Abile Group, Inc.

• Lead the development of security architecture guidance and standards • Assess and evaluate security postures and identify protection needs • Develop and deliver reports and strategic enterprise solutions • Support risk management and compliance activities

• Develops and aligns system security architectures with organizational cybersecurity guidelines, including defining security boundaries, documenting system categorization, and analyzing user needs and requirements. • Develops focused guidance for specific security mechanisms such as encryption for data at rest. • Assesses and evaluates security postures, reviews candidate architectures, identifies protection needs, and determines how new systems or interfaces impact enterprise security. • Identifies and documents security and privacy requirements, including types of personal information, stakeholder interests, and data that require protection, ensuring proper allocation at both system and organizational levels. • Supports acquisition and procurement efforts by providing input on security requirements for statements of work, project costs, and translating proposed capabilities into technical specifications. • Contributes to risk management and compliance, performing architecture reviews, identifies security gaps, supports RMF activities, and maintains documentation throughout the acquisition lifecycle. • Provides high-quality technical, engineering, analytical, and planning support to meet the organization's requirements. • Performs architectural review and analysis, developing strategic enterprise solutions that address the evolving business requirements and changing cybersecurity threat landscape. • Develops and delivers reports (e.g., reference architectures, white papers, roadmaps, architecture risk analysis) to facilitate the following, including but not limited to: Define and develop security architecture and engineering standards. Develop business use cases and design patterns to articulate the organization's goals and objectives. Document the current “as-is” through a holistic review of the agency enterprise. Develop an envisioned target “to-be” based on the agency's needs and threat models. Assess the gaps between “as-is” and “to-be”, and provide roadmaps to close gaps. Develop baselines and reference architectures consistent with standard frameworks. Perform Architect Risk Analysis (ARA) through systematic and comprehensive reviews. Identify, integrate, mature, and communicate key concepts that define continued direct interaction with the agency’s technical and operational leadership. Identify, frame, and support the resolution of critical issues impacting the organization. Update artifacts periodically to meet regulatory, audit, and compliance requirements.

• Owns the entire BD lifecycle, from opportunity identification and teaming strategies through proposal submission • Actively participates in critical decisions throughout and tactical tasks needed to complete the capture • Uses established network and continuously builds new ones within the DoD/Intel community • Gains an understanding of the value proposition to technical and other decision-makers and industry partners • Creates and drives effective strategies to identify, qualify, and win large, full and open contracts • Works closely with proposal, capture, and technical teams, as well as partners and subcontractors • Leads capture teams and contributes to winning proposal strategies and execution • Performs both strategic and tactical activities to drive success • Provides insights of industry trends, competitive landscape, and government priorities to influence positioning • Quickly generates new business opportunities and influence long-term growth strategies in the DoD/Intel sector • Attends industry events, conferences, and meetings to build connections and uncover new opportunities • Demonstrates measurable impact within the first 6 months

Overview Abile Group is seeking aFedRAMP Engineer to join our rapidly growing and innovative cybersecurity team! The candidate will provide technical expertise on Security control implementations and development of Information Security procedures for systems and applications. The selected candidate will play a key role in a fast-paced FedRAMP team to provide comprehensive program, analytical, technical, and advisory skills to the client and supported Cloud Service Providers (CSPs). Candidates will be required to perform pre-assessment activities, including a detailed analysis of the technology stacks that comprise the vendor solutions. This position requires an advanced understanding of engineering secure, compliant, and resilient architectures and solutions. You will be part of a team working to assess vendor systems for technical compliance with NIST, FedRAMP and agency standards. Responsibilities - Performs detailed architecture and technical design reviews on the full stack for vendor solutions. - Conducts architecture reviews of Cloud Service Providers (CSPs) authorization packages to validate the secure design, alignment to FedRAMP and agency requirements, identify gaps, and advise the FedRAMP Government Leadon overall risk posture and compliance. - Leads and conducts architecture interviews with CSPs to ensure all critical control areas throughout the architecture are designed to meet program requirements. - Develops architecture briefing documents to inform the Government FedRAMP program manager and CISO of CSP compliance with FedRAMP program requirements, technical capabilities, and any concerns noted from the material review. - Completes comprehensive review and comments on documents of CSPs FedRAMP documentation, including but not limited to system security plans, policies and procedures, supplemental agency guidance documents, alternative implementation and risk acceptance documents, etc. Work with CSPs to reconcile and address any documentation and technology gaps discovered during the review. - Completes a comprehensive review of CSPs' assessments and package submissions after 3PAO audits and prepares a package briefing for the Government FedRAMP program manager and agency CISO. Artifacts include, but are not limited to, vendor security assessment plans, security assessment reports, vulnerability scans, penetration tests, etc. - Works alongside the agency FedRAMP Lead and provide security engineering services. - Provides support for Continuous Monitoring activities including but not limited to items such as reviewing annual package submissions, reviewing and scoping significant change proposals, reviewing risk acceptance documents, etc. - Interprets FedRAMP and other agency requirements and provide vendors with guidance regarding expectations, technical requirements, and processes. - Stays informed of updated FedRAMP guidance, industry best practices, emerging technologies, and Government cybersecurity directives, and provide recommendations to FedRAMP Government lead regarding impacts. - Conducts security reviews of technologies for use-based consideration within CSPs authorization boundary. - Oversees and manage relationships for assigned systems that may be contractor-owned or contractor-operated, ensuring vendors comply with agency security and privacy requirements. - Assists stakeholders with IT security-related activities to ensure project deadlines are met. - Ensures all systems are operated, maintained, and disposed of IAW documented security policies and procedures, including but not limited to Assessment & Authorization (A&A). - Researches assigned IT security systems to provide insight into IT security architectures and IT security recommendations for assigned systems. This position allows for 100% remote work. Remote work requires a high level of trust in our employees, and we strictly adhere to the details outlined in our Remote Work Policy below. Remote Work Policy Remote work necessitates a high level of trust in our employees. To ensure that employee performance does not suffer in a remote work environment, all employees who telecommute are expected to have a quiet and distraction-free workspace with adequate internet, dedicate their full attention and availability to their job duties during working hours, and maintain a schedule during core business hours that align with those of their coworkers and clients. In alignment with our inclusive and engaging environment, cameras are encouraged and can be required to be on during virtual video conferences. Additionally, in alignment with the Office of the Inspector General’s effort to eliminate conflicting employment, all employees are required to disclose any current or future outside employment engagements. During onboarding and throughout employment, employees must disclose any current activities or intent to engage in outside employment or other professional activities and obtain written approval. Employees may not solicit or conduct any outside business during core business hours for the company and our clients. Qualifications Degree and Years of Experience: Bachelor’s degree in Computer Science, Information Systems, Mathematics, Engineering or a related field, or an additional three years of IT experience. - Five (5) years of experience in the IT Security field. - Four (4) years of hands-on technical experience as a System Architect or Security Engineer. - Four (4) years of experience supporting FedRAMP. Desired Certifications: - Security+, CISSP, CISM, CISA, or equivalent Security certification strongly preferred. Required Skills: - Direct experience performing analysis on FedRAMP CSP architectures and control implementations (ie. 3PAO, FedRAMP program at another agency, etc) as an Engineer or Architect. - Confidence and depth of understanding to lead meetings with potential Vendors. - Current experience in reviewing 3rd party security assessment reports. - Have detailed knowledge and experience with NIST Policies, Governance, Security Planning and Architecture, FISMA Compliance, RMF, Incident Analysis, and General Security Best Practices. - Possess strong written and oral communication skills to support customers, internal stakeholders, peers, and public audiences. - Ability to communicate, both written and oral, to both technical and non-technical stakeholders. - Strong communication skills to interact with senior managers, junior staff, and business unit (non-technical) customers. About Abile Group, Inc. Abile Group, Inc. was formed in July 2004 to partner with the Intelligence Community and their Contractors in the areas of Enterprise Analytics & Performance Management, IT & Systems Engineering and Program & Project Management. We have significant experience with the Federal Government and are an EDWOSB dedicated to our employees and clients. We are looking for high performing employees who enjoy providing advice and guidance along with solutions development and implementation support, crafted by combining industry best practices with the clients’ subject matter experience and Abile’s breadth of expertise. Hiring Statement Abile is committed to hiring the most qualified and best fit person for the job - always has, always will. Anyone requiring reasonable accommodations should email careers@abilegroup.com with requested details. A member of the HR team will respond to your request within 2 business days. Please review our current job openings and apply for the positions you believe may be a fit. If you are not an immediate fit, we will also keep your resume in our database for future opportunities.

This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description Abile Group has an exciting and challenging opportunity for an experienced Business Development Executive to set strategy and drive growth in the Defense and Intelligence markets. This is a critical, high-impact role responsible for shaping and implementing growth strategies and leading efforts to secure large, full and open contracts. - Owns the entire BD lifecycle, from opportunity identification and teaming strategies through proposal submission, ensuring Valiant's growth within the Defense and Intelligence markets. - Actively participates in critical decisions throughout and tactical tasks needed to complete the capture. - Uses your established network and continuously builds new ones within the DoD/Intel community. - Gains an understanding of Valiant’s value proposition to technical and other decision-makers and industry partners, showcasing our solutions effectively. - Creates and drives effective strategies to identify, qualify, and win large, full and open contracts. - Works closely with proposal, capture, and technical teams, as well as partners and subcontractors, to develop tailored solutions that meet customer needs. - Leads capture teams and contributes to winning proposal strategies and execution. - Performs both strategic and tactical activities to drive success, including direct contributions to content development and customer engagement. - Provides insights of industry trends, competitive landscape, and government priorities to influence Valiant’s positioning. - Quickly generates new business opportunities and influences long-term growth strategies in the DoD/Intel sector. - Attends industry events, conferences, and meetings to build connections and uncover new opportunities. - Demonstrates measurable impact within the first 6 months, including establishing meetings with key stakeholders, advancing capture opportunities, and contributing to proposal wins. Qualifications - U.S. Citizenship with the ability to obtain a Government Security Clearance. - B.S./B.A. degree required. - 7+ years of experience in business development within the Defense and Intelligence community, focusing on information technology. Experience with cybersecurity solutions is strongly preferred. - Demonstrated success in securing large, full and open federal contracts as a prime contractor within the DoD/Intel community. - Strong connections with Defense and Intelligence decision-makers, including procurement, CIO, and CISO organizations. - Experience with Key Contract Vehicles. - Comfortable developing sales collateral, managing pipeline data, and preparing capture and proposal materials. - Experience leading capture teams and crafting effective market strategies. - Able to confidently present to technical stakeholders, partners, and executive audiences. Requirements - Strong ability to translate technical concepts into clear, compelling narratives. - Proven success in capture management and proposal development. - Familiarity with mission-critical solutions and emerging technologies in the Defense and Intel sectors. - Familiarity with the Cybersecurity Maturity Model Certification (CMMC) and its implications for DoD contracting. - Knowledge of the Shipley Business Development process and its application in federal contracting. - Experience using tools such as Salesforce, GovWin, FPDS and USASpending. Benefits - This position allows for 100% remote work. - Remote work requires a high level of trust in our employees. - All employees who telecommute are expected to have a quiet and distraction-free workspace with adequate internet. - Employees must maintain a schedule during core business hours that align with those of their coworkers and clients. - Cameras are encouraged and can be required to be on during virtual video conferences. - All employees are required to disclose any current or future outside employment engagements.

This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description Abile Group is seeking a FedRAMP Engineer to join our rapidly growing and innovative cybersecurity team. The candidate will provide technical expertise on Security control implementations and development of Information Security procedures for systems and applications. The selected candidate will play a key role in a fast-paced FedRAMP team to provide comprehensive program, analytical, technical, and advisory skills to the client and supported Cloud Service Providers (CSPs). - Perform detailed architecture and technical design reviews on the full stack for vendor solutions. - Conduct architecture reviews of Cloud Service Providers (CSPs) authorization packages to validate the secure design, alignment to FedRAMP and agency requirements, identify gaps, and advise the FedRAMP Government Lead on overall risk posture and compliance. - Lead and conduct architecture interviews with CSPs to ensure all critical control areas throughout the architecture are designed to meet program requirements. - Develop architecture briefing documents to inform the Government FedRAMP program manager and CISO of CSP compliance with FedRAMP program requirements, technical capabilities, and any concerns noted from the material review. - Complete comprehensive review and comments on documents of CSPs FedRAMP documentation, including but not limited to system security plans, policies and procedures, supplemental agency guidance documents, alternative implementation and risk acceptance documents, etc. - Work with CSPs to reconcile and address any documentation and technology gaps discovered during the review. - Complete a comprehensive review of CSPs' assessments and package submissions after 3PAO audits and prepare a package briefing for the Government FedRAMP program manager and agency CISO. - Work alongside the agency FedRAMP Lead and provide security engineering services. - Provide support for Continuous Monitoring activities including but not limited to items such as reviewing annual package submissions, reviewing and scoping significant change proposals, reviewing risk acceptance documents, etc. - Interpret FedRAMP and other agency requirements and provide vendors with guidance regarding expectations, technical requirements, and processes. - Stay informed of updated FedRAMP guidance, industry best practices, emerging technologies, and Government cybersecurity directives, and provide recommendations to FedRAMP Government lead regarding impacts. - Conduct security reviews of technologies for use-based consideration within CSPs authorization boundary. - Oversee and manage relationships for assigned systems that may be contractor-owned or contractor-operated, ensuring vendors comply with agency security and privacy requirements. - Assist stakeholders with IT security-related activities to ensure project deadlines are met. - Ensure all systems are operated, maintained, and disposed of IAW documented security policies and procedures, including but not limited to Assessment & Authorization (A&A). - Research assigned IT security systems to provide insight into IT security architectures and IT security recommendations for assigned systems. Qualifications - Bachelor’s degree in Computer Science, Information Systems, Mathematics, Engineering or a related field, or an additional three years of IT experience. - Five (5) years of experience in the IT Security field. - Four (4) years of hands-on technical experience as a System Architect or Security Engineer. - Four (4) years of experience supporting FedRAMP. Requirements - Direct experience performing analysis on FedRAMP CSP architectures and control implementations (ie. 3PAO, FedRAMP program at another agency, etc) as an Engineer or Architect. - Confidence and depth of understanding to lead meetings with potential Vendors. - Current experience in reviewing 3rd party security assessment reports. - Have detailed knowledge and experience with NIST Policies, Governance, Security Planning and Architecture, FISMA Compliance, RMF, Incident Analysis, and General Security Best Practices. - Possess strong written and oral communication skills to support customers, internal stakeholders, peers, and public audiences. - Ability to communicate, both written and oral, to both technical and non-technical stakeholders. - Strong communication skills to interact with senior managers, junior staff, and business unit (non-technical) customers. Hiring Statement Abile is committed to hiring the most qualified and best fit person for the job - always has, always will. Anyone requiring reasonable accommodations should email careers@abilegroup.com with requested details. A member of the HR team will respond to your request within 2 business days. Please review our current job openings and apply for the positions you believe may be a fit. If you are not an immediate fit, we will also keep your resume in our database for future opportunities.