Lead InfoSec Engineer (remote)

Lead InfoSec Engineer (remote)

This position is posted by Jobgether on behalf of a partner company. We are currently looking for a Senior InfoSec Engineer - REMOTE. In this role, you will play a crucial part in ensuring the security and compliance of classified networks for defense and intelligence customers. You will lead the Authority to Operate (ATO) process, collaborating with government stakeholders to achieve necessary compliance certifications. Your expertise will help shape the strategy for compliance efforts and ensure that security configurations are effectively implemented. This position offers a significant opportunity to make a meaningful impact in the defense technology landscape through innovative solutions and leadership.

Accountabilities

• Own and execute strategy for ATOs across various customers.
• Lead the end-to-end ATO process for IL-6 and IL-7 environments.
• Manage RMF documentation and control implementations.
• Coordinate with 3PAOs and federal government AOs for compliance.
• Implement security configurations and oversee maintenance.
• Interface with government ISSMs and AOs to manage authorization packages.
• Design and enforce role-based access controls and data classification frameworks.
• Architect solutions for handling TS/SCI data according to DoD requirements.
• Ensure compliance with industry standards and hardening guidelines.
• Build scalable systems for managing ATOs among different sponsors.
• Collaborate on security roadmap with engineering teams.
• Manage relationships with sponsors to streamline authorization efforts.
• Brief executive leadership on ATO status and strategic risks.

Requirements

• Proven experience in leading ATOs or DISA provisional authorizations.
• 5+ years of background in information security with government compliance.
• Direct knowledge of RMF, NIST 800-53, and classified environments.
• Experience working with government ISSMs and AOs.
• Familiarity with accreditation platforms like XACTA and eMASS.
• Understanding of classified network architectures (SIPR, JWICS).
• Experience in implementing RBAC and audit logging systems.
• Knowledge of cloud security in government-specific environments.
• Familiarity with container security in classified settings.
• Ability to handle cross-domain solutions and data transfers.
• Strong written communication for technical documentation.
• Active U.S. TS Security clearance with SCI Eligibility.

Benefits

• Health, dental, and vision insurance.
• Remote friendly with access to WeWork locations.
• Unlimited PTO and company-wide downtime during federal holidays.
• 401(k) matching.
• Lifestyle and wellbeing stipends.
• Salary top-up during military reserve duty.
• Fully paid parental leave.
• Child and pet care reimbursement while traveling.