Lead Security Architect

Abile Group, Inc.

22h•Remote

About The Position

Abile Group is seeking a Lead Security Architect to join our rapidly growing and innovative cybersecurity team! The Lead Security Architect provides senior-level architectural leadership for the modernization and integration of continuous monitoring capabilities supporting our government client’s enterprise cybersecurity program. This role defines the technical direction for ISCM engineering, develops advanced data and automation frameworks, and ensures that security telemetry, tooling, and analytics work together in a cohesive, scalable architecture. The Lead Security Architect drives the adoption of AI-enabled monitoring, automated control validation, cloud-based data integration, and real-time dashboarding that supports risk-based decision making, ongoing authorization, and high-maturity ISCM operations. This position allows for 100% remote work. Remote work requires a high level of trust in our employees, and we strictly adhere to the details outlined in our Remote Work Policy below. Remote Work Policy Remote work necessitates a high level of trust in our employees. To ensure that employee performance does not suffer in a remote work environment, all employees who telecommute are expected to have a quiet and distraction-free workspace with adequate internet, dedicate their full attention and availability to their job duties during working hours, and maintain a schedule during core business hours that align with those of their coworkers and clients. In alignment with our inclusive and engaging environment, cameras are encouraged and can be required to be on during virtual video conferences. Additionally, in alignment with the Office of the Inspector General’s effort to eliminate conflicting employment, all employees are required to disclose any current or future outside employment engagements. During onboarding and throughout employment, employees must disclose any current activities or intent to engage in outside employment or other professional activities and obtain written approval. Employees may not solicit or conduct any outside business during core business hours for the company and our clients.

Requirements

Clearance Required: U.S. Citizenship to obtain the clearance to work.
Degree and Years of Experience: Bachelor's degree or in a related field.
10+ years of experience in enterprise security architecture, continuous monitoring engineering, cybersecurity analytics, or federal security modernization programs.
Demonstrated success architecting data analytics dashboards for security operations, continuous monitoring, and control visibility.
Extensive experience developing interconnected security tooling ecosystems, including API-driven integrations across asset management, vulnerability scanning, EDR, cloud platforms, GRC systems, CDM datasets, and other enterprise cybersecurity tools.
Strong mastery of data engineering techniques (APIs, SQL, Python, ETL, automation pipelines, data normalization, metadata management) applied to large-scale security datasets.
Expert knowledge of NIST SP 800-53 Rev 5, NIST 800-137, NIST 800-37, OSCAL, and federal continuous monitoring practices.
Experience supporting ongoing authorization, control monitoring automation, and continuous risk evaluation for federal systems.
Strong communication and collaboration skills for working with system owners, ISSOs, engineering teams, and leadership stakeholders.
Experience with AWS, Azure, and hybrid cloud architectures supporting ISCM data processing and analytics.

Nice To Haves

Industry certifications such as CISSP, CCSP, or cloud security certifications.
Experience advancing organizations to “Managed and Measurable” or “Optimized” FISMA ISCM maturity.
Microsoft Power BI and Splunk Experience.
Experience with CDM Layer A/B data analysis and integration.
Experience with Python-based automation frameworks such as Selenium, Playwright, or cloud-native automation tools (Logic Apps, Data Factory, Fabric).
Experience architecting AI-enabled capabilities supporting data search, anomaly detection, risk analysis, and automated control monitoring.

Responsibilities

Leads the enterprise technical architecture for continuous monitoring, including data structures, analytics capabilities, automation pathways, dashboards, and interconnection of security tools.
Architects and guides development of data pipelines and ETL processes using APIs, cloud-native services, and automation frameworks to ingest, normalize, and validate ISCM data from multiple systems and data repositories.
Designs and oversees implementation of advanced dashboards that provide real-time visibility into asset inventories, NIST control monitoring, vulnerability posture, compliance trends, BOD directives, OSCAL-related data, and other key risk indicators.
Integrates AI/ML capabilities into ISCM operations to support rapid data search, pattern detection, anomaly identification, enhancement of ongoing authorization data, and improved automation of control monitoring.
Leads development and deployment of continuous monitoring methodologies aligned with NIST 800-137, leveraging automation and analytics to support risk-based, near-real-time decision making.
Ensures robust architectural integration across COTS, SaaS, cloud services, CDM layers, vulnerability tools, asset repositories, GRC systems, and other cybersecurity platforms.
Supports ongoing authorization by providing architecture and data pipelines that map system data to OSCAL artifacts, enables automated inheritance/reciprocity, and improves visibility into control effectiveness.
Guides performance, scalability, and reliability engineering for ISCM infrastructure, including server optimization, capacity planning, and continuity of operations.
Leads Security Architectural reviews of ISCM engineering outputs, data quality processes, SOPs, and governance updates, identifying improvements and ensuring cohesive enterprise alignment.
Supports audit readiness, corrective action planning, and program maturity advancement through high-quality analytics and architectural oversight.
Provides transition planning to ensure seamless transfer of ISCM architectural artifacts, dashboards, data models, automation workflows, and documentation.