Job Requirements
Arlington, VA
Top Secret/SCI Polygraph
Career Level not specified
$160,000 - $195,000
Job Description
Zachary Piper Solutions is seeking a Senior Information Systems Security Engineer (ISSE) to support a critical mission for the Undersecretary of War for Acquisition and Sustainment capabilities at the Pentagon in Arlington, VA. The team is seeking a skilled security engineer to support system design, development, integration, and sustainment of the departments capabilities through the Risk Management Lifecycle.
Clearance: Top Secret (SCI eligibility)
Location: Arlington, VA (Hybrid)
This job opens for applications on 4/20/2026. Applications for this job will be accepted for at least 30 days from the posting date
Responsibilities of the ISSE:
· Architect, implement, and verify security controls across the full system lifecycle, ensuring compliance with DoD 8500.01 and NIST SP 800-53 requirements.
· Integrate security principles into system architectures, designs, and interfaces in alignment with NIST SP 800-160.
· Analyze and define system architectures, including authorization boundaries, trust zones, data flows, and external interconnections.
· Conduct threat modeling, attack surface analysis, and vulnerability assessments to guide secure engineering decisions.
· Partner with system engineers, developers, and architects to embed security into system designs and DevSecOps workflows.
· Drive the integration of security tooling-such as SAST/DAST, infrastructure-as-code scanning, and container security-within CI/CD pipelines.
· Translate identified risks into actionable engineering solutions and implement mitigations within system designs.
· Support security assessments by validating control implementations and remediating technical findings.
· Design and implement telemetry, automation, and monitoring solutions to sustain and improve system security posture.
· Produce and maintain engineering-focused security artifacts, including SSP inputs, architecture diagrams, data flow diagrams, and control implementation documentation.
· Apply Zero Trust Architecture (ZTA) principles across system design and integration
Qualifications of the ISSE:
· Bachelors degree and 14+ years of related experience or Master degree and 10+ years of related experience in cyber security
· Active Top Secret with SCI eligibility required
· One or more of the following required certifications (CISSP, CASP+, CCSP, CISM, etc.)
· Experience with DoD RMF/A&A, GRC Tools (eMASS, Xacta), Cloud environment (AWS, FedRAMP)
· Strong understanding of securing cloud environments, specifically AWS
· Strong understanding of DevSecOps practices, system architecture & design, automation
· Experience with Zero Trust principles
· Experience engineering Identy, Credential, and Access Management (ICAM) solutions
Compensation of the ISSE:
· Total compensation based on experience level - $160,000-$195,000
· Full Benefits: PTO, Holidays, 401K, Medical Dental Vision coverage
· Hybrid work opportunity (2x a week remote)
· Long-term program
#LI-MK1 #LI-Onsite #LI-Hybrid
Keywords: Information System Security Officer (ISSO), cybersecurity compliance, Risk Management Framework (RMF), NIST SP 800-53, system security authorization, Authorization to Operate (ATO), Interim Authorization to Test (IATT), secret, topsecret, DoD, zero trust, AWS, EC2, S3, Lambda, AI/ML, cism, casp+, CISSP, CCSP, Azure, Google Cloud, GCP, automation, terraform, top secret/sci, ts/sci, ci polygraph, polygraph, W2, Opentowork, hiring, onsite, reston, Washington dc, maryland, Xacta, ATO, Fedramp, cloud, data, data engineer, data science, data lake, data warehouse, security control assessment, continuous monitoring, security risk management, vulnerability management, incident response coordination, security assessment and authorization (A&A), System Security Plan (SSP), Plan of Actions and Milestones (POA&M), XACTA, security documentation, audit readiness, FISMA compliance, configuration management, access control, identity and credential management, least privilege, secure system design, SDLC security integration, cloud security, Zero Trust architecture, data protection, encryption, logging and monitoring, security testing and evaluation, stakeholder coordination, ISSM and SCA engagement, compliance reporting, government cybersecurity standards.
Clearance: Top Secret (SCI eligibility)
Location: Arlington, VA (Hybrid)
This job opens for applications on 4/20/2026. Applications for this job will be accepted for at least 30 days from the posting date
Responsibilities of the ISSE:
· Architect, implement, and verify security controls across the full system lifecycle, ensuring compliance with DoD 8500.01 and NIST SP 800-53 requirements.
· Integrate security principles into system architectures, designs, and interfaces in alignment with NIST SP 800-160.
· Analyze and define system architectures, including authorization boundaries, trust zones, data flows, and external interconnections.
· Conduct threat modeling, attack surface analysis, and vulnerability assessments to guide secure engineering decisions.
· Partner with system engineers, developers, and architects to embed security into system designs and DevSecOps workflows.
· Drive the integration of security tooling-such as SAST/DAST, infrastructure-as-code scanning, and container security-within CI/CD pipelines.
· Translate identified risks into actionable engineering solutions and implement mitigations within system designs.
· Support security assessments by validating control implementations and remediating technical findings.
· Design and implement telemetry, automation, and monitoring solutions to sustain and improve system security posture.
· Produce and maintain engineering-focused security artifacts, including SSP inputs, architecture diagrams, data flow diagrams, and control implementation documentation.
· Apply Zero Trust Architecture (ZTA) principles across system design and integration
Qualifications of the ISSE:
· Bachelors degree and 14+ years of related experience or Master degree and 10+ years of related experience in cyber security
· Active Top Secret with SCI eligibility required
· One or more of the following required certifications (CISSP, CASP+, CCSP, CISM, etc.)
· Experience with DoD RMF/A&A, GRC Tools (eMASS, Xacta), Cloud environment (AWS, FedRAMP)
· Strong understanding of securing cloud environments, specifically AWS
· Strong understanding of DevSecOps practices, system architecture & design, automation
· Experience with Zero Trust principles
· Experience engineering Identy, Credential, and Access Management (ICAM) solutions
Compensation of the ISSE:
· Total compensation based on experience level - $160,000-$195,000
· Full Benefits: PTO, Holidays, 401K, Medical Dental Vision coverage
· Hybrid work opportunity (2x a week remote)
· Long-term program
#LI-MK1 #LI-Onsite #LI-Hybrid
Keywords: Information System Security Officer (ISSO), cybersecurity compliance, Risk Management Framework (RMF), NIST SP 800-53, system security authorization, Authorization to Operate (ATO), Interim Authorization to Test (IATT), secret, topsecret, DoD, zero trust, AWS, EC2, S3, Lambda, AI/ML, cism, casp+, CISSP, CCSP, Azure, Google Cloud, GCP, automation, terraform, top secret/sci, ts/sci, ci polygraph, polygraph, W2, Opentowork, hiring, onsite, reston, Washington dc, maryland, Xacta, ATO, Fedramp, cloud, data, data engineer, data science, data lake, data warehouse, security control assessment, continuous monitoring, security risk management, vulnerability management, incident response coordination, security assessment and authorization (A&A), System Security Plan (SSP), Plan of Actions and Milestones (POA&M), XACTA, security documentation, audit readiness, FISMA compliance, configuration management, access control, identity and credential management, least privilege, secure system design, SDLC security integration, cloud security, Zero Trust architecture, data protection, encryption, logging and monitoring, security testing and evaluation, stakeholder coordination, ISSM and SCA engagement, compliance reporting, government cybersecurity standards.
group id: 10430981
