Title: Information System Security Officer (ISSO) Location: Remote, MD Job Description: Job Type Full-time Description Position Details: Job Title: Information System Security Officer (ISSO) Job Type: Full-time Location: Remote, MD - occasional in-person in the DC Metro Area as necessary Dynanet Corporation Overview: Dynanet started with a focus on IT infrastructure and operations, helping organizations enhance their networks and overcome the limitations of 1990s technology. From strengthening communication channels to introducing innovative ways to collaborate and share information, Dynanet played a crucial role in shaping the early stages of digital transformation. The company’s efforts helped organizations build the very fabric of connectivity that now powers our modern world. Over the last three decades, Dynanet has grown into a trusted partner for organizations looking to innovate boldly and transform seamlessly. While technology continues to evolve and unlock new opportunities, for nearly 30 years, Dynanet remains committed to delivering cutting-edge solutions that drive lasting change for its customers. Through agility, foresight, and an unwavering dedication to excellence, Dynanet continues to empower organizations to thrive in a rapidly changing digital landscape. Our story is more than just a story of technology – it’s a story of vision, growth, and transformation that has shaped the past and continues to pave the way for the future. About the Role: Serve as a hands-on Information System Security Officer (ISSO) supporting the modernization and accreditation of applications across the Agency's evolving cloud and on-prem ecosystem. This role is focused on technical execution, not policy-only oversight. The ISSO will drive SSP creation, automated ATO workflows, continuous monitoring integration, secure baseline enforcement for the Landing Zone Architecture (LZA), and the adoption of an OTEL-first monitoring and logging platform. By enabling evidence automation, compliance-as-code, and integrated security telemetry, the ISSO will strengthen application readiness, accelerate ATO timelines, and ensure continuous compliance across hybrid environments. - Leads hands-on SSP creation, ATO automation, and continuous monitoring integration. - Defines and implements secure baselines, compliance-as-code, and OTEL-driven monitoring patterns. Roles & Responsibilities: - Create full Security System Plans (SSPs) for new applications, including system boundaries, control implementation statements, architecture mapping, and inheritance models. Support, update, and maintain SSPs for existing applications through the full ATO lifecycle. - Develop and implement automated ATO pipelines, including evidence generation, validation tasks, and CI/CD gating aligned to RMF requirements. - Integrate continuous monitoring strategies, telemetry sources, alerting thresholds, and control-health scoring. - Automate evidence collection through scripts, scheduling logic, secure repositories, and structured control mappings. - Define, maintain, and enforce secure baselines for the Landing Zone Architecture (LZA) across cloud and on-prem environments. - Implement and scale compliance-as-code, translating NIST and agency controls into machine-testable rules and automated evaluations. - Establish and manage an OTEL-first platform for organization-wide logging, metrics, tracing, APM, and compliance telemetry. - Enable OTEL-driven continuous compliance through real-time signals tied to control effectiveness and evidence requirements. - Collaborate with engineering, cloud, security, and application teams to provide hands-on control remediation, configuration updates, and automation support. - Partner with assessors and AOs to ensure high-quality artifacts, timely responses, and successful accreditation reviews. Required Professional Skills: - 5–10+ years of experience in ISSO, security engineering, or RMF/FISMA compliance roles (hands on technical focus). - Strong experience creating SSPs, implementing controls, and driving ATOs for cloud or hybrid systems. - Hands on background with AWS, Azure, and on prem environments, including inheritance models and shared-responsibility controls. - Experience implementing continuous monitoring, SIEM integrations, telemetry pipelines, and automated control health reporting. - Proficiency with scripting (Python, PowerShell, Bash) to automate evidence collection, configuration checks, and compliance tasks. - Experience with IaC tools (Terraform, Bicep, CloudFormation) and building automated compliance checks within CI/CD. - Working knowledge of cloud networking, identity (Entra IAM/IAM), endpoint telemetry, containerized environments, and security baseline enforcement. - Strong understanding of NIST RMF, FISMA, FedRAMP, vulnerability management, and POA&M remediation processes. Preferred Professional Skills: - Experience implementing OpenTelemetry collectors, instrumentation, and pipelines for traces, logs, and metrics. - Experience with compliance as code frameworks (OPA/Conftest, Regula, or custom rulesets). - Security certifications such as CISSP, CAP, Security+, CCSK, CCSP, or cloud security certifications. - Experience automating ATO processes, evidence generation, and continuous monitoring dashboards. - Background supporting Zero Trust principles, secure baseline patterns, and telemetry driven security operations. Dynanet Team Requirements and Expectations: - Possess Strong written and verbal communication skills. - Highly organized with the ability to prioritize, balance, and effectively advance multiple competing priorities in a high-volume, fast-paced environment. - Ability to interact in a professional and collaborative manner with fellow Dynanet Teammates and the clients, and business partners that we work with. - Ability and desire to challenge and educate yourself to support and advance IT services delivery in the Federal agencies we serve. - Excellent judgment and creative problem-solving skills. - Respond to team member and client requests via email, MS teams, or other communication means during core business hours. - Active listening skills to understand clients' needs, and collaboration skills to work with other developers and designers. Employee Benefits Overview: · Industry Competitive Compensation · Medical and Dental Insurance · Paid Time Off/Holidays · 401(k) Retirement Plans with Matching · Remote Work* · Paid Training · Employee Referral Program · Employee Development Program

Role Description ASRC Federal is looking for an experienced Senior Cyber Security Analyst (Incident Response & Threat Operations) to join our team in a government contracting (GovCon) environment. This is a full-time remote position with occasional on-site support (Beltsville, MD or Reston, VA). The Senior Cyber Security Analyst is responsible for advanced incident response, threat detection, and Tier II/Tier III Security Operations Center (SOC) support within an enterprise environment. This role focuses on: - Investigating security events - Identifying malicious activity - Responding to cyber incidents - Improving detection capabilities across the organization The ideal candidate has strong hands-on experience in: - Intrusion detection - Threat hunting - Phishing investigations - Endpoint and network analysis - Operational cybersecurity support Key Responsibilities - Serve as a Tier II/Tier III escalation point for complex SOC investigations and cybersecurity incidents. - Investigate and respond to security alerts involving phishing, malicious URLs, malware activity, credential compromise, suspicious authentication activity, and endpoint threats. - Conduct proactive threat hunting activities using SIEM, EDR/XDR, firewall, DNS, email security, and network telemetry data. - Monitor security tools, logs, alerts, and reports to identify suspicious or malicious activity and coordinate appropriate response and remediation actions. - Identify, analyze, and mitigate cybersecurity threats, vulnerabilities, and system weaknesses to reduce organizational risk exposure. - Analyze security events and logs to identify indicators of compromise, attack patterns, and unauthorized activity. - Perform incident response activities including triage, containment, eradication, recovery, and root cause analysis for security incidents. - Support and enhance enterprise security monitoring and detection capabilities across SIEM, EDR/XDR, IDS/IPS, email security, and firewall platforms. - Develop and tune detection rules, alerting logic, and threat detection use cases to improve SOC effectiveness and reduce false positives. - Create scripts and automation solutions using PowerShell, Python, or similar tools to streamline investigations and response activities. - Collaborate with infrastructure, networking, cloud, and endpoint teams during investigations and remediation efforts. - Evaluate emerging threats, vulnerabilities, attack techniques, and security technologies to strengthen enterprise detection and response capabilities. - Provide technical guidance and support for escalated cybersecurity investigations and operational issues. - Document investigative findings, incident timelines, and remediation recommendations. - Participate in on-call incident response support as required. Qualifications - Must be a U.S. Citizen or Permanent Resident (Green Card Holder). - Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or equivalent professional experience. - 7+ years of hands-on experience in cybersecurity operations, incident response, or SOC environments. - Experience supporting Tier II/Tier III SOC investigations and incident handling. - Strong experience with: - SIEM platforms - EDR/XDR technologies - IDS/IPS systems - Email security platforms - Firewall and network security tools - Experience investigating phishing attacks, URL click alerts, malware infections, and account compromise activity. - Strong understanding of TCP/IP, DNS, HTTP/S, VPNs, Active Directory, and enterprise networking concepts. - Experience supporting Windows and Linux environments. - Proficiency in PowerShell, Python, or similar scripting languages. - Strong analytical, troubleshooting, and communication skills. - Ability to work independently in a fast-paced operational environment. Preferred Qualifications - Certifications such as CISSP, GCIH, GCIA, CEH, Security+, or equivalent (at least one is required). - Experience with MITRE ATT&CK, threat intelligence platforms, or SOAR technologies. - Familiarity with cloud security monitoring and enterprise-scale security operations. Benefits - Competitive pay and benefits packages. - Health care, dental, vision, life insurance. - 401(k) plan. - Education assistance. - Paid time off including PTO, holidays, and any other paid leave required by law. Additional Information - Reports to: Cybersecurity Governance, Risk & Compliance Leadership. - Travel: None. - Clearance: Secret clearance preferred but not required; may be required based on project needs. EEO Statement ASRC Federal and its Subsidiaries are Equal Opportunity employers. All qualified applicants will receive consideration for employment without regard to race, gender, color, age, sexual orientation, gender identification, national origin, religion, marital status, ancestry, citizenship, disability, protected veteran status, or any other factor prohibited by applicable law.

Role Description We are seeking a Senior Cryptographer with deep experience in modern cryptographic design, PQC evaluation, and secure-system implementation. The ideal candidate has supported or participated in national-security cryptographic programs (NSA, CYBERCOM, CIA DS&T, MITRE, APL, Sandia, Los Alamos, NIST). Work Locations in Virginia / Maryland / DC / Remote (with CONUS travel). You will be a senior technical advisor working alongside Vibrint's cleared engineering teams and QED's cryptography leadership, advising federal customers and evaluating cryptography modernization roadmaps. Key Responsibilities - Conduct cryptographic audits for CNSA 2.0 + NIST PQC compliance - Evaluate algorithm implementations (Kyber, Dilithium, SPHINCS+, McEliece) - Assess hardware crypto modules (HSMs, TPM, FPGA, ASIC security blocks) - Develop crypto migration recommendations for federal clients - Review Type-1 / high-assurance system architectures - Support prototyping of QED-Vibrint proprietary PQC hardware modules (QRNG + PQC-enabled chipset) - Engage with NIST/IETF/PQC working groups (optional but preferred) - Contribute to customer briefings, white papers, and cryptographic risk assessments Required Experience - Lattice-based crypto (Kyber, Dilithium) - Code-based (Classic McEliece) - Hash-based (SPHINCS+) - Hardware crypto modules, HSM, FPGA, chip-level key management Benefits - Competitive salary - Annual merit-based salary increases and discretionary bonus program - 401(k) plan with a company contribution - 11 paid federal holidays - 160 hours of paid time off - Medical, dental, vision, life and short- & long-term disability insurance - Employee assistance program - Generous professional development allowance Equal Opportunity Employer All applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, citizenship, family structure, marital status, disability, veteran or military status, or any other characteristic protected by law in all phases of the employment process and in compliance with applicable federal, state, and local laws and regulations. An equal opportunity employer/disability/vet. Please apply for immediate consideration.

Role Description A fantastic opportunity for a CyberSecurity Operations Engineer to join a fast-growing, technology-led security company delivering managed security and managed IT services to a global client base. This role sits firmly within the Operations and Service Delivery function, working closely with clients post-sale to support, implement and improve their security and IT environments. This is a hands-on, client-facing operational role focused on technical support, troubleshooting, account ownership and project delivery. Location: Fully remote, anywhere in the US Salary: $80,000 – $120,000 per annum (lower end for a recent Graduate) Qualifications - Outstanding academic background with a minimum GPA of 3.6 - Bachelor’s degree in Computer Science, Cyber Security, Engineering, Mathematics or Physics - Degree obtained from a highly ranked academic institution (typically Top 100 US universities or equivalent globally) - Hands-on technical experience through internships, commercial roles, homelabs, open-source projects or real-world environments - Strong technical understanding across operating systems, networking, security protocols, scripting and cloud infrastructure - Excellent problem-solving skills with a practical, solutions-focused mindset - Strong communication skills with the ability to explain technical issues clearly to non-technical stakeholders - A proactive, self-motivated individual who thrives in a fast-paced, high-responsibility environment - Curiosity, ambition and a genuine passion for technology and continuous learning - Exposure to SOC or offensive security is beneficial but not required Requirements - Deliver 1st and 2nd line technical support across security and IT environments - Take ownership of client issues from detection through to resolution - Act as a key technical point of contact for clients, managing ongoing relationships - Conduct regular client catch-ups and service reviews, discussing security and IT challenges - Guide clients through security and IT roadmaps, advising on best practice and improvements - Troubleshoot and support security software, agents and bespoke security controls - Triage and respond to security incidents raised by internal monitoring teams, advising on remediation - Design, implement and manage IT and cloud infrastructure across SaaS, PaaS and IaaS environments - Support device provisioning, hardening, monitoring and IT asset procurement - Assist with firewall management, compliance activities, reporting and documentation - Support pre-sales activity including demos and proof-of-concepts when required - Deliver and manage ad hoc security and IT projects involving multiple internal and external stakeholders - Support and mentor more junior team members as you progress within the team Benefits - A highly varied operations role spanning security, IT support, projects and client delivery - Rapid technical development through real-world exposure to security and IT challenges - Clear progression into senior operations, account ownership or specialist technical roles - Structured training and support towards professional certifications - Opportunities to present internally and externally as your expertise develops - A collaborative, high-calibre team with strong technical standards - Fully remote working anywhere in the US Applications If you would like to apply for this CyberSecurity Operations Engineer role, please submit an up-to-date CV via the relevant link. For your application to be progressed, academic results must be clearly listed, including GPA and university attended. Please note you will hear back within 5 working days if your application is being progressed. Due to an extremely high level of applications for this specific role we are unable to provide individual feedback. We’re committed to creating an inclusive and accessible recruitment process. If you require reasonable adjustments for your application or during the review process, please highlight this by separately emailing applications@redtech-recruit.com.