About Client:
Our client is a leading provider of Salesforce and enterprise CRM solutions, specializing in delivering high-impact technology projects for public sector organizations. They focus on innovative, client-driven solutions, leveraging Agile and hybrid methodologies to modernize and optimize systems that drive efficiency and impact across government operations.

Job Summary:
We are seeking a knowledgeable and detail-oriented Information System Security Officer (ISSO) to support security compliance, risk management, and authorization activities for Salesforce and cloud-based systems supporting federal clients. This role ensures continuous adherence to security controls and supports ongoing monitoring activities aligned with NIST, RMF, and FedRAMP standards.

This is a remote role; however, candidates must reside in the DC, Maryland, or Virginia (DMV) area to support occasional in-person client and team engagements.

What We Offer:

• Competitive salary: $110,000 – $150,000 per year

• 401(k) with matching

• Health insurance

• Paid time off

• Flexible work-from-home options

Required Qualifications:

• U.S. Citizenship required due to federal contract requirements

• Must be eligible to obtain and maintain a U.S. Government security clearance

• Must reside in the DC, Maryland, or Virginia (DMV) area

• Bachelor’s degree in Cybersecurity, Information Systems, or a related field

• 3+ years of experience in an ISSO or security compliance-focused role

• Strong working knowledge of NIST 800-53, FedRAMP, FISMA, and RMF frameworks

• Excellent documentation, communication, and cross-team coordination skills

Preferred Qualifications

• Security+ CE, CISSP, CAP, or equivalent security certification

• Salesforce or cloud systems support experience

• Federal agency support experience

Key Responsibilities

• Support Risk Management Framework (RMF) lifecycle activities, including system categorization, security assessments, and Authorization to Operate (ATO) packages

• Develop, maintain, and update System Security Plans (SSPs), POA&Ms, and related security artifacts

• Perform continuous monitoring activities and periodic security control assessments

• Partner with technical and Salesforce teams to ensure secure configuration of cloud and integrated systems

• Track vulnerabilities, coordinate remediation efforts, and document mitigation strategies

• Support audits, security reviews, and compliance activities related to NIST 800-53, FedRAMP, and FISMA requirements

• Ensure systems adhere to federal cybersecurity policies and agency-specific security guidelines

• Participate in change management and configuration control processes to assess and document security impacts

We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.