Sr. Cloud Information Systems Security Officer (ISSO) - U.S. Citizenship Required in Washington, District of Columbia at ZenPoint Solutions

ZenPoint Solutions LLC (“ZenPoint Solutions”) is a rapidly expanding Information Technology (IT) services company in the federal sector. We foster a thriving, ambitious work environment that prioritizes employee well-being and a positive company culture. We invite you to join our team and help us shape a dynamic future as we deliver innovative solutions to address the nation's most critical IT missions.

Clearance Requirement: Candidates must hold an active Top Secret at the time of application

Work Location: NCR - Washington, DC

Work Schedule (onsite): Fully onsite, 5 days per week at the customer’s facility

Position Overview: ZenPoint Solutions is seeking a Sr. Cloud Information Systems Security Officer to serve as a task lead, responsible for the operational oversight of secure information systems, ensuring they remain in a state of continuous compliance.

This position is contingent upon the successful award of a government contract and subsequent government approval.

Key Responsibilities:

• Serve as the security task lead responsible for the day-to-day security operations and ongoing maintenance of the RMF lifecycle for federal customer IT systems.
• Coordinate activities within the Authorize and Monitor steps, ensuring that all security roles are assigned and that the risk management strategy is operationalized.
• Maintain and update system categorization records in tools like eMASS or CSAM to ensure they accurately reflect the mission impact and regulatory requirements.
• Monitor the implementation and effectiveness of security controls, documenting how they are tailored to meet the customer’s risk appetite and compliance mandates.
• Validate the technical and operational implementation of controls through regular vulnerability scanning (Nessus) and compliance checks (STIGs) throughout the system lifecycle.
• Support Security Control Assessments (SCA) by coordinating artifact collection, participating in findings validation meetings, and preparing for independent audits.
• Manage and sustain the ATO package, developing high-quality risk management documentation including the SSP, SAR, and continuous monitoring strategy.
• Oversee the Plan of Action and Milestones (POA&M) process, prioritizing remediation activities and collecting evidence to close out security findings.
• Act as the primary operational advisor for security incidents, providing subject-matter expertise for risk analysis, incident response, and system remediation efforts.
• Implement security awareness programs, ensuring that team members and stakeholders are trained on security policies.
• Communicate system security status and operational risks to the Authorizing Official (AO) and leadership through monthly reports and status briefings.
• Maintain up-to-date knowledge of NIST SP 800-53 and FISMA requirements to ensure the system remains in continuous compliance with federal security mandates.

Required Qualifications:

• Candidate must be a United States Citizen and present proof of Citizenship, if selected
• Bachelor’s degree in Computer Science, Cybersecurity, or other cyber discipline
• Possess at least one of the following certifications: Certified Information Systems Security Professional (CISSP), Global Information Security Professional (GISP), or the CompTIA Advanced Security Practitioner (CASP) or other certifications exemplifying skill sets such as those described in DoD Instruction 8570.1 Information Assurance Management (IAM) Level III proficiency.
• Possesses at least 7 years’ experience serving as an Information Systems Security Officer (ISSO) at a cleared facility
• Minimum of 9 years of work experience in a computer science or Cybersecurity related field
• Familiarity with the use and operation of security tools including Tenable Nessus and/or Security Center, Splunk, IBM Guardium, HP WebInspect, Network Mapper (NMAP), and/or similar applications
• Possessing a bachelor’s and/or advanced degree in computer science, business management, or IT related discipline is preferred
• Additional requirement to hold at least one Security certification from AWS, Azure, or GCP:
• AWS Certified Security – Specialty
• (ISC)2 Certified Cloud Security Professional (CCSP)
• AWS Certified Solutions Architect – Associate
• AZ-500: Microsoft Certified: Azure Security Engineer Associate
• Google - Professional Cloud Security Engineer

No recruitment agencies, please.

Company Benefits: We take care of your well-being here at ZenPoint Solutions! Our comprehensive benefits package includes health, dental, and vision insurance to keep you and your family healthy. We also offer group and voluntary life insurance for financial security, and short-term and long-term disability insurance to provide peace of mind in case of unexpected illness or injury. You'll have the option to contribute to a 401(k)-retirement plan with company matching contributions to save for the future. We also offer flexible spending accounts to help manage medical and dependent care costs on a pre-tax basis. On top of that, you'll enjoy a generous paid leave policy, including federal holidays, to maintain a healthy work-life balance. To help you grow in your career, we offer professional development opportunities and a tuition assistance program.

Commitment to Equality: At ZenPoint Solutions, we value diverse perspectives and are committed to providing equal employment opportunities. We welcome applications from all qualified individuals, regardless of race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other status protected under applicable federal, state, or local laws.