Job Requirements
Washington, DC
Top Secret Polygraph not specified
Mid Level Career (5+ yrs experience)
Salary not specified
Join Premium to unlock estimated salaries 
Job Description
Description
ZenPoint Solutions LLC (“ZenPoint Solutions”) is a rapidly expanding Information Technology (IT) services company in the federal sector. We foster a thriving, ambitious work environment that prioritizes employee well-being and a positive company culture. We invite you to join our team and help us shape a dynamic future as we deliver innovative solutions to address the nation's most critical IT missions.
Clearance Requirement: Candidates must hold an active Top Secret at the time of application
Work Location: Washington, DC
Work Schedule (onsite): Fully onsite, 5 days per week at the customer’s facility
Position Overview: ZenPoint Solutions is seeking a Senior Cloud Information System Security Engineer (ISSE). The Sr. Cloud ISSE is responsible for designing, developing, and integrating secure information systems. Working closely with architects, developers, and security teams, the Sr. Cloud ISSE ensures that security requirements are embedded throughout the system lifecycle—from initial design to deployment and maintenance. This role involves conducting threat modeling, implementing security architectures, and validating system compliance with applicable standards such as NIST, RMF, and DoD directives. The Sr. Cloud ISSE is instrumental in bridging the gap between cybersecurity policy and technical implementation.
This position is contingent upon the successful award of a government contract and subsequent government approval.
Key Responsibilities:
Lead, mentor, and supervise a team of security professionals responsible for the end-to-end implementation of the RMF lifecycle for the client's IT systems
Oversee and coordinate preparation activities, ensuring roles, responsibilities, and risk management strategies are clearly defined and maintained
Guide system categorization efforts to ensure all information systems are appropriately classified based on mission/business impact and regulatory requirements
Direct the selection, tailoring, and documentation of security controls aligned with system categorizations and compliance requirements
Assist teams in evaluating and mitigating risk by reading, interpreting and making recommendations based on the results of vulnerability scans
Oversee the implementation of technical, operational, and management controls throughout system and application lifecycles, with a particular focus on quality and completeness of all deliverables
Ensure comprehensive security control assessments are planned, executed, and documented to validate the effectiveness of implemented safeguards
Prepare risk management documentation for system authorization and executive decision making
Direct ongoing monitoring and continuous assessment activities, collecting metrics to adjust security strategies and ensure sustained compliance
Serve as a principal technical advisor on cybersecurity, bringing subject-matter expertise to risk analysis, incident response, system remediation, and audit support efforts
Foster a culture of security awareness, providing technical guidance and training to both team members and stakeholders
Track, report, and communicate status, risks, and improvement opportunities related to security engineering activities to leadership and stakeholders
Maintain up-to-date knowledge of RMF, NIST guidance, and industry best practices in support of continuous process improvement
Design and assess secure cloud and hybrid architectures (IaaS, PaaS, SaaS)
Apply NIST RMF and Zero Trust principles in cloud environments
Support FedRAMP packages, security control inheritance, and cloud ATOs
Support, design, and assess IAM, encryption, logging, and continuous monitoring in CSPs
Support secure cloud migration and modernization initiatives
Required Qualifications:
Candidate must be a United States Citizen and present proof of Citizenship, if selected
Bachelor’s degree in Computer Science, Cybersecurity, or other cyber discipline
8+ years of relevant experience
Proven experience with security tools including Tenable Nessus and/or Security Center, IBM Guardium, Network Mapper (NMAP), and/or similar applications
Hold at least one of the following certifications: Certified Information Systems Security Professional (CISSP) (or Associate); CompTIA Advanced Security Practitioner (CASP); Certified Secure Software Lifecycle Professional (CSSLP); CISSP- Information System Security Engineering Professional (ISSEP); CISSP- Information System Security Architecture Professional (ISSAP); Also recommended a cloud cert to include CCSP, AWS/Azure certifications
Proven experience leading multi-disciplinary cybersecurity, engineering, and program teams, including staff assignment, technical oversight, and performance management
Demonstrated ability to manage complex programs and budgets, including call orders, subcontract oversight, financial forecasting, and development of required program reports
Hands-on experience applying the NIST Risk Management Framework (RMF) to assess risk, manage incidents, and strengthen security operations across enterprise or government environments
Strong background in developing security governance artifacts (such as SOPs, QA programs, and compliance documentation) in partnership with government stakeholders to enhance cybersecurity operations
Experience conducting cybersecurity assessments and advising on best security practices, collaborating with federal agencies to reduce risk to systems, networks, and sensitive data
AWS, Azure, or GCP (including GovCloud environments)
FedRAMP, Zero Trust Architecture, shared responsibility model
Familiarity with CI/CD pipelines and associated tools
Cloud-native security tools and automation
Infrastructure-as-Code security
Desired Qualifications:
Certified Information Security Manager (CISM) certification
Advanced degree in Computer Science, Cybersecurity, or other cyber discipline is preferred
No recruitment agencies, please.
Company Benefits: We take care of your well-being here at ZenPoint Solutions! Our comprehensive benefits package includes health, dental, and vision insurance to keep you and your family healthy. We also offer group and voluntary life insurance for financial security, and short-term and long-term disability insurance to provide peace of mind in case of unexpected illness or injury. You'll have the option to contribute to a 401(k)-retirement plan with company matching contributions to save for the future. We also offer flexible spending accounts to help manage medical and dependent care costs on a pre-tax basis. On top of that, you'll enjoy a generous paid leave policy, including federal holidays, to maintain a healthy work-life balance. To help you grow in your career, we offer professional development opportunities and a tuition assistance program.
Commitment to Equality: At ZenPoint Solutions, we value diverse perspectives and are committed to providing equal employment opportunities. We welcome applications from all qualified individuals, regardless of race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other status protected under applicable federal, state, or local laws.
ZenPoint Solutions LLC (“ZenPoint Solutions”) is a rapidly expanding Information Technology (IT) services company in the federal sector. We foster a thriving, ambitious work environment that prioritizes employee well-being and a positive company culture. We invite you to join our team and help us shape a dynamic future as we deliver innovative solutions to address the nation's most critical IT missions.
Clearance Requirement: Candidates must hold an active Top Secret at the time of application
Work Location: Washington, DC
Work Schedule (onsite): Fully onsite, 5 days per week at the customer’s facility
Position Overview: ZenPoint Solutions is seeking a Senior Cloud Information System Security Engineer (ISSE). The Sr. Cloud ISSE is responsible for designing, developing, and integrating secure information systems. Working closely with architects, developers, and security teams, the Sr. Cloud ISSE ensures that security requirements are embedded throughout the system lifecycle—from initial design to deployment and maintenance. This role involves conducting threat modeling, implementing security architectures, and validating system compliance with applicable standards such as NIST, RMF, and DoD directives. The Sr. Cloud ISSE is instrumental in bridging the gap between cybersecurity policy and technical implementation.
This position is contingent upon the successful award of a government contract and subsequent government approval.
Key Responsibilities:
Lead, mentor, and supervise a team of security professionals responsible for the end-to-end implementation of the RMF lifecycle for the client's IT systems
Oversee and coordinate preparation activities, ensuring roles, responsibilities, and risk management strategies are clearly defined and maintained
Guide system categorization efforts to ensure all information systems are appropriately classified based on mission/business impact and regulatory requirements
Direct the selection, tailoring, and documentation of security controls aligned with system categorizations and compliance requirements
Assist teams in evaluating and mitigating risk by reading, interpreting and making recommendations based on the results of vulnerability scans
Oversee the implementation of technical, operational, and management controls throughout system and application lifecycles, with a particular focus on quality and completeness of all deliverables
Ensure comprehensive security control assessments are planned, executed, and documented to validate the effectiveness of implemented safeguards
Prepare risk management documentation for system authorization and executive decision making
Direct ongoing monitoring and continuous assessment activities, collecting metrics to adjust security strategies and ensure sustained compliance
Serve as a principal technical advisor on cybersecurity, bringing subject-matter expertise to risk analysis, incident response, system remediation, and audit support efforts
Foster a culture of security awareness, providing technical guidance and training to both team members and stakeholders
Track, report, and communicate status, risks, and improvement opportunities related to security engineering activities to leadership and stakeholders
Maintain up-to-date knowledge of RMF, NIST guidance, and industry best practices in support of continuous process improvement
Design and assess secure cloud and hybrid architectures (IaaS, PaaS, SaaS)
Apply NIST RMF and Zero Trust principles in cloud environments
Support FedRAMP packages, security control inheritance, and cloud ATOs
Support, design, and assess IAM, encryption, logging, and continuous monitoring in CSPs
Support secure cloud migration and modernization initiatives
Required Qualifications:
Candidate must be a United States Citizen and present proof of Citizenship, if selected
Bachelor’s degree in Computer Science, Cybersecurity, or other cyber discipline
8+ years of relevant experience
Proven experience with security tools including Tenable Nessus and/or Security Center, IBM Guardium, Network Mapper (NMAP), and/or similar applications
Hold at least one of the following certifications: Certified Information Systems Security Professional (CISSP) (or Associate); CompTIA Advanced Security Practitioner (CASP); Certified Secure Software Lifecycle Professional (CSSLP); CISSP- Information System Security Engineering Professional (ISSEP); CISSP- Information System Security Architecture Professional (ISSAP); Also recommended a cloud cert to include CCSP, AWS/Azure certifications
Proven experience leading multi-disciplinary cybersecurity, engineering, and program teams, including staff assignment, technical oversight, and performance management
Demonstrated ability to manage complex programs and budgets, including call orders, subcontract oversight, financial forecasting, and development of required program reports
Hands-on experience applying the NIST Risk Management Framework (RMF) to assess risk, manage incidents, and strengthen security operations across enterprise or government environments
Strong background in developing security governance artifacts (such as SOPs, QA programs, and compliance documentation) in partnership with government stakeholders to enhance cybersecurity operations
Experience conducting cybersecurity assessments and advising on best security practices, collaborating with federal agencies to reduce risk to systems, networks, and sensitive data
AWS, Azure, or GCP (including GovCloud environments)
FedRAMP, Zero Trust Architecture, shared responsibility model
Familiarity with CI/CD pipelines and associated tools
Cloud-native security tools and automation
Infrastructure-as-Code security
Desired Qualifications:
Certified Information Security Manager (CISM) certification
Advanced degree in Computer Science, Cybersecurity, or other cyber discipline is preferred
No recruitment agencies, please.
Company Benefits: We take care of your well-being here at ZenPoint Solutions! Our comprehensive benefits package includes health, dental, and vision insurance to keep you and your family healthy. We also offer group and voluntary life insurance for financial security, and short-term and long-term disability insurance to provide peace of mind in case of unexpected illness or injury. You'll have the option to contribute to a 401(k)-retirement plan with company matching contributions to save for the future. We also offer flexible spending accounts to help manage medical and dependent care costs on a pre-tax basis. On top of that, you'll enjoy a generous paid leave policy, including federal holidays, to maintain a healthy work-life balance. To help you grow in your career, we offer professional development opportunities and a tuition assistance program.
Commitment to Equality: At ZenPoint Solutions, we value diverse perspectives and are committed to providing equal employment opportunities. We welcome applications from all qualified individuals, regardless of race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other status protected under applicable federal, state, or local laws.
group id: 91134166