Posted: 03/04/2026 Recommended

  • Senior Full Stack React.js / Node.js Developer

     Englewood, CO

    Description: Hybrid 4 days on-site in Englewood, CO The organization is a leading telecommunications and media provider serving over 26 million customers across 41 states under a nationally recognized brand. It ranks among the largest cable and pay TV ...

    Date Posted: 02/19/2026 Recommended

  • Sr. Network Engineer III

     Washington dc, DC

    Description: Onsite in Washington, DC The Sr. Network Engineer III will serve as a subject matter expert for unified communications across voice, video, and collaboration platforms. The role demands deep technical proficiency with enterprise UC, proact...

    Date Posted: 03/08/2026 Recommended

  • Office 365 / Power Platform Engineer

     Anywhere

    Description: Remote The organization seeks an Office 365 / Power Platform Engineer to design and integrate API-driven automation on Microsoft Power Platform. The role requires hands-on JavaScript or TypeScript API development, RESTful integrations, and...

    Date Posted: 03/09/2026 Recommended

  • Sr. Senior Platform Engineer III

     Washington dc, DC

    Description: Onsite in Washington dc, DC The organization is pursuing a Sr. Senior Platform Engineer III to support mission-critical federal workloads through Kubernetes platform engineering, CI/CD, and infrastructure automation. The role operates with...

    Date Posted: 03/13/2026 Recommended

  • Backend Java Architect

     Cincinnati, OH

    Description: Onsite in Cincinnati, OH The organization seeks a Backend Modernization Engineer to drive architecture and delivery of Java and Spring Boot microservices on AWS. The role will design domain-driven APIs and real-time data streams, shape imp...

    Date Posted: 03/04/2026 Recommended

  • Sr. Wireless Network Engineer III

     Washington dc, DC

    Description: Onsite in Washington, DC The organization seeks a Sr. Wireless Network Engineer III to design, deploy, and optimize secure enterprise Wi-Fi across a mission-critical federal environment. The role will perform RF site surveys, troubleshoot ...

    Date Posted: 03/09/2026 Recommended

  • Full Stack Engineer

     Westlake, TX

    Description: Hybrid two weeks onsite a month in Westlake, TX The role will design and build robust front and middle tier web applications that deliver a stable and resilient digital experience for healthcare customers. The engineer will use modern fram...

    Date Posted: 03/09/2026 Recommended

  • Software Engineer – Power BI & Angular

     Durham, NC

    Description: Hybrid two weeks onsite a month in Durham, NC We are seeking a Software Engineer to deliver data-driven reporting and intuitive user interfaces using Power BI and Angular. The role will collaborate with technical leaders to define and impl...

    Date Posted: 02/18/2026 Recommended

  • Data Architect

     St. Louis, MO

    Description: Hybrid Local candidates strongly preferred - onsite 2-3 days per week. If non-local, they will be required to come usually ~2 months for 3 days. in St. Louis, MO The organization seeks a Data Architect to design and build capabilities for ...

    Date Posted: 03/09/2026 Recommended

  • Security Analyst

     Washington, DC

    Description: Hybrid 3 days onsite / 2 days remote in Rockville, MD or Tysons Corner, VA Our client is a leading independent regulatory organization overseeing brokerage firms and registered financial professionals for compliance with federal securities...

    Date Posted: 02/17/2026 Recommended

  • Sr. Electrical Power Engineer II

     Washington dc, DC

    Description: Onsite in Washington, DC The organization seeks a Sr. Electrical Power Engineer II to lead design, evaluation, and sustainment of power systems for mission-critical telecommunications infrastructure. The role advances reliability and resil...

    Date Posted: 03/13/2026 Recommended

Eliassen Group is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status. Eliassen Group’s Affirmative Action Plan (AAP) is available for inspection by any employee or applicant for employment upon request, during normal business hours of Monday through Friday, 8:30am to 5:30pm EST. Interested persons should contact Phaedra Wells at pwells@eliassen.com for assistance. It is unlawful in Massachusetts and Maryland to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.

Applicants with disabilities that believe they require an accommodation or assistance with a position, please email our HR team at hradmin@eliassen.com. This email inbox is designed exclusively to assist job seekers whose disability prevents them from being able to apply online. Emails sent for other purposes will not receive a response.


Please be advised that a number of fraudulent job postings have been released under the Eliassen Group brand.

Unfortunately, fraudulent job postings can happen. If anyone reaches out to you about an open position connected with Eliassen Group, never provide personal or financial information to anyone who is not clearly associated with Eliassen Group

If anyone seemingly from Eliassen Group has ever requested this personal information in the past or does so in the future, please contactInfoSec@eliassen.com.

Please ensure that you are working directly with us by confirming the following:

  • When you work with Eliassen Group, all email communication will come from an Eliassen.com address, never Gmail, Yahoo, etc.
  • Eliassen Group will never ask you for personal information (home address, bank account, or check routing number) until you have worked with someone clearly associated with Eliassen Group, as indicated above