Lead ISSO/ Cyber Security Consultant

Zachary Piper Solutions is seeking a Lead ISSO / Cyber Security Consultant (Data Center ATO Specialist) to support a high-visibility data center initiative. This role is responsible for leading the Authorization to Operate (ATO) process for a new data center, ensuring compliance with federal security frameworks and enabling a secure and fully authorized operational environment. The position involves close collaboration with engineering, infrastructure, compliance, and leadership teams to deliver a resilient, compliant system. This position is 100% onsite and requires an active DoD Secret clearance.




Key Responsibilities:

• ATO Leadership - Lead end-to-end ATO lifecycle including planning, execution, documentation, and authorization activities.
• Compliance & Framework Alignment - Ensure adherence to NIST RMF, NIST 800-53, FedRAMP, ISO 27001, and related standards.
• Documentation Development - Create and maintain SSPs, Risk Assessment Reports, POA&Ms, and supporting accreditation artifacts.
• Security Assessments - Conduct vulnerability assessments, gap analyses, and control validation to ensure compliance and readiness.
• Risk Management - Identify, assess, and mitigate system and infrastructure risks; develop contingency and incident response strategies.
• Technical Oversight - Validate system architecture, security controls, system hardening, logging, and continuous monitoring capabilities.
• Project Management - Develop timelines, track milestones, and ensure on-time ATO delivery across multiple teams.
• Stakeholder Coordination - Serve as the primary liaison between internal teams, Authorizing Officials, auditors, and third-party assessors.
• Cross-Functional Collaboration - Work with IT, networking, facilities, and security teams to align infrastructure with ATO requirements.
• Continuous Monitoring - Support implementation of post-ATO monitoring strategies and compliance sustainment efforts.

Basic Qualifications:

• Bachelor's degree in Information Technology, Cybersecurity, Computer Science, or related field
• 10+ years of experience in cybersecurity, compliance, or information assurance
• Proven experience leading ATO efforts for data centers or large-scale systems (DoD, FedRAMP, FISMA, or similar)
• Strong knowledge of NIST 800-53, RMF, and related security frameworks
• Active DoD Secret clearance
• Preferred Qualifications:
• Master's degree in a related field
• Experience supporting DoD data center ATO efforts
• Familiarity with hybrid, cloud, or on-prem data center environments
• Certifications such as CISSP, CISM, CISA, CAP, PMP, or equivalent
• Experience with vulnerability scanning tools, SIEM platforms, and configuration management systems
• Strong understanding of networking, virtualization, storage, and physical security controls
• Experience working with Authorizing Officials (AOs) and regulatory stakeholders

Compensation and Benefits Information:

Salary Range: $140,000-$175,000+ depending on experience

Full Benefits: Cigna Medical, Dental, Vision, 401K, PTO, Sick Leave (as required by law), and Holidays

Keywords:

ISSO, Information Systems Security Officer, Cyber Security Consultant, Cybersecurity, Data Center Security, ATO, Authorization to Operate, RMF, Risk Management Framework, NIST RMF, NIST 800-53, NIST 800-37, FedRAMP, FISMA, ISO 27001, DoD Cybersecurity, DoD RMF, Security Controls, Security Compliance, Information Assurance, IA, Governance Risk and Compliance, GRC, Cyber Risk Management, Risk Assessment, Risk Mitigation, Vulnerability Assessment, Vulnerability Management, Continuous Monitoring, POA&M, Plan of Action and Milestones, SSP, System Security Plan, Security Authorization, Accreditation, Assessment & Authorization, A&A, Security Audit, Security Controls Validation, Control Implementation, Security Engineering, Cyber Defense, Data Center, Data Center Operations, Data Center Infrastructure, Cloud Security, Hybrid Cloud, On-Prem Infrastructure, AWS GovCloud, Azure Government, Virtualization, VMware, Networking, Storage Systems, Physical Security Controls, System Hardening, Secure Configuration, Patch Management, Logging and Monitoring, SIEM, Splunk, Elastic, QRadar, Endpoint Security, IDS/IPS, Incident Response, Threat Detection, Security Operations, Project Management, Program Management, PMP, Agile, Waterfall, Project Planning, Milestone Tracking, Stakeholder Management, Cross-Functional Teams, Technical Leadership, Engineering Collaboration, Compliance Documentation, Technical Writing, Audit Readiness, Change Management, DoD 8570, DoD 8140, Security Clearance, Secret Clearance, Defense Programs, Government Consulting, Federal IT, Public Sector, Regulatory Compliance, Third-Party Audits, Authorizing Official, AO, Security Control Assessor, SCA, Independent Verification and Validation, IV&V, CISSP, CISM, CISA, CAP, PMP, Security+, CASP+, Governance, Security Policy, Cybersecurity Frameworks, Enterprise Security Architecture, Secure Systems, Systems Engineering, IT Risk, Cyber Strategy