Compliance Specialist / Cloud ISSO

Job Title: Compliance Specialist / Cloud ISSO
Clearance Required: Public Trust
Work Location: Hybrid Silver Spring, MD (minimum 1 day in office per week)

Alpha Omega is seeking a qualified Compliance Specialist / Cloud ISSO for a hybrid position on a Federal program.

Key Responsibilities:

Candidate will provide outstanding FISMA Compliance Support and ensure appropriate steps are taken to implement security requirements within the agency's FISMA systems throughout their life cycle using NIST-based security model (Risk Management Framework (RMF). Candidates will also provide advisory and consulting support to the key stakeholders (System Owners, and ISSO) on security recommendation and /or improvement.

Candidates must have a thorough understanding of cloud architectures including emerging cloud and innovative technologies and providing security in a cloud-based environment.

Candidate must have a thorough understanding of the NIST publications with emphasis on current versions of SP 800-37, 800-53, 800-53A, FIPS 199, FIPS 200, President's Executive Orders, DHS Binding Operational Directive (BOD), and Office of Management and Budget Memorandums (OMB). As well as experience in preparing and assessing documents such as; System Security Plans (SSPs), Contingency Plans (CPs), Business Impact Analysis (BIA), Risk Assessment Reports (RARs), Configuration Management Plan (CMP), Privacy Threshold Analysis (PTA)/Privacy Impact Analysis (PIA), and Plan of Action & Milestones (POA&M).

The candidate must possess effective interpersonal and professional communication skills as he/she operates in a client-facing role.

• Assist in implementing the FISMA Compliance program including managing systems security authorizations for all of the agency's cloud IT systems serving as the Information Systems Security Officer (ISSO).
• Develop and implement comprehensive cloud security strategies, policies, and procedures to protect the organization's cloud-based information systems.
• Collaborate with cross-functional teams to assess security requirements, design security controls, and ensure secure cloud infrastructure deployment.
• Monitor and analyze cloud security incidents, vulnerabilities, and respond promptly to mitigate risks.
• Conduct and participate in regular security assessments of cloud environments to identify potential weaknesses and recommend improvements to stakeholders.
• Stay up-to-date with the latest industry trends, emerging threats, and best practices in cloud security to continuously enhance the organization's security posture.
• Collaborate with stakeholders to ensure compliance with current regulations and standards (e.g., FISMA, NIST, FedRAMP).
• Provide expert guidance on security architecture and design for cloud-based applications.
• Evaluate and provide technical recommendations on approaches and techniques to the Cloud implementation teams.
• Assist customers with information on emerging cloud and innovative technologies on how they can be adopted within the framework of a cloud topology.
• Support the development of a security focused cloud architectural strategy and framework that maps cloud service offerings and provides critical technical feedback and recommendations on areas of improvements for child systems to inherit.
• Support Cloud Provisioning, Orchestration, and FISMA compliance for the different cloud services; Azure, AWS, and IBM.
• Hands-on cloud based cyber security monitoring tools experience, conduct and evaluate/analyze vulnerability results from the following set of tools to include but not limited to Tenable.sc, Nessus, BigFix, Arcsight, and WebInspect.
• Ability to manage and identify vulnerabilities, risks, and recommend needed protection as it relates to information systems.
• Oversees and support all Assessment & Authorization (A&A) activities to include reviewing team work products/deliverables for consistency and completeness
• Ensure IT systems have appropriate baseline security controls in place and functioning properly in accordance with NIST 800-53A publication.
• Ability to provide IT security guidance and recommendation in all aspects of security.
• Ability to evaluate compliance of various information system core documents such as the SSP, BIA, CP, CPTR, PTA/PIA, FIPS 199/200 and other relevant security documents (Network Diagrams).
• Maintain mechanisms to manage and track corrective actions activities (POA&Ms) through development of artifacts and security documentation and ensure timely closure of Plan of Action and Milestones (POA&Ms).
• Respond to IT security requests for information, data calls, & metrics.
• Participate in formal and in-formal management planning meetings; constantly briefing both technical and non-technical stakeholder of system security statuses.
• Ability to Identify, Report, and Resolve security violations.
• Recommend technical solutions and provide input to policy development
• Support working groups on specific projects

RequiredQualifications:

Experience/Skills:

• 5+ years' experience as a Cloud Information Security Officer or similar role, with a strong background in cloud security and infrastructure.
• Deep understanding of cloud platforms, such as AWS, Azure, and Google Cloud, and experience in implementing federal security controls within these environments.
• Knowledge of regulatory requirements and industry standards related to cloud security.
• Strong analytical and problem-solving skills, with the ability to assess and address security risks effectively.
• Excellent communication skills to interact with technical and non-technical stakeholders.
• Ability to work independently and collaboratively in a fast-paced, evolving environment.
• Understanding of cloud and cloud security concepts
• Experience with FedRAMP authorizations
• Experience with Enterprise Architecture
• Understanding of Cloud architectures and environments and control selection available to be inherited from a parent/child system relationships.
• Understanding of Cloud provided architectures and tools within the (AWS, Azure, AWS, and IBM framework).
• Understanding of FISMA requirements
• Understanding of the NIST Risk Management Framework
• Familiarity with the NIST security control catalog
• Experience supporting Federal Government High to Moderate Systems
• Understanding of the NIST Cybersecurity Framework
• Ability to provide technical expertise to assist Stakeholders to implement security enterprise tools required by the agency and parent agencies
• Must be organized, timely, and customer-service oriented
• Proficient in time management
• Ability to work well independently and in a team setting
• Adaptability, flexibility and ability to deal with ambiguity and change
• Excellent oral and written communication and customer service skills
• Excellent analytical skills and attention to detail

Certification(s):

At least one:

• CCSP
• CISM
• CISSP-ISSEP
• CCSK
• CompTIA Cloud+

Salary andBenefit Information:

The likely salary range for this position is $103,000- $135,000. This is not, however, a guarantee of compensation or salary. There are multiple factors that are considered in determining final pay for a position, including, but not limited to, relevant work experience, skills, certifications and competencies that align to the specified role, education and certifications as well as contract provisions regarding labor categories that are specific to the position and could fall outside of this range.

Application Deadline: 6/5/2026

Joining the Alpha Omega team entitles you to participate in all retirement benefits, plans of deferred compensation, health and insurance benefits, and other such benefits as set forth in the company's policy and benefits manuals. See below, to name a few:

• PTO including paid parental, military, and bereavement leave
• Eleven (11) paid Federal holidays, five of which are floating holidays (as designated by the company's holiday schedule each year)
• Health and Dental Insurance (including 100% employer paid premiums for employee coverage under the HDHP health plan)
• Life Insurance, STD/LTD term disability coverage, with employer paid premiums
• 401 (k) plan with a match that is 100% vested after you complete two years of service
• FSA/DFSA/HSA flexible benefit plans
• Annual Tuition & Professional Development Reimbursement benefit

We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.

Culture and Values:

Guided by our core values-Harmony, Engagement, Accountability, Resourcefulness, and Tenacity (HEART)- we foster a culture of innovation, collaboration, and continuous learning and are committed to delivering high-impact solutions. We recognize and reward hard work.

Through our H.E.A.R.T. Awards Program, colleagues and managers can recognize each other for actions that exemplify these values. Recognized employees receive a detailed nomination highlighting their contributions, which is shared with their manager. Each quarter, select nominees have the opportunity to receive a monetary bonus as an extra thank-you for their impact.

Our Company:

Alpha Omega is an award-winning Federal IT solutions provider dedicated to delivering mission-enabling technology and strategic solutions across the National Security, Federal Financial, Healthcare, and Space & Science domains. Since our founding in 2016, we have grown to over 800 employees nationwide with $230m in revenue. With the January 2025 acquisitions of SeKON and Macro Solutions, we have expanded our capabilities to further support our customers in digital modernization, artificial intelligence, and cybersecurity.

We are committed to supporting our agency partners as they transform their operations, delivering on our purpose to ensure the safety, security, and well-being of future generations:

• National Security - Supporting agencies such as the Department of Homeland Security (DHS) and the Department of State.
• Federal Financial - We bring deep expertise in enterprise financial systems, supporting agencies like the Securities and Exchange Commission (SEC) and the Federal Deposit Insurance Corporation (FDIC).
• Healthcare - Our Health IT capabilities, enhance health outcomes for the warfighter via the Defense Health Agency (DHA) and support public health initiatives at the Centers for Disease Control and Prevention (CDC), National Institutes of Health (NIH), and the Substance Abuse and Mental Health Services Administration (SAMHSA).
• Space & Science - We leverage technology to advance agricultural sustainability, secure our nation's food supply, and prepare for natural disasters, working with the National Oceanic and Atmospheric Administration (NOAA) and the United States Department of Agriculture (USDA).

Through strategic partnerships, intellectual property, and relentless drive for innovation, Alpha Omega is shaping the future of government technology. We are proud to be a Virginia Best Places to Work 8 times, an Inc. 5000 honoree 7 times, and a Washington Post Top Workplaces 4 times. Join us in driving transformation that secures the nation's future.

Alpha Omega Integration, LLC (Alpha Omega) is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.