SCA Cybersecurity Engineer/Architect Lead (AI/Automation)

I

IMAGINEEER LLC

SCA Cybersecurity Engineer/Architect Lead (AI/Automation)

Arlington, VA
Full Time
Paid
  • Responsibilities

    Benefits:

    401(k)

    Dental insurance

    Health insurance

    Paid time off

    Vision insurance

    Job title: SCA Cybersecurity Engineer/Architect Lead (AI/Automation)

    Location / Work type: Remote/Full-Time

    Clearance: Must be able to get a Public Trust

    About the Company:

    Imagineeer is leading the charge in data transformation, impacting sectors from healthcare to government operations, green energy, supply chain, and sports. Leveraging cutting-edge technologies like AI, post-quantum security, and blockchain, we empower decision-makers and fortify data security. We specialize in federal agency modernization; we collaborate closely to transform operational ecosystems, addressing unique challenges with acquisition support and stakeholder communication. Imagine Lab, our digital think tank, explores innovation through employee engagement and machine-generated insights. If you're passionate about reimagining operations and empowering organizations to evolve proactively, join us in shaping the future.

    About this Role:

    We are seeking a highly skilled Cybersecurity Engineer/Architect Lead specializing in Security Control Assessments (SCA) with a focus on AI/Automation to lead the transformation of security assessment capabilities for our federal government clients. This senior-level role combines deep expertise in cybersecurity, risk management, and security control assessments (SCA) with advanced knowledge of artificial intelligence (AI), machine learning (ML), and automation technologies.

    The ideal candidate will drive the modernization of traditional SCA processes, leveraging cutting-edge technologies to improve efficiency, accuracy, and compliance with federal security requirements such as NIST RMF, FISMA, and FedRAMP.

    Key Responsibilities:

    Design and implement AI-driven security assessment frameworks to automate control validation and risk assessments.

    Lead the development of automated security control testing capabilities that integrate with compliance tools and frameworks.

    Architect robust solutions for continuous security monitoring and assessment, enabling real-time visibility into system compliance.

    Drive the modernization of SCA processes by integrating AI, ML, and automation technologies while ensuring compliance with federal mandates.

    Develop and deploy automated reporting solutions for real-time compliance dashboards and security metrics.

    Lead the implementation of machine learning models to enhance security control validation, anomaly detection, and predictive risk analysis.

    Manage and mentor technical teams performing security control assessments, automation development, and tool integration.

    Develop innovative methodologies for automated evidence collection, validation, and documentation.

    Create automated workflows for security assessment lifecycle processes, including POA&M tracking and system authorization documentation.

    Establish and monitor key performance indicators (KPIs) and metrics to measure the efficiency and effectiveness of automated SCA processes.

    Collaborate with stakeholders, including system owners, security teams, and compliance officials, to align automation initiatives with operational and regulatory requirements.

    Provide technical leadership, project oversight, and subject matter expertise on both security architecture and automation strategies.

    Architect and implement custom assessment tools, scripts, and platforms to support large-scale compliance programs.

    Maintain adherence to federal cybersecurity frameworks, including NIST SP 800-53, RMF, FISMA, and FedRAMP, while innovating on process automation.

    Qualifications and Skills:

    Bachelor’s or Master’s degree in Cybersecurity, Computer Science, Information Systems, or a related field.

    10+ years of professional experience in cybersecurity, including security architecture and risk management.

    5+ years of direct experience in Security Control Assessments (SCA) supporting federal systems.

    3+ years of hands-on experience developing and implementing AI/ML and automation solutions for security or compliance processes.

    Extensive experience working with federal security compliance frameworks, including NIST RMF, FISMA, and FedRAMP.

    Ability to obtain and maintain a Public Trust clearance.

    Expert knowledge of NIST SP 800-53, RMF processes, and federal cybersecurity standards.

    Hands-on experience with security automation tools, orchestration platforms, and compliance technologies.

    Strong proficiency in AI/ML technologies, including frameworks such as TensorFlow, PyTorch, Scikit-learn, or equivalent.

    Advanced knowledge of security testing methodologies, vulnerability management, and control validation.

    Programming proficiency in Python, Java, PowerShell, or equivalent for automation development.

    Experience with security orchestration, automation, and response (SOAR) platforms and tools.

    Deep understanding of federal security compliance requirements and processes for ATO and continuous monitoring.

    Expertise in security architecture design, including automation, cloud security, and zero trust implementations.

    Knowledge of DevSecOps practices, CI/CD pipelines, and integrating security into automated development processes.

    Experience conducting cloud security assessments in environments such as AWS, Azure, or GCP.

    Strong project management skills, with experience leading technical teams and managing complex cybersecurity initiatives.

    Excellent technical writing and documentation skills, capable of producing assessment reports, authorization packages, and technical architectures.

    Exceptional communication skills, with the ability to translate technical concepts to both technical and non-technical audiences.

    Demonstrated leadership and mentoring skills, with the ability to guide junior engineers and cross-functional teams.

    Desired Skills and Competencies:

    Cybersecurity certifications such as CISSP, CISA, CISM, CAP, or equivalent.

    Experience with TensorFlow, PyTorch, or other advanced ML tools for security analytics.

    Knowledge of FedRAMP, CMMC, and other government-specific compliance processes.

    Expertise in automated security testing tools (e.g., Nessus, OpenSCAP, Burp Suite automation).

    Background in federal government contracting with experience supporting large-scale assessment programs.

    Knowledge of privacy frameworks, data protection laws, and related security controls.

    Familiarity with blockchain security concepts and emerging technologies.

    Experience with security compliance automation platforms like Xacta, eMASS automation, or Drata.

    Public speaking skills for presenting technical solutions and strategy to executives or stakeholders.

    Experience developing or contributing to security tools, automation frameworks, or open-source security projects.

    Background in system authorization processes, including continuous ATO (cATO) models.

    Familiarity with quantum-safe encryption concepts and emerging cybersecurity technologies.

    Experience in running large-scale cybersecurity assessment programs across diverse technical environments.

    Additional Information:

    This is a remote position, with occasional virtual or in-person meetings based on client requirements.

    Must be a U.S. Citizen capable of obtaining a Public Trust clearance.

    This is a remote position.