Avint is hiring a Senior ISSO (Cybersecurity Compliance Lead / RMF SME) to support and protect critical federal systems within the HACS program at FRTIB HQ. In this role, you’ll be part of a high-performing team leading Risk Management Framework (RMF) and Authority to Operate (ATO) efforts across mission-critical systems. You’ll work at the intersection of cybersecurity, compliance, and mission operations, ensuring systems are secure, authorized, and aligned with federal requirements

• Lead the design and implementation of secure infrastructure application architecture and standards. • Embed security into the development lifecycle by building tooling and CI/CD guardrails. • Conduct deep-dive threat modeling sessions for new products and identify issues. • Serve as an Incident Commander during high-severity security events. • Oversee the lifecycle of cryptographic material and key management services. • Mentor Senior and Mid-level security engineers and champion a "security-first" culture.

Role Description Cleo is seeking a Lead Cloud Security Engineer to design, implement, and continuously improve security controls across our cloud infrastructure and SaaS environments. This role is responsible for strengthening Cleo’s AWS security posture, embedding secure-by-default cloud guardrails, and partnering closely with Platform and Engineering teams to reduce infrastructure risk without slowing innovation. The ideal candidate is hands-on, technically deep in AWS, and experienced in building scalable cloud security capabilities in a high-growth SaaS environment. What You Will Be Doing - Cloud Security Architecture - Design and implement secure cloud architecture patterns - Establish guardrails for AWS accounts and services - Strengthen multi-account strategy and segmentation - Improve IAM design, permission boundaries, and least-privilege models - Review major infrastructure changes for security impact - Cloud Detection and Visibility - Implement and tune cloud-native detection capabilities - Integrate AWS security services into centralized monitoring - Identify misconfigurations and excessive permissions - Improve signal-to-noise ratio in cloud alerts - Infrastructure as Code Security - Embed security controls into Terraform or other IaC workflows - Enforce policy-as-code guardrails - Ensure IaC scanning is integrated into CI/CD pipelines - Reduce configuration drift across environments - Vulnerability and Configuration Management - Oversee cloud misconfiguration detection and remediation - Track infrastructure vulnerability exposure - Reduce critical vulnerability exposure window - Partner with Platform teams to automate remediation - Data Protection and Encryption - Ensure proper encryption standards across storage and databases - Manage KMS usage and key lifecycle best practices - Strengthen logging and monitoring coverage - Incident Response Support - Lead cloud-focused investigations during security incidents - Improve forensic readiness in AWS - Harden logging and evidence retention practices - Automation and Continuous Improvement - Automate guardrails and enforcement mechanisms - Improve developer experience with secure cloud defaults - Reduce manual cloud security reviews - Optimizing tooling cost and effectiveness - Metrics and Reporting - Define KPIs for cloud security posture - Report on misconfiguration trends and exposure windows - Provide executive-level reporting on infrastructure risk - Support audit and compliance evidence collection Qualifications - Required - 7+ years of experience in cloud security, cloud engineering, or infrastructure security - Deep expertise in AWS architecture and services - Strong understanding of IAM design and least-privilege principles - Experience with Infrastructure as Code and CI/CD integration - Experience implementing cloud-native detection and monitoring - Ability to translate infrastructure risk into business impact - Preferred - Experience in mid-market or high-growth SaaS environments - Experience supporting SOC 2 or similar audits - Familiarity with policy-as-code frameworks - Experience building multi-account AWS environments - Relevant certifications such as AWS Security Specialty, CISSP, or equivalent Benefits - $130,000 to $150,000 base salary + bonus opportunity - Great Healthcare + Dental + Vision - Flexible PTO - Culture of support, encouraging Life-Work balance - 401k match - FSA and HSA options - Employee Assistance Program - Paid Parental Leave - Representing a company with 4,000+ clients and a 99% retention rate - Accelerated title and salary growth potential - A fun and energetic work environment that makes you excited to go to work every day

Job DetailsJob Location: REMOTE POSITION - Anywhere, FL 33408Position Type: Full TimeEducation Level: Not SpecifiedTravel Percentage: NegligibleJob Shift: DayJob Category: CybersecurityDSS, Inc. is a leading health information software development and systems integration company, offering services and solutions utilized daily by thousands of clinicians and administrative staff across both public and private sectors nationwide. Overview A Senior Cybersecurity Engineer serves as a key member of the cybersecurity team, supporting both operational security and risk and compliance initiatives. This role involves safeguarding systems, identifying and mitigating threats, and ensuring adherence to security standards and regulations. In addition to hands-on responsibilities, the Senior Cybersecurity Engineer mentors junior team members and plays a leadership role in driving cybersecurity projects to successful completion. The Cybersecurity Engineer, Senior will: Deploys advanced knowledge of Cyber tools and the ability to teach, mentor, and lead teams and individuals on the use of those tools, best practices, and remediations resulting from that use. Uses pen testing, process and scan scripting, and advanced troubleshooting of cyber related tools and functions Uses industry standard tools for functions like SIEM, IAM, firewalls, IDS/IPS, etc. Provides subject matter expertise on the architecture, information security solutions and countermeasures, policies and procedures related to enterprise information security. Deploys and leverages security tools and technology to monitor infrastructure and operations Manages incidents related to the cybersecurity tools and operations Conducts systems analysis and evaluations Collaborates with internal teams to update and maintain the System Security Plans and Security Assessment Reports and ensure that the changes are reviewed and approved where required. Partners with engineers to interpret and map compliance requirements to control implementation and across our products. Works with internal teams to manage FedRAMP authorized environments while educating them about the FedRAMP controls that impact their work. Supports internal and third-party audits for compliance with FedRAMP, SOC2, HIPAA, and other applicable frameworks Conditions of Employment: Must be a US Citizen or Permanent Resident. (Authorized to work in the US without current or future visa sponsorship.) Must be able to pass a Federal background check Must be determined suitable for federal employment. Security and Privacy Responsibilities: Individuals working for DSS or any Subsidiary will be subject to security and privacy requirements as explained in HIPAA, FedRAMP, and NIST 800-53. Additionally, they are required to undergo specific FedRAMP training to ensure compliance with all associated controls and responsibilities in the day-to-day performance of their duties. Individuals working in departments that are considered to be in the high-risk category will be required to undergo advanced training based on their role and level of access. Individuals with access to modify data and the configuration baseline will require further training. The preceding functions are examples of the work performed by employees assigned to this job classification. Management reserves the right to add, modify, change or rescind work assignments and make a reasonable accommodation as needed. QualificationsRequired Skills: 8+ years’ experience as a cybersecurity engineer and familiarity with cybersecurity principles, concepts, and technologies Experience with pen testing, process and scan scripting, and advanced troubleshooting of cyber related tools and functions Experience with industry standard tools for functions like SIEM, IAM, firewalls, IDS/IPS, etc. Solid understanding of cybersecurity principles and best practices for a multi-cloud enterprise environment. Experience with cybersecurity assessments and frameworks Experience with vulnerability management Ability to identify security gaps and vulnerabilities and create remediation plans. Ability to manage time and priorities effectively to achieve optimal results. Strong critical thinking, problem solving and root cause analysis skills Ability to create effective procedure documents and workflow diagrams Excellent verbal and written communication Experience with Cybersecurity tools like Splunk, ePO, Carbon Black Preferred Skills: Scripting and automation experience (e.g. PowerShell) Experience implementing cloud security and compliance standards, frameworks, and controls (e.g., SOC 2, FedRAMP, NIST SP 800-53r4, HIPAA) for cloud service delivery models (IaaS, PaaS, SaaS) Windows and Linux exploitation tools and techniques Experience with both AWS and Azure clouds Incident response (IR) and digital forensic experience Healthcare IT background Experience conducting or participating in security audits Education: Bachelor’s Degree or equivalent experience (2 years per year of degree). Certification(s), Licenses: Preferred: Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH) or other advanced Cybersecurity certifications Years of experience in a similar role: Required: 8 + years of experience as a cybersecurity engineer and familiarity with cybersecurity principles, concepts, and technologies Preferred: 10 + years experience as a cybersecurity engineer and familiarity with cybersecurity principles, concepts, and technologies Compensation: Salary at DSS Inc is determined by various factors, including but not limited to location, the individual’s particular combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability and organizational requirements. The projected compensation range for this position is $90,000 to $140,000.00 (annualized USD). The estimate displayed represents the typical salary range for this position and is just one component of DSS, Inc. total compensation package for employees. PHYSICAL DEMANDS (per observation of incumbents in this position): Standing 5% per day Sitting 90% per day Walking 5% per day Stooping 5% per day Lifting If traveling, ability to lift up to 50 lbs. unassisted (luggage, laptop etc.) Up to 10 lbs. unassisted, several times a day (laptop, office equipment, office supplies, etc.) Computer Work 90% per day Telephone Work % per day Reading 10% per day Other, please specify Travel unassisted up to _10__% per year, via common carrier and/or personal automobile. DSS Inc. is an Equal Opportunity Employer. If you need an accommodation seeking employment with DSS, Inc., please email jobs@dssinc.com or call (561) 284-7373. Accommodations are made on a case-by-case basis.