Security Engineer/ISSO Support
Simple Technology Solutions
Job Description
Job Description
At Simple Technology Solutions, our people are our priority. We know our team members are more than employees—they're parents, friends, volunteers, artists, and athletes. That's why we offer flexibility to help them thrive personally and professionally while delivering exceptional solutions to our Federal Government clients.
Our culture is built on collaboration, continuous learning, and excellence. We are mentors and thought leaders who share knowledge and foster growth. Recognized as a "Best Place to Work," we believe a range of perspectives helps us drive innovation and exceed customer expectations. At STS, taking care of our people isn't a perk—it's the standard.
As a HUBZone company, we also offer special incentives for team members living in qualified HUBZones. Check out the HUBZone map HERE to see if you qualify!
Simple Technology Solutions is looking for a Security Engineer/ISSO Support to add to our team.
Quick Position Overview:
- US Citizenship is required
- Bachelor's Degree is required
- minimum of 6 years' position related experience is required
- Part Time Position
The Role:
STS is looking for a Security Engineer / ISSO Support specialist to join a federal data engineering team. You will serve as the security and privacy authority on a federal data engineering program, protecting highly sensitive financial data and ensuring the platform meets the full spectrum of federal security requirements from design through production. Deep knowledge of the federal ATO process and hands-on Zero Trust implementation on AWS are prerequisites for this position.
This position is contingent upon contract award.
The Security Engineer / ISSO Support at STS will:
- Serve as the primary point of contact and subject matter expert for all security assessment and authorization activities; work with the government team in completing the ATO process for integrating new capabilities and support the full federal Software Development Lifecycle (SDLC)
- Implement and continuously maintain Zero Trust Architecture (ZTA) across the platform per federal Zero Trust mandates; ensure security controls are embedded at every layer of the technology stack from storage classifications through IAM roles, network controls, and application security
- Ensure full compliance with FISMA, NIST 800-53, NIST 800-63, OWASP ASVS Level 2, federal software supply chain security requirements, and all agency-mandated security, privacy, performance, and quality requirements
- Engage with the agency's privacy and security teams and the System Owner at the start of every new service, feature, or dataset design to assess information type, security classification, data retention, and whether a System of Records Notice (SORN), Privacy Impact Assessment (PIA), or other formal review is required
- Identify and document what data is collected and why, how it is used and shared, how it is stored and secured, how long it is retained, and how users will be notified in the event of a security breach; ensure compliance with the Privacy Act of 1974 and the Federal Records Act
- Ensure all code submitted to production is free of medium- and high-level static and dynamic security vulnerabilities per OWASP ASVS Level 2; integrate OWASP ZAP, SAST tools, government-provided container analysis tools, and dependency analysis into the CICD pipeline as part of the Definition of Done
- Ensure security scans are conducted at least once per sprint; review, document, and explain all false positives; ensure scan results are visible in the team performance dashboard
- Manage AWS IAM role configurations and naming standards; maintain Secrets Manager credential management and certificate validity across all environments
- Use CloudWatch logging, CloudTrail, and AWS Config to ensure the production environment remains consistent, controllable, and auditable
- Ensure compliance with federal AI governance requirements for all AI/ML platform components; ensure compliance with the Trusted Internet Connections (TIC) Initiative, Section 508, and the 21st Century Integrated Digital Experience Act
- Collaborate with the IV&V team and agency security staff to continuously improve the platform's security posture; support resolution of all security findings within contractually required timelines
- Participate in 2-week sprint ceremonies, quarterly PI planning, and agile delivery using JIRA and GitHub
Education and Experience:
Required
- Bachelor's degree or higher in Cybersecurity, Information Systems, Computer Science, or a related field
- 6+ years of experience in federal information security with demonstrated experience in an ISSO role or ATO-leadership capacity at a civilian federal agency; financial regulatory agency experience strongly preferred
- Deep working knowledge of FISMA, NIST 800-53, NIST 800-63, and the full federal ATO/SDLC process
- Hands-on experience implementing Zero Trust Architecture on AWS in a FedRAMP-authorized environment including IAM hardening, network segmentation, and application-layer security controls
- Experience with OWASP ZAP, SAST/DAST tooling, dependency analysis, and container security scanning integrated into CI/CD pipelines
- Familiarity with AWS security services: IAM, Secrets Manager, CloudWatch, CloudTrail, AWS Config, and S3 bucket policy and sensitivity classification management
- Experience conducting or supporting Privacy Impact Assessments (PIAs) and System of Records Notices (SORNs)
- Knowledge of the Privacy Act of 1974, Federal Records Act, Section 508, the 21st Century IDEA Act, and applicable federal Zero Trust, AI governance, software supply chain, and TIC mandates
- Experience managing security for systems handling non-public, highly sensitive financial or regulatory data
- Strong written and verbal communication skills; ability to produce authoritative security documentation including PIAs, ATO packages, and OWASP false positive documentation
- Experience in agile federal environments with sprint-based delivery, JIRA, and GitHub
- Must be able to work 8am-5pm Eastern Time regardless of home location
- Active federal public trust suitability determination or ability to obtain one required
- Must be a U.S. citizen
STS is committed to equal employment opportunity and merit-based employment practices. STS provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination, harassment, and retaliation in all employment practices and decisions in accordance with applicable federal, state, and local laws.
Employment decisions at STS are based on individual qualifications, performance, skills, and business needs, without regard to race, color, religion, sex, national origin, age, disability, protected veteran status, sexual orientation, gender identity, genetic information, marital status, or any other status protected by applicable law.
This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, compensation, training, transfer, discipline, termination, layoff, recall, and leaves of absence.
---
Applicants may request removal from our applicant database, or specific information about how the data is used by contacting View email address on ziprecruiter.com.
- ...We are seeking a Senior Network Security Engineer for an operations-first role supporting enterprise network security infrastructure across on-premises, remote... ..., audit evidence collection, and coordination with ISSO, system owner, and security governance teams. Requirements...SuggestedRemote workFlexible hoursNight shift
- ...currently seeking a Director, ServiceNow Security Operations Architect to join our... ...administrators, architects, and cybersecurity engineers to customize solutions Ability and willingness... ...to travel as needed for client support Must be authorized to work in the U.S...SuggestedFull timeH1bLocal area
$113k - $188k
...Framework (CSF) guidelines, standards, and best practices for cyber security and risk management to strengthen an organizations security... ...key risks to government CISO and security auditors. Support risk audits and assessments, provide recommendations for application...SuggestedFull timeTemporary workFlexible hours$99k - $225k
...Job Number: R0242142 Information Systems Security Engineer The Opportunity Cyber threats are... ...Information Systems Security Officer (ISSO), or Governance, Risk, and Compliance specialist... ...the Enterprise Mission Assurance Support Service (eMASS) or Xacta Experience reviewing...SuggestedFull timeContract workPart timeWork at officeLocal area- ...Information Systems Security Engineer Zetier seeks an Information Systems Security Engineer... ...virtualization, and orchestration. You'll support, build, and secure cloud-based... ...(Ansible, Puppet) Previous role as ISSO, ISSM, or cloud security specialist...Suggested
- ...contest us, deterrence is assured, and the free world remains secure. Founded in 2024, Twenty Technologies () industrializes offensive... ..., and In-Q-Tel. Role Summary We are seeking IT Security Engineer to join our growing technology engineering team. This is a...Full timeWork at officeFlexible hours
- ...Arlington, Virginia, seeks a Senior Technical Support Specialist to provide advanced macOS,... .... The role ensures optimal performance, security, and usability of Apple endpoints with a... ...processes, and collaborate with engineering to resolve issues while safeguarding sensitive...
- MVM, Inc. is seeking a Program Support Analyst in Washington, DC. This role focuses on supporting the development, implementation, and analysis of policies and programs within the USPIS investigative program. The ideal candidate will have strong communication skills and...Permanent employmentWork at office
- Nucorevision, Inc. invites an IT administrator to support government staff in the DMV area, providing frontline technical support and... ...and macOS devices, mobile endpoints, and related hardware in a secure, compliant environment. You will manage identity and access using...
$40 per hour
A cybersecurity firm is seeking experienced cybersecurity professionals to evaluate AI-generated security content, solve technical problems, and provide feedback to improve AI systems. This is a flexible remote position, allowing you to work on chosen projects within a...Remote jobHourly payFlexible hours- IDS International is looking for a skilled Systems Administrator/Engineer II to support advanced cyber environments within a DoD setting. You will play a vital role in designing, deploying, and maintaining complex infrastructure systems, including physical, virtual, and...
- ...complementary software applications to support client engagements and have a direct and... ...We are seeking a Junior Cyber Risk Data Engineer/Analyst . This role focuses on the data... ...Qualifications Experience supporting national security organizations. Familiarity with cyber...InternshipShift work
- ...military experience will be evaluated on the same basis. Approving the security design and implementation of enterprise technology solutions to ensure systems meet security requirements and support organizational objectives. Developing security architectures for...Full timePart timeFor contractors
- ...The Senior Federal Information Systems Security Engineer (ISSE) serves as a technical integrator responsible for ensuring that system-to-... ...interoperability standards. This role operates upstream of A&A, supporting project teams during system design and throughout the...Contract workWork experience placementRelocation
$237.6k - $297k
We are seeking a highly technical Security Engineer to join our Product Security team. This role is integral to ensuring the security and integrity of our products and services. You will conduct in-depth code reviews, implement security best practices, and influence...Full time$166k - $253k
...months, not years. ABOUT THE JOB We're seeking a Security Software Engineer to develop novel security tooling for securing embedded Linux... ...at little to no cost to employees) ensures you're supported in health, recovery, and whatever comes next. For more information...Full timeWork experience placementImmediate start$71.2k - $166.1k
...Job Description The Senior Federal Information Systems Security Engineer (ISSE) serves as a technical integrator responsible for ensuring... ...standards. This role operates upstream of A&A, supporting project teams during system design and throughout the connectivity...Contract workTemporary workWork experience placementRelocationFlexible hours$90 - $100 per hour
...IT Security Engineer The Network Engineer role is to develop and maintain the high-level design & low-level design plan for the overall... ...and reports. 4. Conduct research on emerging technologies in support of network development efforts and recommend technologies that...Hourly payTemporary workFor contractorsWork experience placementRemote workWork from homeFlexible hours- ...Senior Security Engineer Washington, D.C. Metro - hybrid/remote At Ardent, we hire people who want more than a job — they want to serve a mission that matters. Our teams support the federal government's most critical national security and defense priorities, helping...Local areaRemote workFlexible hours3 days per week
$91.3k - $184.9k
...Network Security Engineer At Accenture Federal Services, nothing matters more than helping the US federal government make the nation stronger... ...Akamai and various Cloud native network security products Support troubleshooting efforts of network security tools & services...$112.5k - $202.5k
...building solutions to help improve the security of the company? Do you want to collaborate... ...directly to the Director of Security Engineering. You will have the opportunity to address... ...Developing scripts and tools to support the above functions. Do what you love...Work experience placementWork at officeWorldwide$150k - $250k
...need to thrive - in our offices or yours. Job Summary The Security Engineer - Google collaborates with account and specialty teams to... ...engagements Develop use cases and demos in the SHI lab to support sales engagements Provide relevant customer-facing demos,...Work experience placementWork at officeRemote workWorldwideFlexible hours$73.5k - $92.5k
...For more information, visit The Role in Brief: Security Engineer The Security Engineer will be a valued member of the EAB... ...and response capabilities Experience in implementing and supporting automation and infrastructure-as-code for security systems...Immediate startFlexible hours- ...Hybrid - 3 days in office with travel as required) Clearance: Must be eligible to obtain a DoD security clearance The Role We are seeking a Senior Security Engineer to strengthen cloud and software environments, ensuring compliance with U.S. government...Work at office
- ...Senior Security Engineer Job Locations US-MD-Bethesda Job ID 2026-3708 Category Software Development/Engineering... ..., enhancing institutional resilience. Provide primary support for critical network and security functions, including...Full timeLocal areaImmediate start
- ...Network Security Engineer Denver, Colorado;Washington, District of Columbia; Chicago, Illinois To proceed with your application, you... ...exceptional talent, recognizing and rewarding performance, and supporting our teammates' physical, emotional, and financial wellness...Work at officeFlexible hoursShift workDay shift
$120.8k - $265.8k
...Job Title: Cyber Defense Infrastructure Support EngineerJob Category: Information TechnologyTime... ...Cyber Defense Infrastructure Support Engineer (Level 3) to join our dynamic team to... ...will have a robust background in cyber security, network technologies, and...Contract workWork experience placementLocal areaFlexible hours- ...Senior Security Engineer Evolver Federal is seeking a Senior Security Engineer to fulfill a requirement for a potential government client... ...SIEM, SOAR, EDR, and vulnerability management platforms. Support Tier 2/3 SOC analysts by developing advanced correlation rules...Contract workFlexible hours
$112k - $130k
...Senior Security EngineerRemote - United StatesJR013945 At Ensono, our Purpose is to be... ...Summary The Senior Information Security Engineer is responsible for designing,... ...leadership across the organization. This role supports global cybersecurity initiatives, leads...Full timeTemporary workRemote workWork from homeFlexible hours
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Security Engineer/ISSO Support. Be the first to apply!
- information system security engineer Washington DC
- information technology security engineer Washington DC
- dlp security engineer Washington DC
- endpoint security engineer Washington DC
- security engineer Washington DC
- offensive security engineer Washington DC
- sr information security engineer Washington DC
- senior application security engineer Washington DC
- security operations engineer Washington DC
- aws cloud security engineer Washington DC



