Avint logo
Avint

Your Vision Achieved

Information Systems Security Officer (ISSO) - Subject Matter Expert (SME)

Security EngineerSecurity EngineerFull TimeRemoteMid LevelTeam 11-50H1B No SponsorCompany SiteLinkedIn

Location

United States

Posted

1 day ago

Salary

$130K - $150K / year

Seniority

Mid Level

Job Description

Information Systems Security Officer (ISSO) - Subject Matter Expert (SME)

Avint

Role Description We are seeking a highly skilled and experienced Information Systems Security Officer (ISSO) Subject Matter Expert (SME) to join our team. In this critical role, you will be ultimately responsible for the day-to-day cyber operations of assigned systems, ensuring strict adherence to the Risk Management Framework (RMF) and industry standards. As a trusted advisor, you will collaborate closely with executive leadership—including the Authorizing Official (AO), System Owners, and the Chief Information Security Officer (CISO)—to mitigate risk and defend vital digital infrastructure. Qualifications - Bachelor’s Degree (BA/BS) OR equivalent verifiable work experience. - Security+ or higher; higher certifications such as CISSP, CAP, or CASP desired. - Eight (8) years of progressive experience in information assurance, cybersecurity engineering, or ISSO/ISSM roles. Requirements - Must be a U.S. citizen (no dual citizenship). - Ability to pass a background investigation. - Able to obtain and maintain DHS Suitability/Entry on Duty (EOD). - High level of attention to detail and strong organizational skills. - Exceptional communication and diplomacy skills, with the ability to translate complex technical risks into actionable business advice for executive stakeholders (AO, CISO). - Strong analytical thinking and meticulous attention to detail regarding security documentation and boundaries. Position Responsibilities - Security Program Oversight & Leadership - Program Ownership: Oversee the comprehensive Information Assurance (IA) program for assigned information systems. - Operational Posture: Ensure the continuous implementation and maintenance of an appropriate operational security posture, including network/system security, physical/environmental protection, personnel security, incident handling, and security training/awareness. - Day-to-Day Operations: Act as the primary authority ultimately responsible for daily cybersecurity operations across assigned systems. - Strategic Advisory & Risk Management - Executive Consultation: Advise the Authorizing Official (AO), Information System Owners, and the CISO on risks, vulnerabilities, and the overall security health of information systems or programs. - RMF Expertise: Provide deep Risk Management Framework (RMF) expertise and direct support for Cybersecurity Inspections, Operations, and Orders Processing. - Compliance & Documentation: Ensure all system security documentation remains current and that authorization boundaries are accurately defined and maintained for all systems. - Assessments, Audits, & Compliance - Authorization Support: Actively support and facilitate security assessment and authorization (A&A) activities to maintain Authority to Operate (ATO) status. - Audit Readiness: Lead and assist in cybersecurity-related audits, inspections, regulatory compliance reviews, and technical assessments. - Standards Alignment: Ensure all information systems strictly comply with client-specific mandates, federal regulations, and industry best practices. - Technical Areas of Expertise - Advanced mastery of the Risk Management Framework (RMF) and associated security controls (e.g., NIST SP 800-53). - Proven experience guiding systems through the full Assessment & Authorization (A&A) lifecycle. - Strong understanding of network security architecture, incident response protocols, and physical security standards. - Working knowledge of automated cybersecurity and vulnerability scanning tools deployed in enterprise environments (e.g., ACAS, Nessus, Splunk, HBSS, or similar). Benefits - Competitive salaries - Full health insurance - Generous time off - Observation of federal holidays - Reimbursement for courses, exams, and tuition Salary Range $130,000-$150,000

Related Categories

Related Job Pages

More Security Engineer Jobs

Full TimeRemoteTeam 11-50Since 2020H1B No Sponsor

Role Description We’re seeking an experienced Chief Compliance Officer (CCO) / Chief Information Security Officer (CISO) to lead our compliance and information security programs. This executive will be a key member of the leadership team, ensuring LendSwift operates with full regulatory compliance and robust data security across all operations. - Compliance: - Maintain and improve a comprehensive Compliance Management System (CMS) that aligns with applicable federal and state consumer lending laws and regulations (e.g., TILA, ECOA, FCRA, GLBA, UDAAP). - Manage and maintain strong working relationships with our bank partners, ensuring ongoing compliance with bank oversight requirements and participation in exams and audits. - Oversee licensing, regulatory reporting, and interactions with federal and state regulators. - Advise senior leadership on compliance risks, trends, and mitigation strategies. - Lead compliance training, monitoring, and issue management programs. - Information Security: - Own the design and execution of our enterprise information security program to protect customer and company data. - Ensure compliance with GLBA, SOC 2, PCI DSS, and other applicable data security frameworks. - Develop and enforce policies, procedures, and controls for data privacy, cybersecurity, and incident response. - Oversee vendor due diligence and third-party risk management as it relates to information security. - Report regularly to executive leadership and the Board on the state of information security. Qualifications - 8+ years of progressive leadership experience in compliance and/or information security in the consumer lending industry. - Extensive knowledge of the bank partnership lending model and managing bank sponsor relationships. - Hands-on experience with multi-state lending operations and regulatory requirements. - Proven ability to lead, build, and scale compliance and security programs in a high-growth environment. - Strong communication skills; comfortable engaging with regulators, bank partners, auditors, and legal counsel. - Bachelor’s degree required; JD, CIPP, CISSP, or other relevant certifications a plus. Requirements - 8+ years of progressive leadership experience in compliance and/or information security in the consumer lending industry. - Extensive knowledge of the bank partnership lending model and managing bank sponsor relationships. - Hands-on experience with multi-state lending operations and regulatory requirements. - Proven ability to lead, build, and scale compliance and security programs in a high-growth environment. - Strong communication skills; comfortable engaging with regulators, bank partners, auditors, and legal counsel. - Bachelor’s degree required; JD, CIPP, CISSP, or other relevant certifications a plus. Benefits - Highly flexible remote work environment. - Unlimited PTO. - Lean, AI-forward leadership team. - The chance to shape compliance and security strategy for a growing fintech innovator. - Competitive compensation and comprehensive benefits.

United States
General Motors logo

Staff Cybersecurity Engineer - Zero Trust

General Motors

Join us on our journey toward a world with zero crashes, zero emissions, and zero congestion.

Full TimeRemoteTeam 10,001+Since 1908H1B Sponsor

Description This role offers the following Work strategies: This role is based remotely but if you live within a 50-mile radius of Atlanta, Austin, Detroit, Mountain View or Warren, you are expected to report to that location three times a week, at a minimum The Role: The role serves as a member of the Secure Access Services team, providing deep network access analysis and zero trust solution design expertise. As a Staff Cybersecurity Engineer focused on Security Services, this role is responsible for assessing how users, devices, and services traverse complex network architectures and translating those findings into engineered zero trust patterns implemented through the appropriate identity-aware proxies and mesh VPN policies. This senior individual contributor role combines strategic security architecture with hands-on engineering to deliver secure access services at scale. The engineer will own the design and implementation of secure access capabilities that offload complex identity and context-based access decisions from applications to a centralized Secure Access Services platform, covering both web and non-web applications such as APIs, databases, administrative tools, and legacy TCP workloads. What You'll Do: - Design, implement, and maintain scalable and secure access architectures across complex enterprise IT environments. - Define and evolve the technical roadmap for Secure Access Services, including mesh VPN and identity-aware access patterns across web and non-web applications. - Conduct deep analysis of user, device, and service network access paths across complex network environments, including routing, firewalls, macro- and micro-segmentation, proxies, DNS, and load balancers. - Architect end-to-end zero trust access patterns that decouple applications from direct network trust and centralize policy enforcement in Secure Access Services. - Translate business, risk, and compliance requirements into reusable reference architectures, patterns, and guardrails for secure access. - Serve as the primary engineer for the solutions you architect, including design, configuration, scripting, integration, and operationalization of mesh VPN and identity-aware proxy capabilities. - Implement secure access for a broad set of web and non-web applications, including internal and external web applications, APIs, databases, administrative tools, and legacy TCP workloads. - Drive data governance and secure architecture practices by ensuring access patterns, controls, and supporting documentation align with security policies, standards, and best practices. - Collaborate with software development, infrastructure, identity, network, and product teams to integrate security considerations throughout the application and service lifecycle. - Evaluate and recommend security tools, technologies, and processes that enhance the overall security posture and improve scalability, resilience, and operational efficiency. - Conduct qualitative research and technical analysis to identify emerging threats, vulnerabilities, and innovative secure access solutions. - Develop automation, including Infrastructure as Code, CI/CD integrations, and policy-as-code, to ensure consistent and repeatable deployment of secure access controls. - Develop and maintain technical documentation related to security architectures, onboarding patterns, runbooks, configuration baselines, test plans, and operational procedures. - Provide technical leadership, mentorship, and knowledge sharing to other engineers on security best practices, architectural design, and secure access engineering patterns. - Participate in incident response activities and provide expert guidance on secure access and security-related issues, including root cause analysis and durable remediation. - Define, track, and own key metrics and performance indicators for secure access capabilities, including application coverage, control adoption, incident reduction, and onboarding efficiency. Your Skills & Abilities (Required Qualifications): - Bachelor's degree in Computer Science, Information Security, Cybersecurity, Computer Engineering, or a related technical field. - 7+ years of experience in cybersecurity, network security, security architecture, or security engineering roles, with a strong focus on secure access and zero trust design. - Equivalent combination of education and relevant experience may be considered. - Proven experience designing, implementing, and engineering zero trust security architectures and secure access patterns within large, complex hybrid network environments. - Expert-level proficiency in modern information security and complex network architectures, including zero trust architecture, identity and access management, secure remote access, VPN and mesh VPN solutions, and web and non-web application access patterns. - Strong expertise in network and connectivity architectures, including routing, firewalls, macro- and micro-segmentation, proxies, DNS, and load balancers. - Demonstrated ability to analyze complex network and access patterns and translate them into robust, scalable, and supportable secure access designs. - Experience securing development and enterprise environments and integrating security throughout the software development and service lifecycle. - Strong understanding of enterprise IT, networking, cloud platforms, information architecture, and relevant security disciplines, theories, and techniques. - Demonstrated experience conducting qualitative research and technical analysis related to cybersecurity risks, vulnerabilities, and solution design. - Track record of independently leading complex, cross-functional initiatives with measurable business and risk reduction outcomes. - Excellent written, verbal, and interpersonal communication skills, with the ability to articulate complex security concepts to technical and non-technical audiences. What Will Give You A Competitive Edge (Preferred Qualifications): - 10+ years of experience in cybersecurity, network security, security architecture, or security engineering roles, with a strong focus on secure access and zero trust design. - Relevant industry certifications such as CISSP, CISM, SABSA, CCSP, or advanced networking certifications are a plus. - Mater's degree in Computer Science, Information Security, Cybersecurity, Computer Engineering, or a related technical field. Compensation: The compensation information is a good faith estimate only. It is based on what a successful applicant might be paid in accordance with applicable state laws. The actual base salary a successful candidate will be offered within this range will vary based on factors relevant to the position, as well as geography of the selected candidate. • The salary range for this role is $160,200-$246,300. The actual base salary a successful candidate will be offered within this range will vary based on factors relevant to the position. • Bonus Potential: An incentive pay program offers payouts based on company performance, job level, and individual performance. Benefits: Benefits: GM offers a variety of health and wellbeing benefit programs. Benefit options include medical, dental, vision, Health Savings Account, Flexible Spending Accounts, retirement savings plan, sickness and accident benefits, life insurance, paid vacation & holidays, tuition assistance programs, employee assistance program, GM vehicle discounts and more. #LI-SB3 GM does not provide immigration-related sponsorship for this role. Do not apply for this role if you will need GM immigration sponsorship now or in the future. This includes direct company sponsorship, entry of GM as the immigration employer of record on a government form, and any work authorization requiring a written submission or other immigration support from the company (e.g., H1-B, OPT, STEM OPT, CPT, TN, J-1, etc.) This role is based remotely, but if the selected candidate lives within a specific mile radius of a GM hub, they will be expected to report to the location three times a week {or other frequency dictated by your manager}. This job is not eligible for relocation benefits. Any relocation costs would be the responsibility of the selected candidate. About GM Our vision is a world with Zero Crashes, Zero Emissions and Zero Congestion and we embrace the responsibility to lead the change that will make our world better, safer and more equitable for all. Why Join Us We believe we all must make a choice every day - individually and collectively - to drive meaningful change through our words, our deeds and our culture. Every day, we want every employee to feel they belong to one General Motors team. Total Rewards | Benefits Overview From day one, we're looking out for your well-being-at work and at home-so you can focus on realizing your ambitions. Learn how GM supports a rewarding career that rewards you personally by visiting Total Rewards resources. Non-Discrimination and Equal Employment Opportunities (U.S.) General Motors is committed to being a workplace that is not only free of unlawful discrimination, but one that genuinely fosters inclusion and belonging. We strongly believe that providing an inclusive workplace creates an environment in which our employees can thrive and develop better products for our customers. All employment decisions are made on a non-discriminatory basis without regard to sex, race, color, national origin, citizenship status, religion, age, disability, pregnancy or maternity status, sexual orientation, gender identity, status as a veteran or protected veteran, or any other similarly protected status in accordance with federal, state and local laws. We encourage interested candidates to review the key responsibilities and qualifications for each role and apply for any positions that match their skills and capabilities. Applicants in the recruitment process may be required, where applicable, to successfully complete a role-related assessment(s) and/or a pre-employment screening prior to beginning employment. To learn more, visit How we Hire. Accommodations General Motors offers opportunities to all job seekers including individuals with disabilities. If you need a reasonable accommodation to assist with your job search or application for employment, email us [email protected] or call us at 1-800-865-7580. In your email, please include a description of the specific accommodation you are requesting as well as the job title and requisition number of the position for which you are applying.

Texas + 3 moreAll locations: Texas | Michigan | California | District Of Columbia
$160.2K - $246.3K / year
Cisco logo

Security Engineer

Cisco

We securely connect everything to make anything possible.

Full TimeRemoteTeam 10,001+Since 1984H1B Sponsor

• Consulting with application owners and users to onboard application-level monitoring • working with SIEM team to ingest logs including any required ticketing • validating log integrity • holding discussions with log owners to document log and for completeness of logs • Work within a collaborative team environment passionate about innovating our toolset as we evolve into a hybrid world

United States
$101.5K - $144.5K / year
Switzerland Global Enterprise logo

Principal Cybersecurity Architect – Generative AI Security

Switzerland Global Enterprise

We support Swiss SMEs in their international business and help innovative foreign companies to establish in Switzerland.

Full TimeRemoteTeam 51-200Since 1927H1B No Sponsor

• Define and own the enterprise security architecture for Generative AI systems, including LLM-based applications, agentic AI, and AI platforms • Partner with the AI Foundry to design secure GenAI platforms, tools, and workflows • Establish architectural standards and guardrails for AI system design, deployment, and operation • Embed secure-by-design principles into AI pipelines, including model access, data ingestion, inference, and output handling • Conduct architecture reviews to identify risks across AI systems, including data exposure, model misuse, and integration vulnerabilities • Publish Risk Assessment Reports that include threats and mitigating controls aligned to GEV policies and standards • Lead threat modeling and risk assessments for GenAI systems using frameworks such as: OWASP Top 10 for LLM Applications, OWASP Top 10 for Agentic Applications, MITRE ATT&CK / ATLAS (for AI threats) • Apply Zero Trust principles to AI systems, including identity and authentication for AI agents and services

United States
$145.4K - $242.4K / year