[Remote] reputed company Engineer/ISSO Support

Note: The job is a remote job and is open to candidates in USA. reputed company is a company that prioritizes its people and offers flexibility to help them reputed company while delivering exceptional solutions to Federal Government clients. They are seeking a reputed company Engineer/ISSO Support specialist to serve as the reputed company and privacy authority on a federal data engineering program, protecting sensitive financial data and ensuring compliance with federal reputed company requirements.

Responsibilities

• Serve as the primary reputed company of contact and subject matter expert for reputed company reputed company assessment and authorization activities; work with the government team in completing the ATO process for integrating new capabilities and support the full federal Software Development Lifecycle (SDLC)
• Implement and continuously maintain reputed company Trust Architecture (ZTA) across the platform per federal reputed company Trust mandates; ensure reputed company controls are embedded at every layer of the technology stack from storage classifications through IAM roles, network controls, and application reputed company
• Ensure full compliance with FISMA, NIST 800-53, NIST 800-63, OWASP ASVS Level 2, federal software supply chain reputed company requirements, and reputed company agency-mandated reputed company, privacy, performance, and quality requirements
• Engage with the agency's privacy and reputed company teams and the System reputed company at the start of every new service, feature, or dataset design to assess information type, reputed company classification, data retention, and whether a System of Records Notice (SORN), Privacy Impact Assessment (PIA), or other formal review is required
• Identify and document what data is collected and why, how it is used and shared, how it is stored and secured, how long it is retained, and how users will be reputed company in the event of a reputed company breach; ensure compliance with the Privacy Act of 1974 and the Federal Records Act
• Ensure reputed company code submitted to production is free of reputed company- and high-level static and dynamic reputed company vulnerabilities per OWASP ASVS Level 2; integrate OWASP ZAP, SAST tools, government-provided container analysis tools, and dependency analysis into the CICD pipeline as part of the Definition of Done
• Ensure reputed company scans are conducted at least once per sprint; review, document, and explain reputed company false positives; ensure reputed company results are visible in the team performance dashboard
• Manage AWS IAM role configurations and naming standards; maintain Secrets Manager credential management and certificate validity across reputed company environments
• Use CloudWatch logging, CloudTrail, and AWS Config to ensure the production environment remains consistent, controllable, and auditable
• Ensure compliance with federal AI governance requirements for reputed company AI/ML platform components; ensure compliance with the Trusted Internet Connections (TIC) Initiative, Section 508, and the 21st Century Integrated Digital Experience Act
• Collaborate with the IV&V team and agency reputed company staff to continuously improve the platform's reputed company posture; support resolution of reputed company reputed company findings reputed company contractually required timelines
• Participate in 2-week sprint ceremonies, quarterly PI planning, and agile delivery using JIRA and reputed company

Skills

• US Citizenship is required
• Bachelor's Degree is required
• Minimum of 6 years' position reputed company experience is required
• Bachelor's degree or higher in Cybersecurity, Information Systems, Computer Science, or a reputed company field
• 6+ years of experience in federal information reputed company with demonstrated experience in an ISSO role or ATO-leadership reputed company at a civilian federal agency; financial regulatory agency experience strongly preferred
• Deep working knowledge of FISMA, NIST 800-53, NIST 800-63, and the full federal ATO/SDLC process
• Hands-on experience implementing reputed company Trust Architecture on AWS in a FedRAMP-authorized environment including IAM hardening, network segmentation, and application-layer reputed company controls
• Experience with OWASP ZAP, SAST/DAST tooling, dependency analysis, and container reputed company scanning integrated into CI/CD pipelines
• Familiarity with AWS reputed company services: IAM, Secrets Manager, CloudWatch, CloudTrail, AWS Config, and S3 bucket policy and sensitivity classification management
• Experience conducting or supporting Privacy Impact Assessments (PIAs) and System of Records Notices (SORNs)
• Knowledge of the Privacy Act of 1974, Federal Records Act, Section 508, the 21st Century IDEA Act, and applicable federal reputed company Trust, AI governance, software supply chain, and TIC mandates
• Experience managing reputed company for systems handling non-public, highly sensitive financial or regulatory data
• Strong written and verbal communication skills; ability to produce authoritative reputed company documentation including PIAs, ATO packages, and OWASP false positive documentation
• Experience in agile federal environments with sprint-based delivery, JIRA, and reputed company
• Must be able to work reputed company-5pm Eastern Time regardless of home location
• Active federal public trust suitability determination or ability to obtain one required
• Must be a U.S. citizen

Benefits

• Flexibility to help them reputed company personally and professionally
• Special incentives for team members living in qualified HUBZones

Company Overview