Security engineer jobs in Washington, DC - 3,985 jobs

A leading technology firm is seeking a Cyber Machine Learning Engineer to build and improve machine learning models for detecting cyber threats. The ideal candidate has significant experience in cyber threat hunting and proficiency in Python and MLOps practices. This position offers a competitive compensation range of $99,000 to $225,000 annually, along with comprehensive benefits including health, life, and professional development opportunities. The job supports flexible work arrangements. #J-18808-Ljbffr

A cybersecurity solutions provider is seeking a Security Engineer specializing in Tanium to enhance endpoint management and security within federal government environments. Responsibilities include designing and maintaining Tanium infrastructure and collaborating with cybersecurity teams. Candidates must possess 12+ years of IT/Security experience and a relevant Bachelor's degree. This position offers a hybrid work model, a competitive salary between $135,000 and $155,000, and extensive benefits including medical and retirement plans. #J-18808-Ljbffr

A healthcare technology firm located in Maryland is seeking a Senior Security Engineer I to enhance security capabilities within cloud-native environments. The candidate will design and implement security solutions, lead incident response efforts, and collaborate with various teams to strengthen security posture. Applicants should have a degree in Computer Science or related field, extensive experience in security engineering, and proficiency in scripting languages like Python and Bash. This role offers a supportive workplace that values diversity and innovation. #J-18808-Ljbffr

Staffing Pros, a division of VETS Inc., is recruiting for a full-time Qualys Security Engineer onsite in Washington, DC or Beltsville, MD. This position requires an Active Secret Clearance. The Senior Qualys Security Engineer will support our customer's enterprise vulnerability management initiatives. This role involves maintaining and optimizing Qualys toolsets, performing vulnerability assessments, and working collaboratively across technical teams to strengthen organizational cybersecurity posture. This position is based on-site at either the Washington, DC or Beltsville, MD office, with occasional travel between the two locations. What you'll do: Oversee day-to-day management of the Qualys platform including agents, scanners, and connectors. Optimize scan configurations, authentication methods, and template deployments. Review and interpret scan results to generate actionable intelligence for technical and non-technical audiences. Partner with infrastructure, development, and SOC teams to validate findings and drive remediation efforts. Automate tasks using Qualys APIs and custom scripts to support reporting and data integration. Maintain an up-to-date asset inventory through discovery and classification workflows. Minimize false positives through tuning and validation. Conduct policy compliance assessments in support of regulatory frameworks. Provide guidance and mentorship to junior analysts in vulnerability management best practices. Required Qualifications 5+ years of hands-on expertise with Qualys. Must be able to commute to Beltsville, MD or Washington, DC for full-time onsite work. Secret clearance with the ability to obtain a Top Secret clearance is required. Proficiency in scripting (Python, PowerShell, or Bash). Familiarity with network protocols, OS security (Windows/Linux), and web application vulnerabilities. Understanding of compliance standards and frameworks (e.g., NIST 800-53, CIS Controls, ISO 27001.) Qualys Vulnerability Management & Policy Compliance. Qualys Web Application Scanning. Automation using Qualys APIs. Network architecture and protocol knowledge. Database and OS-level security. Vulnerability lifecycle and remediation strategies. Excellent written and verbal communication. Strong problem-solving and analytical mindset. Ability to operate independently or as part of a multi-disciplinary team. Solid documentation and reporting practices. Experience engaging with cross-functional stakeholders. US Citizenship is required. Preferred Qualifications Professional certifications: CISSP, CEH, GIAC, or equivalent. Exposure to other scanning tools (e.g., Tenable, Rapid7). Familiarity with public cloud security models (AWS, Azure, GCP). Experience with configuration management tools and CI/CD pipelines. Background in system administration, network engineering, or DevSecOps. EEO Statement Staffing Pros a division of VETS-inc is an Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities. The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information.

A leading financial institution in Washington, DC is seeking a cybersecurity expert to enhance its malware defense team. Responsibilities include analyzing malware, tracking campaigns, and authoring reports. The ideal candidate must possess strong malware analysis skills, experience in creating analytical tools, and a solid understanding of network traffic analysis. This position offers an annual salary between $95,700.00 and $144,900.00 based on experience, alongside robust benefits aimed at ensuring employee wellness. #J-18808-Ljbffr

A tech solutions provider based in Washington is seeking an experienced Information Assurance Engineer / Security Manager to lead the development and management of security infrastructure. The ideal candidate will have 15+ years in information security, overseeing security projects, and enhancing compliance. Strong leadership and communication skills are essential for mentoring a high-performing team. This role offers an opportunity to impact the security strategy and operations significantly. #J-18808-Ljbffr

Evolver Federal is seeking a Senior Security Engineer to fulfill a requirement for a potential government client. The Senior Security Engineer is responsible for designing, implementing, and maintaining advanced security solutions to protect federal systems and data. This role prioritizes continuous monitoring, FISMA compliance, and OIG audit readiness while engineering secure architectures, integrating cybersecurity technologies, and ensuring adherence to federal standards such as NIST 800-series, RMF, and TIC 3.0. The Senior Security Engineer will work closely with SOC teams, architects, and program managers to deliver robust security capabilities across cloud (AWS GovCloud, Azure Government), on-premises, and hybrid environments. This position requires deep technical expertise, hands-on experience with security tools, and the ability to lead engineering efforts for mission‑critical systems in highly regulated environments. Responsibilities Design and implement security solutions for enterprise and federal environments, ensuring compliance with RMF and NIST guidelines. Engineer secure configurations for SIEM, SOAR, EDR, and vulnerability management platforms. Support Tier 2/3 SOC analysts by developing advanced correlation rules for Splunk and optimizing detection workflows. Support SOC operations by integrating advanced detection and response capabilities. Conduct security assessments, penetration testing, and risk analysis for critical systems. Implement continuous monitoring and automated compliance reporting to meet Department of Labor and federal requirements. Develop and maintain security engineering documentation, including system security plans and architecture diagrams. Collaborate with architects and program managers to align security engineering with strategic objectives. Lead efforts to integrate security into DevSecOps pipelines and CI/CD workflows. Provide technical expertise during incident response and forensic investigations. Evaluate emerging technologies and recommend enhancements to improve security posture. Define and track measurable outcomes such as MTTR reduction, SLA adherence, compliance score improvements, and false positive reduction to meet performance‑based contract KPIs. Coordinate with federal stakeholders (CISO, ISSOs, AO) and provide audit support for ATO processes. Ensure adherence to performance‑based contract requirements and federal cybersecurity mandates. Basic Qualifications Bachelor's Degree in Computer Science, Information Management (IM), Information Technology, Engineering, or equivalent with 6 years of technical experience, or 4 years' experience in IT Solutions at senior management Certified Information Systems Security Professional (CISSP) mandatory with Information Systems Security Engineering Professional (ISSEP) concentration Project Management Institute (PMI) Project Management Professional (PMP) (Highly Recommended) Information Technology Infrastructure Library (ITIL) 4 Foundation 10 years of successful enterprise experience in an IT or technology-related field, with the last 5 years, on large government technical contract/BPAs US Citizen with the ability to pass a comprehensive government background check Preferred Qualifications Master's degree in cybersecurity, IT, or a related technical field Experience supporting SOC operations in federal or regulated environments Familiarity with RMF, NIST 800-series, OMB A-130, and TIC 3.0 Proven leadership in cross‑functional teams and performance‑based contracts Strong communication skills, including executive briefings and incident reporting Hands‑on experience with SIEM (Splunk, Elastic), SOAR (Cortex XSOAR), and EDR (CrowdStrike, Microsoft Defender). Expertise in cloud security engineering (AWS, Azure, GCP) and container security (Kubernetes, Docker). Familiarity with Zero Trust Architecture principles and implementation strategies. Familiarity Continuous Diagnostics and Mitigation (CDM). Experience with PKI, encryption standards, and secure network design. Knowledge of automation tools for security orchestration and compliance reporting. Ability to lead technical teams and mentor junior engineers in cybersecurity best practices. Experience integrating security controls into large-scale federal systems and mission‑critical applications. Understanding of advanced threat detection techniques and AI‑driven security solutions. Evolver Federal is an equal opportunity employer and welcomes all job seekers. It is the policy of Evolver Federal not to discriminate based on race, color, ancestry, religion, gender, age, national origin, gender identity or expression, sexual orientation, genetic factors, pregnancy, physical or mental disability, military/veteran status, or any other factor protected by law. Actual salary will depend on factors such as skills, qualifications, experience, market and work location. Evolver Federal offers competitive benefits, including health, dental and vision insurance, 401(k), flexible spending account, and paid leave (including PTO and parental leave) in accordance with our applicable plans and policies. #J-18808-Ljbffr

A government contracting firm in Washington, DC is seeking a Senior Security Engineer to enhance its IT security architecture and support compliance with the Cybersecurity Executive Order. The ideal candidate will possess a master's degree in information security, an active government clearance, and over 10 years of relevant experience. Key responsibilities include designing security infrastructure and advising leadership on security policies. This position requires strong analytical and communication skills. #J-18808-Ljbffr

Clearance: Active Secret Employment Type: Full-Time We are seeking a Principal Cloud Security Engineer to lead the design, automation, and enforcement of security across large-scale federal cloud environments. This role focuses on cloud security architecture, DevSecOps automation, and secure platform enablement in a multi-cloud ecosystem. The ideal candidate is highly technical, self-directed, and comfortable operating as the senior security authority for cloud platforms. You will define secure patterns, implement guardrails at scale, and embed security directly into infrastructure and CI/CD pipelines. Key Responsibilities: Cloud Security Architecture: Design and guide secure architectures across AWS, Azure, and GCP, including GovCloud and restricted environments Define and enforce security baselines aligned with NIST 800-53, FedRAMP, and CIS Benchmarks Lead threat modeling, architecture reviews, and secure design guidance for cloud workloads DevSecOps & Automation: Build and maintain Infrastructure as Code using Terraform (preferred) and cloud-native tooling Integrate automated security controls into CI/CD pipelines (SAST, DAST, IaC scanning, container scanning) Implement policy-as-code guardrails using tools such as AWS SCPs, Azure Policy, and cloud-native governance services Develop automated remediation and enforcement workflows to reduce manual security effort Governance, Compliance & Visibility: Embed compliance controls directly into cloud infrastructure and pipelines to support ATO efforts Partner with compliance teams and auditors on evidence collection and continuous monitoring Implement centralized logging, monitoring, and incident response across cloud environments Technical Leadership: Serve as the senior cloud security SME for engineers, architects, and stakeholders Mentor engineers on secure cloud development and DevSecOps practices Translate complex security concepts to both technical and non-technical audiences Required Qualifications: Active Secret clearance 8+ years in cybersecurity or cloud engineering, including 5+ years focused on cloud security Deep hands-on experience securing AWS, Azure, or GCP (experience in at least two preferred) Strong Infrastructure as Code experience (Terraform strongly preferred) Experience integrating security into CI/CD pipelines (GitHub Actions, GitLab, or similar) Proficiency in Python, Go, PowerShell, or Bash Strong understanding of IAM, networking, encryption, key management, and cloud-native security services Ability to operate independently and define security priorities without daily direction Preferred Qualifications: Experience securing GovCloud, DoD IL5/IL6, or other regulated cloud environments Kubernetes and container security experience Zero Trust architecture implementation experience ServiceNow integrations for security workflows Cloud security certifications (AWS Security Specialty, Azure Security Engineer, etc.) What Makes This a True Principal Role: Highly hands-on and deeply technical Owns security outcomes rather than executing predefined tasks Heavy DevSecOps and IaC focus Large-scale, multi-cloud environment Architecture and influence matter as much as implementation

A leading technology solutions provider in Washington, DC is seeking a Senior Systems Security Engineer. This role involves hands-on engineering and securing multiple operating systems, managing vulnerabilities, and ensuring compliance with security frameworks. Ideal candidates will have 5-10 years of experience in system engineering and strong communication skills. The position offers competitive pay and extensive benefits including paid medical and dental insurance. #J-18808-Ljbffr

Cybersecurity Consultant Arlington VA (Pentagon - Onsite) 125k/year Top Secret - SCI eligibility We are seeking a Cybersecurity Consultant to support a contract out of the Pentagon. This role requires an Active Top Secret clearance with SCI eligibility. Experience working in a DAF Headquarters staff environment or at the Pentagon is highly desired. Responsibilities include: Supports the execution and delivery of the Department of the Air Force (DAF) cybersecurity program Supports the DAF Chief Information Security Officer (CISO). Prioritizes in a dynamic, fast-paced environment. Communicates effectively across diverse audiences. Engages and influences stakeholders (e.g., military, Government civilian, and contractor personnel), including senior executives and Flag / General Officers. Advises based on broad based technical background in cyber / Information Technology (IT) operations and cybersecurity. Maintains a "big picture”/strategic perspective of DAF CISO goals. Addresses the specific needs of various organizations within and outside the DAF. Adapts new cybersecurity practices and technologies to meet DAF missions. Analyzes data sets to determine trends, establish strategies, andmake recommendations. Applies Federal (e.g., National Institute of Standards and Technology [NIST) and Office of Management and Budget) and DoW cybersecurity policies, including Risk Management Framework (RMF) and Cybersecurity Framework. Minimum Requirements: Bachelor's Degree in Business, Computer Science, Computer / Electrical Engineering, Cybersecurity, Data Analytics / Science, Information Technology, Math, Statistics, or other related degree field; or 8+ years of relevant experience will be accepted as equivalent to listed bachelor's degrees. At least four (4) years of Cybersecurity experience in a senior technical or management role. Has experience leading the development and implementation of enterprise-level cybersecurity programs, preferably Department of War (DoW), including the development of policies, procedures, and other guidance documents. Has experience engaging Authorizing Official(s), Security Control Assessors, and cyber risk management staffs. Possesses expert knowledge of NIST 800 series standards and guidelines, DoW RMF, and current cybersecurity best practices. Has excellent communications and presentation skills as well as professional demeanor when interacting with and briefing senior military and Government civilian leadership. Possesses strong understanding of cyber implementation requirements in one or more of the following areas: Cloud Security, Communications Security/Encryption Supply Chain Risk Management, Embedded Systems, Industrial Control Systems/Supervisory Control and Data Acquisition (ICS / SCADA), Internet of Things, Operational Technology Transmission Security, Weapon Systems. Has experience working at DoW HQ level environment, DAF (Pentagon) experience preferred. Has an Active Top Secret and be SCI-eligible. Additional Requirements (optional) Highly preferred: Possess an active senior-level cybersecurity certification (e.g., Certified Information Security Manager [CISM], Certified Information Systems Security Professional [CISSP], GIAC Security Leadership Certificate [GSLC], or EC-Council Certified Chief Information Security Officer [CCISO]). Master's Degree in Business, Computer Science, Computer / Electrical Engineering, Cybersecurity, Data Analytics / Science, Information Technology, Math, Statistics, or other related degree field is preferred. Marathon TS is committed to the development of a creative, diverse and inclusive work environment. In order to provide equal employment and advancement opportunities to all individuals, employment decisions at Marathon TS will be based on merit, qualifications, and abilities. Marathon TS does not discriminate against any person because of race, color, creed, religion, sex, national origin, disability, age or any other characteristic protected by law (referred to as "protected status").

Enterprise Security System (ESS) Administrator - DHS Federal Law Enforcement Training Center (FLETC) ID 2025-1454 Remote No JOB TITLE: Enterprise Support System (ESS) Administrator GOVERNMENT AGENCY: Department of Homeland Security (DHS), Federal Law Enforcement Training Center (FLETC) POSITION INFORMATION: Full-Time Position LOCATION: FLETC Headquarters - Glynco, GA; or other FLETC Training Delivery Points (TDPs) in Artesia, NM; Charleston, SC; or Cheltenham, MD (including the Washington, DC Office). Some services may be performed remotely. The place of performance will be dependent on the awarded proposal. POSITION TIMING: Contingent on Contract Award ITC Federal, LLC, (ITC) is an information technology and consulting company focused on servicing the needs of the Federal Government. ITC's mission is to apply earned expertise in DevSecOps, Cloud Computing, Federal Financial Systems, App Dev, and Cyber Security to assist our clients in achieving their mission. ITC is located in Fairfax, VA and offers outstanding compensation and benefits plan and a challenging and rewarding professional work environment. Program Overview: The Federal Law Enforcement Training Centers (FLETC), part of the Department of Homeland Security (DHS), is responsible for training and supporting the training of federal, state, local, and tribal law enforcement officers-as well as international partners-who enforce laws, treaties, and regulations in the United States and abroad. Headquartered in Glynco, Georgia, with training delivery points in Artesia, New Mexico; Charleston, South Carolina; and Cheltenham, Maryland, FLETC's mission depends on secure, stable, and modern IT infrastructure. This program delivers comprehensive Information Technology (IT) Delivery and Operations Support Services (DOSS) that ensure reliable and efficient IT and media system performance across all FLETC locations. The Enterprise Security System (ESS) Administrator will play a critical role in maintaining the availability, performance, and security of FLETC's ESS environment. The Enterprise Security Systems (ESS) Administrator is responsible for the full lifecycle management, configuration, and sustainment of the security systems and related enterprise infrastructure supporting FLETC operations. Responsibilities RESPONSIBILITIES: Design, install, configure, and maintain the FLETC Enterprise Security Systems (ESS) environment, ensuring system availability, security, and performance across all training sites. Administer and manage physical access control systems, security-related databases, and supporting servers and network infrastructure. Implement and maintain cybersecurity and access control measures in accordance with DHS and FLETC standards. Coordinate with CSO and CIO stakeholders to support secure facilities and shared system operations. Perform regular system patching, updates, and capacity planning to ensure long-term scalability and system health. Monitor system performance and proactively identify, diagnose, and resolve issues impacting security systems or end users. Develop and maintain detailed documentation, including system configurations, architecture diagrams, and standard operating procedures. Support system integration efforts between security platforms and broader enterprise IT environments. Participate in audits, compliance reviews, and incident response activities as required. Provide advanced troubleshooting and root cause analysis for system and infrastructure issues affecting mission-critical security operations. Qualifications REQUIRED: Demonstrated experience administering and maintaining enterprise-level security systems, including physical access control, surveillance, and visitor management technologies. Expertise in server, database, and infrastructure management within a secure enterprise environment. Strong understanding of system security principles, access control, and vulnerability management. Proficiency in system monitoring, performance tuning, and issue resolution across hardware, software, and network layers. Experience developing and maintaining detailed system documentation and operational procedures. Ability to work both independently and collaboratively within cross-functional teams (Security, IT Operations, and Engineering). Ability to obtain and maintain a Public Trust security clearance. DESIRED: Experience supporting Enterprise Security Systems or comparable large-scale physical security environments. Familiarity with Windows Server, SQL Server, and enterprise infrastructure solutions. Experience with system backups, disaster recovery, and high-availability configurations. ITIL certification or experience operating within an IT service management framework. Knowledge of DHS or federal IT compliance standards (FISMA, NIST, etc.). Strong communication, documentation, and customer service skills. WORK ENVIRONMENT AND PHYSICAL DEMANDS: Candidate must be able to function in general office environment. ITC Federal is an equal opportunity employer and will not discriminate against any application for employment on the basis of age, race, color, gender, national origin, religion, creed, disability, veteran status, marital status, sexual orientation, genetic information, military status, disability, or sex including pregnancy and childbirth or related medical condition or on any other basis prohibited by law.

Join the Expedition: Engineers Wanted At Expedition Technology (EXP), we don't just build things-we build the future. Whether it's decoding signals from the edge of the spectrum, teaching machines to see the unseen, or crafting AI that thinks faster than the threat, we're in the business of solving national security challenges with elegance, grit, and a whole lot of code. We're not hiring for a specific role. We're hiring for a mindset. If you're an engineer who: Gets excited about sensor processing (any sensors, any types of signals) Regularly wonders how to incorporate new paradigms to tackle previously unsolved problems (LVLMs? Agents? RL? Quantum? What's next?) Thinks cloud or embedded systems can be beautiful Can build a visualization that makes complex data feel like a story Wants to work on projects that matter-to the country and the world What We Do (and You Could Too): Build AI/ML systems that help the Department of Defense and Intelligence Community make faster, smarter decisions in dynamic environments Develop real-time solutions for low power edge devices, cloud platforms, and everything in between Research, prototype, and deploy novel technology Collaborate in "team of teams" structures that prioritize agility, autonomy, and impact What You Bring (The Essentials): A deep-seated passion for solving hard problems. An active TS/SCI clearance and U.S. Citizenship. A collaborative spirit and a drive to learn from and teach others. And Expertise in One or More of These Areas: We don't expect you to be an expert in everything. We're looking for people who have a center of gravity in one of these areas and are excited to learn about the others. Software Engineering: Writing clean, robust, and efficient code. AI/ML Development: Building, training, and deploying models using frameworks like PyTorch or TensorFlow. Experience with RF, CV, or NLP is a major plus. Signal Processing: A strong theoretical and practical understanding of digital signal processing (DSP) for communications, RADAR, or other sensor systems. Systems Engineering & DevOps: Designing and maintaining complex systems, whether on cloud platforms (AWS, Azure) or on-premise hardware. Embedded Systems: Developing and optimizing software for resource-constrained edge devices (e.g., FPGAs, GPUs, SoCs). What You Get: A front-row seat to the future of defense tech A culture that values experimentation, iteration, and the occasional bad pun The chance to work with people who believe in what they do-and have fun doing it Ready to explore, experiment, and expand? Join Expedition! Apply now-or just reach out and tell us what you're excited to work on. We're listening. Clearance required: TS/SCI Who is Expedition Technology? Expedition Technology (EXP) designs, develops, and delivers innovative, advanced signal, image, and multi-INT solutions for the defense and intelligence communities. We leverage advanced algorithms, platforms, and technologies to solve our customers' most complex, demanding, and urgent C4ISR challenges. Our culture promotes individual growth and opportunity, prioritizes a collaborative team spirit, and invites the intellectually curious to creatively solve challenging problems. Headquartered in Northern Virginia's high-tech corridor, EXP is a rapidly growing, privately held, employee-owned company that pushes the boundaries of what is possible every day. Interested in joining our team? Let's explore together. To learn more about EXP and discover why we are an award-winning workplace, visit ourweb siteand follow us on LinkedIn. Join Our Team and Enjoy Exceptional Benefits! Expedition Technology (EXP) offers a flexible, self-directed benefits package that is designed to fit your individual needs.Here's a glimpse of the outstanding benefits you can enjoy when you join our team: Company-paid medical, dental, and vision insurance Generous Time Off: Enjoy 12 paid holidays, up to 33 days of PTO, and generous sick leave Robust 401(k) Plan: Benefit from up to a 12% company contribution, including a 3% safe harbor, 6% match, and up to 3% additional as a form of profit sharing. Student Loan Repayment: Take advantage of our unique option to reallocate a portion of your 401(k) match funds to repay student loans, helping you achieve financial freedom faster. Paid Parental Leave: Six weeks of paid leave for the primary caregiver and 2 weeks of paid leave for the secondary caregiver for you to bond with your new family member. Tuition Reimbursement: Pursue further education with up to $5,250/year available to support your continuous learning and growth. Referral Bonus Program: Earn rewards for bringing talented individuals into our team. Exclusive Entertainment Perks: Enjoy free tickets to sporting events, theater, concerts, and more, adding fun and excitement to your life. Onsite Amenities: Stay fit and healthy with our free, onsite fitness center, active workstations featuring treadmill and bike desks, and enjoy our onsite cafeteria with reduced-cost options. Inspiring Work Culture: Thrive in a collaborative, creative, and supportive culture where you are encouraged to push boundaries, take risks, and enjoy the rewards. Join us and be part of a team that values your well-being and professional growth. Apply today and take the first step towards a fulfilling career with us! EXP is proud to be an Equal Opportunity Employer that believes a diverse range of talent creates an environment that fosters creativity and innovation . All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, disability, national origin, genetic information, or protected veteran status.

Job ID 2025-13054 # of Openings 1 Category Cyber Benefit Type Salaried High Fringe/Full-Time LMI is seeking an Information System Security Officer (ISSO) to support our Department of Homeland Security (DHS) market. LMI is a new breed of digital solutions provider dedicated to accelerating government impact with innovation and speed. Investing in technology and prototypes ahead of need, LMI brings commercial-grade platforms and mission-ready AI to federal agencies at commercial speed. Leveraging our mission-ready technology and solutions, proven expertise in federal deployment, and strategic relationships, we enhance outcomes for the government, efficiently and effectively. With a focus on agility and collaboration, LMI serves the defense, space, healthcare, and energy sectors-helping agencies navigate complexity and outpace change. Headquartered in Tysons, Virginia, LMI is committed to delivering impactful results that strengthen missions and drive lasting value. Responsibilities Acquire and manage all necessary documentation/artifacts, including cybersecurity support and resources, to support IT cybersecurity goals and objectives from a risk management perspective. Advise senior management on system risk levels and cybersecurity posture for cloud-based environments Assist in the deployment, architecture and configuration of security controls of deployed systems with Cloud Architects Ensure that developed systems and architectures are consistent with all applicable DHS cybersecurity policies and guidelines. Perform Assessment and Authorization (A&A) cybersecurity reviews, identify gaps, and support risk management plans for cybersecurity personnel to execute. Provide input on cybersecurity requirements and collect and maintain data needed to meet system cybersecurity compliance reporting. Provide subject matter expertise for Risk Management Framework (RMF) activities and related documentation to support system accreditation / Authority to Operate (ATO) requirements. Interpret noncompliance to determine the impact on levels of risk and/or overall effectiveness of the enterprise's cybersecurity program. Track audit findings and recommendations to ensure that appropriate mitigation actions are taken. Support necessary compliance activities (e.g., ensure that system security configuration guidelines are followed, compliance monitoring occurs). Coordinate with geographically-distributed, multi-discipline teams to ensure compliance with all applicable requirements for cybersecurity are addressed. Ensure that plans of action and milestones (POAM) or remediation plans are in place for vulnerabilities identified during risk assessments, audits, inspections, etc. and support necessary remediation/compliance activities. Participate in recurring cybersecurity working group meetings. Oversee and manage A&A activities to support their respective systems and security activities. Work with program ISSOs and ISSMs to effectively aggregate technical details for government leadership including the cybersecurity lead, project managers, program managers to facilitate succinct and effective risk discussions and provide understanding of respective program risks. Provide security support and evaluation to development teams to integrate information assurance/cyber security and remediate vulnerabilities throughout the System Life Cycle Development. Lead the development, review and management of system Assess and Authorize documentation to ensure it is compliant with RMF standards. Develop guidance and assists associates through the RMF phases. Participate in ATT and ATO activities Support the organization's program that implements information systems security technology and procedures. Review DHS policy and develop local policy and procedures that implement the DHS Cybersecurity subprograms and initiatives. Create and submit Plan of Actions & Milestones (POA&M) for review and approval by the Authorizing Official (AO) Qualifications Required Qualifications Bachelor's degree in a related field or equivalent experience. 8+ years demonstrated SP 800-37 RMF, NIST 800.53 experience Familiarity with cybersecurity tools such as Aquasec and Sonar Qube Must possess a Security + certification Experience developing or ensuring development adheres to cybersecurity requirements and best practices (e.g., NIST controls) Familiarity with commercial off-the-shelf solutions for specific security capabilities DHS/CBP background investigation highly preferred Desired Qualifications Exposure to AWS, Azure and Google Cloud Host Base Security System (HBSS), Tenable Nessus Vulnerability Assessment, EMASS Disclaimer: The salary range displayed represents the typical salary range for this position and is not a guarantee of compensation. Individual salaries are determined by various factors including, but not limited to location, internal equity, business considerations, client contract requirements, and candidate qualifications, such as education, experience, skills, and security clearances. Target Salary Range- $119,813.31 - $189,000 LMI is an Equal Opportunity Employer. LMI is committed to the fair treatment of all and to our policy of providing applicants and employees with equal employment opportunities. LMI recruits, hires, trains, and promotes people without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, pregnancy, disability, age, protected veteran status, citizenship status, genetic information, or any other characteristic protected by applicable federal, state, or local law. If you are a person with a disability needing assistance with the application process, please contact Colorado Residents: In any materials you submit, you may redact or remove age-identifying information such as age, date of birth, or dates of school attendance or graduation. You will not be penalized for redacting or removing this information. Need help finding the right job? We can recommend jobs specifically for you! Click here to get started.

Government of the District of Columbia Office of the Chief Financial Officer (OCFO) Network Security Engineer (INFOSEC) $103,651.00 - $157,829.00 This position is located in the Office of the Chief Financial Officer (OCFO), Office of the Chief Information Officer (OCIO). The incumbent serves as an Information Technology Specialist analyzing and defining IT systems security requirements, implementing solutions, planning and tracking projects, and coordinating inter-agency efforts in the areas of network, security, and inter-operability. Duties include but are not limited to: Applying business process engineering concepts and methods sufficient to lead/conduct studies; designing and implementing solutions to maintain and enhance the security of OCFO information systems and networks including firewalls, Intrusion detection/prevention systems, port and VLAN level filtering, network monitoring, compliance tools, audit logging, password management, anti-spam and virus systems, patch management systems and other related network and system security systems and processes (on-premise and cloud); Developing policies and procedures to ensure reliability, accessibility and to prevent unauthorized access to systems, networks, and data; conducting risks and vulnerability assessments; and conducting systems security evaluations, audits, and reviews. Performs other related duties as assigned. Minimum Qualifications Five (5) years of progressive experience performing the related duties and responsibilities such as conducting end to end cyber security monitoring to identify and mitigate risk; identifying network improvements and making recommendations to enhance system security (on-premises and cloud). Certified Information Systems Security Professional (CISSP), CompTIA Security+, CEH certification is preferred. For initial review, please submit your resume to the Office of the Chief Financial Officer, Office of Human Resources, 1101 4 th Street, SW, Suite W220, Washington, DC 20024. To complete an application or for additional details related to this vacancy, please visit ************** and reference announcement number: 24-IT-OCIO-0001 The OCFO offers a competitive salary and benefits package including medical, dental, retirement, and educational assistance. The Office of the Chief Financial Officer is an EQUAL OPPORTUNITY EMPLOYER

Conviso Inc is looking for ISSO Officer for onsite Job. This role comes with benefits, 401K & some accrued PTO. The Ideal must have hands-on technical and analytical experience supporting the RMF lifecycle, cybersecurity monitoring, continuous authorization, and security control assessments. Are you open to new opportunities & could this be of interest? On Site Job at 3 locations - Albuquerque NM, Las Vegas NV, Germantown MD Active Top-Secret Clearance Required Title: Information System Security Officer (ISSO) Minimum 3 years as an ISSO Required Skills: ISSO personnel must understand and interpret data from security tools and apply NIST frameworks with precision. Capabilities include: Proficiency in NIST SP 800-37, 800-53, 800-60, FIPS 199, CNSSI 1253. Ability to perform risk assessments, system categorization, and control selection. Experience with eGRC tools (e.g., Archer) for documentation, continuous monitoring, and POA&M management. Responsibilities: Prepare: Support enterprise, mission, and system-level RMF readiness, establish tailored baselines, identify assets, assess risks, and determine system placement in the enterprise architecture. Categorize Information Systems: Perform FIPS 199 categorization, develop SSP subsections, register systems, and ensure early engagement with developers to integrate cybersecurity impact analysis. Select Security Controls: Document, implement, and validate selected controls, incorporating security architecture, privacy requirements, and common control inheritance. Assessment: Develop assessment plans, test controls, produce SARs, document findings, and support POA&M development. Data Calls: Provide timely and accurate evidence and responses using approved tools. Internal & External Assessments: Support audits, collaborate with internal and external partners, and perform self-assessments. Program-Level Documentation Support: Maintain program policies, adjudicate comments, and assess the impact of federal directives and legislation.

AArete is one-of-a-kind when it comes to consulting firm culture. We're a global, innovative management and technology consulting firm, with offices in the U.S., India, and the U.K. Our name comes from the Greek word for excellence: "Arete." And excellence is exactly what we strive for. Our success starts with enriching and empowering our people. From robust career development planning to competitive life and wellness benefits, AArete's "Culture of Care" takes a holistic approach to the employee experience. AAretians (our team members) are leaders at every level. You are encouraged to unlock your full potential by directly contributing to our mission and prioritizing space for personal development and fulfillment. The Role AArete is looking for an Information Security Engineer. You are highly technical with an entrepreneurial spirit and commitment to excellence. You thrive in a team environment and have the ability to flip tasks and priorities midstream because you love an exciting challenge. The bar is set high at AArete. There is a lot to do around here, and you love getting the job done right. At AArete, we are dedicated to delivering the best experience to our clients every day. We are fresh, passionate, full of energy, and love what we do-providing non-labor cost reduction solutions and impressing our clients with impeccable service. Work You'll Do Manage and optimize security technologies, including endpoint protection tools, email security tools, vulnerability scanners, and Siems Provide support, administration, and maintenance necessary to ensure effective and efficient information technology system performance and security Identify, analyze, and mitigate threats to internal information technology systems or networks Maintain baseline system security according to organizational policies Manage accounts, network rights, and access to systems and equipment Design access control lists to ensure compatibility with organizational standards, business rules, and needs Provide ongoing optimization and problem-solving Analyze data sources to provide actionable recommendations Assess the validity of source data and subsequent findings Present technical information to technical and non-technical audiences Present data in creative formats Provide actionable recommendations to stakeholders based on data analysis and findings Oversee installation, implementation, configuration, and support of system components Answer requests for information Conduct in-depth research and analysis Provide input and assist in the development of plans and guidance Maintain infrastructure within a cloud environment Other duties as assigned Requirements 2+ years of experience working in an information security role Experience with tools such as Sentinel One, Microsoft Defender, Mimecast, Rapid7 IDR, AWS Native Security Services, Microsoft Purview, Microsoft Intune, vRx (Vicarius) or similar Direct client interaction, including possible travel to client location Applicants must be based in Chicago, IL, and flexible to work from our Chicago office as needed Must be legally authorized to work in the United States without the need for employer sponsorship Preferred Requirements Technology-focused degree Professional certifications such as GSEC, SSCP, Security+, SC-200, SC-400 or others Compensation & Benefits Flexible PTO, monthly half-day refuels, volunteer time off, 10 paid holidays Own Your Day flexible work policy Competitive majority employer-paid benefits: Medical, Dental, Vision, 401K Match Generous paid parental leave options Employer paid Life Insurance, STD, LTD Charitable contribution matching program New client commission opportunities and referral bonus program Bike share discount program The estimated base salary range for this position is $72,000 - $92,000. In addition to this base salary, individuals may be eligible for an annual discretionary bonus. This range is a part of a competitive, total compensation package together with our majority employer-paid benefits and incentive pay for eligible roles. Please note that this range is a guideline and individual total compensation may vary due to numerous factors including but not limited to experience level, certifications, and other relevant business considerations. AArete will accept applications until the position is filled. The job posting will be removed once the role is no longer available. We put humans at the center of our work We're a global management and technology consulting firm specializing in strategic profitability improvement, digital transformation, and strategy & change for clients. Our cross-industry solutions are powered by a digital-first mindset, market intelligence, and data-driven approach to deliver purposeful change, actionable insights, and guaranteed results. But what sets us apart is our people. We are guided by our deeply embedded guiding principles: Excellence, Passion, Loyalty to Clients, Stewardship, Family, Community, Sustainability, and Inclusion. And we've been recognized as a top firm to work for by companies like Forbes, Top Workplaces Chicago Tribune, and Consulting Magazine. We've earned a Great Place to Work Certification and been named a World's Best Management Consulting Firm by Forbes, Vault's Top 50 Firms to Work For, Crain's Chicago Business Fast 50, Inc 5000's Fastest Growing Firms, and Consulting Magazine's Fastest Growing Firms. Learn more about our award-winning culture We are an Equal Employment Opportunity Employer All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. #LI-DNI

** DO NOT APPLY IF YOU DO NOT HAVE AN ACTIVE SECRET CLEARANCE AND A CISSP** Location: Suitland, MD - Full-Time, On-Site Salary Range: $130,000 - $140,000 annually . Who We Are RCG is a fast-growing federal contracting firm proudly Certified as a Great Place to Work. We are committed to fostering a culture of innovation, inclusion, and excellence. At RCG, we deliver technology and mission support services that help government agencies succeed. We are currently seeking a Deputy Information Assurance Engineer / Deputy Information Systems Security Officer (Deputy ISSO) to support our federal government customer in Suitland, MD. This position is fully on-site and supports mission-critical systems within the JPSS/LCCS program. Please note: Due to the secure nature of this government agency, all candidates must be U.S. Citizens and able to successfully pass the required background investigation. The Opportunity This role is ideal for a senior Information Assurance professional who will serve as a Deputy ISSO and team lead, supporting authorization, compliance, and continuous monitoring activities for NOAA JPSS/LCCS systems. The Deputy ISSO will provide leadership to junior ISSOs, maintain system ATOs, and collaborate closely with multiple technical and operational teams to ensure a strong and compliant security posture. The successful candidate will play a key leadership role across A&A, POA&M management, Continuous Monitoring, change control, and incident response activities. What You'll Do Deputy ISSO / Team Lead Responsibilities Serve as Deputy ISSO Team Lead, advising, mentoring, and training junior ISSOs on security and compliance activities. Provide guidance on RMF, FISMA, and program-level security processes. JPSS/LCCS A-ISSO Responsibilities Maintain and support ATO packages for NOAA 5042 and NOAA 5065-1 systems. Lead Assessment & Authorization (A&A) documentation reviews, updates, and Security Control Assessment (SCA) activities. Work closely with OMS, LGSS, FVTS, MSC, and GP Security teams to maintain and improve overall program security posture. Lead weekly cross-contract POA&M and security operations management meetings. Participate in and vote during Mission Change Control Boards (CCBs) for system modifications. Lead JPSS/LCCS Continuous Monitoring working group meetings. Serve as Chair of the program SSID documentation review board. Assist in incident response activities, working directly with operational and cybersecurity teams. Maintain strong working relationships with Federal clients, including System Owners, ISSOs, Flight, and Operations personnel. Required Qualifications Active Secret clearance (REQUIRED). Bachelor's degree in a relevant technical field. Minimum 8 years of experience in Information Assurance, Information Security, or ISSO-related roles. Demonstrated experience supporting RMF, FISMA, ATO, and Continuous Monitoring activities. Proven leadership experience mentoring or leading junior security staff. Strong ability to collaborate across multiple technical, operational, and security teams. Excellent written and verbal communication skills. Certifications (Required) CISSP Physical Demands The physical demands described here are representative of those required to successfully perform the essential functions of this role. Reasonable accommodations may be made to enable individuals with disabilities to perform these functions. EEO Statement RCG, Inc. does not discriminate against qualified individuals based on their status as protected veterans or individuals with disabilities and prohibits discrimination against all individuals based on race, color, religion, sex, sexual orientation/gender identity, or national origin.

A leading IT solutions firm seeks a Senior Security Engineer to ensure the security of federal systems and data. The role involves designing advanced security solutions, conducting risk analysis, and integrating security into federal environments. Candidates should have a Bachelor's degree in a relevant field, CISSP certification, and extensive experience with government contracts. Strong leadership and communication skills are critical for success in this position. #J-18808-Ljbffr