• Operation and administration of global Network Security platforms supporting enterprise and data center environments • Act as a technical authority and support point for complex network security issues involving customer concerns impacting enterprise, data center, and hybrid environments • Drive secure‑by‑design outcomes by partnering with Architecture, Infrastructure, SOC/NOC, and Application teams to influence designs, standards, and implementation approaches • Ensure network security services are reliable, scalable, well‑documented, and aligned with business and risk objectives • Contribute to the evolution of network security capabilities through technology evaluation, service enhancement, and process optimization • Engineer, administer, and optimize next‑generation firewall environments, including security policy management, network segmentation, intrusion prevention, and SSL/TLS decryption • Administer and enhance DNS security services, including policy design, threat protection, and reporting • Lead or support the deployment and operation of SD‑WAN security controls, wireless intrusion prevention, and DDoS protection platforms • Develop and execute security test plans based on architectural designs; identify deficiencies and implement improvements while minimizing production impact • Serve as a subject‑matter expert for firewall, DNS security, SD‑WAN, and related network security technologies • Respond to security incidents, service requests, and escalations, ensuring resolution within defined service levels • Create and maintain runbooks, operational documentation, and workflows to improve consistency, reliability, and operational maturity • Support mergers and acquisitions through network security assessments, discovery activities, remediation planning, and secure integration design • Advocate for new or enhanced network security services and contribute technical requirements to technology selection and evaluation processes • Drive operational efficiencies and automation that enable the team to focus on higher‑value engineering work • Deliver assigned initiatives on time and in alignment with service level expectations • Adhere to all applicable policies, standards, and procedures, and perform other duties as assigned by management.

This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description Abile Group is seeking a FedRAMP Engineer to join our rapidly growing and innovative cybersecurity team! The candidate will provide technical expertise on Security control implementations and development of Information Security procedures for systems and applications. The selected candidate will play a key role in a fast-paced FedRAMP team to provide comprehensive program, analytical, technical, and advisory skills to the client and supported Cloud Service Providers (CSPs). Candidates will be required to perform pre-assessment activities, including a detailed analysis of the technology stacks that comprise the vendor solutions. This position requires an advanced understanding of engineering secure, compliant, and resilient architectures and solutions. You will be part of a team working to assess vendor systems for technical compliance with NIST, FedRAMP and agency standards. Responsibilities - Performs detailed architecture and technical design reviews on the full stack for vendor solutions. - Conducts architecture reviews of Cloud Service Providers (CSPs) authorization packages to validate the secure design, alignment to FedRAMP and agency requirements, identify gaps, and advise the FedRAMP Government Lead on overall risk posture and compliance. - Leads and conducts architecture interviews with CSPs to ensure all critical control areas throughout the architecture are designed to meet program requirements. - Develops architecture briefing documents to inform the Government FedRAMP program manager and CISO of CSP compliance with FedRAMP program requirements, technical capabilities, and any concerns noted from the material review. - Completes comprehensive review and comments on documents of CSPs FedRAMP documentation, including but not limited to system security plans, policies and procedures, supplemental agency guidance documents, alternative implementation and risk acceptance documents, etc. - Completes a comprehensive review of CSPs' assessments and package submissions after 3PAO audits and prepares a package briefing for the Government FedRAMP program manager and agency CISO. - Works alongside the agency FedRAMP Lead and provides security engineering services. - Provides support for Continuous Monitoring activities including but not limited to items such as reviewing annual package submissions, reviewing and scoping significant change proposals, reviewing risk acceptance documents, etc. - Interprets FedRAMP and other agency requirements and provides vendors with guidance regarding expectations, technical requirements, and processes. - Stays informed of updated FedRAMP guidance, industry best practices, emerging technologies, and Government cybersecurity directives, and provides recommendations to FedRAMP Government lead regarding impacts. - Conducts security reviews of technologies for use-based consideration within CSPs authorization boundary. - Oversees and manages relationships for assigned systems that may be contractor-owned or contractor-operated, ensuring vendors comply with agency security and privacy requirements. - Assists stakeholders with IT security-related activities to ensure project deadlines are met. - Ensures all systems are operated, maintained, and disposed of IAW documented security policies and procedures, including but not limited to Assessment & Authorization (A&A). - Researches assigned IT security systems to provide insight into IT security architectures and IT security recommendations for assigned systems. Qualifications - Bachelor’s degree in Computer Science, Information Systems, Mathematics, Engineering or a related field, or an additional three years of IT experience. - Five (5) years of experience in the IT Security field. - Four (4) years of hands-on technical experience as a System Architect or Security Engineer. - Four (4) years of experience supporting FedRAMP. Desired Certifications - Security+, CISSP, CISM, CISA, or equivalent Security certification strongly preferred. Required Skills - Direct experience performing analysis on FedRAMP CSP architectures and control implementations (ie. 3PAO, FedRAMP program at another agency, etc) as an Engineer or Architect. - Confidence and depth of understanding to lead meetings with potential Vendors. - Current experience in reviewing 3rd party security assessment reports. - Have detailed knowledge and experience with NIST Policies, Governance, Security Planning and Architecture, FISMA Compliance, RMF, Incident Analysis, and General Security Best Practices. - Possess strong written and oral communication skills to support customers, internal stakeholders, peers, and public audiences. - Ability to communicate, both written and oral, to both technical and non-technical stakeholders. - Strong communication skills to interact with senior managers, junior staff, and business unit (non-technical) customers. Benefits - This position allows for 100% remote work. Remote Work Policy Remote work necessitates a high level of trust in our employees. To ensure that employee performance does not suffer in a remote work environment, all employees who telecommute are expected to have a quiet and distraction-free workspace with adequate internet, dedicate their full attention and availability to their job duties during working hours, and maintain a schedule during core business hours that align with those of their coworkers and clients. In alignment with our inclusive and engaging environment, cameras are encouraged and can be required to be on during virtual video conferences. Additionally, in alignment with the Office of the Inspector General’s effort to eliminate conflicting employment, all employees are required to disclose any current or future outside employment engagements. During onboarding and throughout employment, employees must disclose any current activities or intent to engage in outside employment or other professional activities and obtain written approval. Employees may not solicit or conduct any outside business during core business hours for the company and our clients. Hiring Statement Abile is committed to hiring the most qualified and best fit person for the job - always has, always will. Anyone requiring reasonable accommodations should email careers@abilegroup.com with requested details. A member of the HR team will respond to your request within 2 business days. Please review our current job openings and apply for the positions you believe may be a fit. If you are not an immediate fit, we will also keep your resume in our database for future opportunities.

This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description The Cybersecurity Assessment and Authorization (A&A) Subject Matter Expert (SME) serves as a senior cybersecurity authority responsible for supporting the authorization of information systems and ensuring compliance with Department of Defense (DoD) cybersecurity policies and procedures. The SME performs and supports the DoD cybersecurity authorization process, either as the system authorizing expert or as a subject matter expert for systems undergoing authorization. This role requires a strong understanding of how security controls defined in NIST SP 800-53 are applied during the assessment and authorization process across large and complex enterprise environments such as those supporting the Defense Logistics Agency (DLA). These environments may include multiple enclaves, Automated Information Systems (AIS), enterprise applications, and outsourced IT services. - The SME evaluates vulnerabilities and determines the appropriate severity value for identified security control deficiencies. - Assesses potential impacts on system authorization status and provides recommendations for remediation. - Briefs senior leadership on the progress, risks, and outcomes of systems undergoing the Risk Management Framework (RMF) authorization process. Qualifications - Minimum five (5) years of experience supporting Risk Management Framework (RMF) and NIST Assessment and Authorization (A&A) processes. - Demonstrated DoD cybersecurity experience. - Experience assessing security controls and conducting authorization reviews for large, complex organizations. - Strong understanding of DoD cybersecurity authorization policies, procedures, and implementation processes. - Experience supporting the DoD RMF authorization lifecycle. - Knowledge of cybersecurity considerations related to emerging technologies, including: - Cloud environments - Industrial Control Systems (ICS) - Warehouse Execution Systems - Operational Technology (OT) infrastructures. Requirements - Must possess an active DoD Secret Clearance. - Must hold IT-II Non-Critical Sensitive security clearance or Tier 3 (T3) at the time of proposal submission. Benefits - Medical, dental, vision, and disability insurance. - 401(k) retirement plan with 100% vesting from day one and employer matching after 90 days. - Educational Assistance Program. - Student Loan Repayment Program. - Gym Reimbursement Program. Company Description Founded in 1996, Horizon Industries Limited (Horizon) has grown into a team of highly qualified professionals providing full-cycle IT consulting and management support to both public and private sector clients. Horizon fosters a culture that promotes work-life balance. Horizon Industries Limited is an Equal Employment Opportunity (EEO) employer. All qualified applicants will receive consideration for employment without regard to sex, race, color, creed, religion, national origin, sexual orientation, marital status, age, disability, veteran status, alienage, ancestry, citizenship status, or any other factor protected by law.

This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description As a Senior IT Security Engineer, you will play a critical role in safeguarding enterprise environments by designing, implementing, and maintaining advanced security solutions. You will serve as a technical leader, guiding security strategy, responding to incidents, and ensuring compliance with industry standards and regulations. This position offers the opportunity to influence security frameworks, mentor team members, and contribute to the evolution of security practices across the organization. You will work in a collaborative, fast-paced environment where your expertise directly impacts operational resilience and business continuity. Success in this role requires a blend of hands-on technical proficiency, strategic thinking, and the ability to communicate complex concepts effectively to stakeholders at all levels. - Design, deploy, and maintain enterprise information security solutions to protect critical infrastructure. - Serve as a Tier‑3 escalation point for monitoring and responding to security incidents. - Develop and enforce internal and customer-facing security standards, policies, and procedures. - Execute incident response activities and lead investigations in alignment with security protocols. - Evaluate, test, and deploy security application upgrades, patches, and controls. - Provide consultative expertise on emerging threats, vulnerabilities, and risk mitigation strategies. - Mentor and guide team members while contributing to the development of security product roadmaps. - Partner with product owners and cross-functional teams to ensure security alignment across solutions and offerings. Qualifications - 5–10 years of experience in information security roles, preferably in enterprise or cloud environments. - Hands-on experience with Azure Cloud security deployments and Security-as-a-Service (SaaS) solutions. - Strong knowledge of digital forensics, penetration testing methodologies, and file integrity monitoring. - Proficiency with vulnerability scanning tools, password vaulting technologies, and SIEM platforms. - Experience implementing and maintaining security frameworks such as PCI-DSS, SSAE SOC1/SOC2, GDPR, HIPAA, IRS Pub 1075, NIST, and ISO 27001. - Expertise in anti-malware technologies, security auditing, and forensic analysis. - Security certifications such as CISSP, CISA, CISM, CEH, or SANS GIAC. - Bachelor’s degree in Information Security or equivalent professional experience. - Excellent communication and collaboration skills, with the ability to advise stakeholders across multiple levels. - Familiarity with tools such as MS Sentinel, Splunk, Microsoft Defender, Trend Micro, Trellix, Carbon Black, Tenable, Rapid7, Varonis, and Microsoft Purview is preferred. Benefits - 💰 Competitive base salary: $112,000–$130,000 USD annually, with eligibility for bonus and equity programs. - 🏥 Medical, dental, and vision insurance options. - 💼 401(k) with company match. - 🌴 Unlimited paid time off and paid holidays. - 👶 Paid parental leave and family-forming benefits including fertility, adoption, and surrogacy coverage. - 🏠 Flexible work schedule and remote work options. - 📚 Education reimbursement, student loan assistance, or 529 college funding. - 🧘 Wellness programs and sabbatical leave options. Company Description