Sr Cyber Security Engineer (ISSO)

About

Zachary Piper Solutions is seeking a Sr Cyber Security Engineer (ISSO) to support a critical Intelligence program for an analysis & procurement cell throughout the DC/MD/VA. The team is seeking a skilled security specialist to lead technical security assessments and maintain the security posture for an enterprise data modernization effort.

Clearance: TS/SCI CI Polygraph

Location: Reston, VA; JBAB Washington, D.C.; Annapolis Junction, MD (Hybrid work)

Responsibilities

• Perform technical security assessments and contribute to the design, implementation, and oversight of secure systems.
• Ensure system security compliance, manage risk, and support certification and accreditation activities across the full program lifecycle.
• Collaborate with application leads, system administrators, database administrators, developers, and testers to ensure systems meet security requirements and achieve or maintain Authorization to Operate (ATO).
• Integrate security requirements into system design and development from inception, ensuring compliance is built in by design.
• Support security assessment activities and address inquiries from Information System Security Managers (ISSMs) and Security Control Assessors (SCAs).
• Develop, maintain, and update System Security Plans (SSPs), POA&Ms, and other required security artifacts using XACTA.
• Lead Interim Authorization to Test (IATT) and ATO efforts, coordinating with program stakeholders, cybersecurity teams, and the Authorizing Official (AO).
• Implement and validate NIST SP 800-53 security controls within cloud-native Data Platform as a Service (DPaaS) environments.
• Apply Zero Trust architecture principles to secure data services, including identity management, network segmentation, and traffic flow control.

Qualifications

• Active Top Secret/SCI CI Polygraph
• Security+ or other IAT II/III level certification that is currently active
• Proficiency with XACTA and DIA’s RMF process, including managing IATT and ATO processes.
• Proficiency with Splunk.
• Experience leading assessments of existing IT architecture for compliance with security requirements from applicable security frameworks (such as ICD 503).
• Experience supporting data/cloud modernization projects (data warehouse, data lakes, etc.)
• Experience with implementing and maintaining system security documentation, including SSPs, SAPs, POA&Ms, and security assessment artifacts, coordinating closely with ISSMs, ISSEs, system owners, and authorizing officials.

Compensation

• Total compensation based on experience level - $140,000 - $190,000
• Full Benefits: PTO, Holidays, 401K, Medical Dental Vision coverage
• Hybrid work opportunity
• Certification reimbursement