We have several ISSM job opportunities offering either a remote or hybrid commute around the Washington, DC area including the Pentagon. RESPONSIBILITIES: Lead and support DoD RMF activities across ...
We have several ISSM job opportunities offering either a remote or hybrid commute around the Washington, DC area including the Pentagon. RESPONSIBILITIES: Lead and support DoD RMF activities across ...
Purview Administrator
Washington, DC · On-site +1
$115K - $145K/yr
This role can be performed on-site in Washington, DC if local to the area, or up to 100% remote. Responsibilities: * Design, implement, and test data governance and compliance policies, including ...
Quick apply
Purview Administrator
Washington, DC · On-site +1
$115K - $145K/yr
This role can be performed on-site in Washington, DC if local to the area, or up to 100% remote. Responsibilities: * Design, implement, and test data governance and compliance policies, including ...
Senior Information System Security Officer (ISSO)
Vienna, VA · Remote
$119K - $170K/yr
Remote. Alpha Omega is searching for an experienced Senior Information System Security Officer (ISSO) to join one of our long-term Federal projects. Alpha Omega is looking for a Senior Information ...
Senior Information System Security Officer (ISSO)
Vienna, VA · Remote
$119K - $170K/yr
Remote. Alpha Omega is searching for an experienced Senior Information System Security Officer (ISSO) to join one of our long-term Federal projects. Alpha Omega is looking for a Senior Information ...
Information System Security Officer
Chantilly, VA · On-site +1
$124K - $149K/yr
Remote Work Location: USA VA Chantilly Additional Work Locations: Total Rewards at GDIT: Our benefits package for all US-based employees includes a variety of medical plan options, some with Health ...
New
Information System Security Officer
Chantilly, VA · On-site +1
$124K - $149K/yr
Remote Work Location: USA VA Chantilly Additional Work Locations: Total Rewards at GDIT: Our benefits package for all US-based employees includes a variety of medical plan options, some with Health ...
New
Remote Comsec information
What are the key skills and qualifications needed to thrive in the Remote Comsec position, and why are they important?
To thrive as a Remote Comsec (Communications Security) professional, you need a solid background in information security principles, cryptographic techniques, and risk assessment, typically supported by a degree in cybersecurity or related field and relevant experience. Familiarity with security tools such as encryption platforms, key management systems, and certifications like CompTIA Security+, CISSP, or government clearances are frequently required. Strong attention to detail, discretion, and effective written and verbal communication are vital soft skills. These competencies are essential for protecting sensitive information, ensuring compliance with regulations, and effectively collaborating in a remote security environment.
What is a Remote Comsec job?
A Remote COMSEC (Communications Security) job involves managing and protecting classified or sensitive information transmitted over communication networks while working remotely. Responsibilities typically include handling encryption keys, ensuring compliance with security protocols, and monitoring secure communications. These roles require knowledge of cryptographic standards, cybersecurity policies, and government regulations. Many positions are within government agencies, defense contractors, or companies handling sensitive data. Strong attention to detail, a security clearance, and specialized training are often required for these roles.
What are some common challenges faced by Remote Comsec professionals and how are they addressed?
Remote Comsec professionals often face challenges such as managing sensitive information securely from offsite locations, maintaining up-to-date knowledge of evolving threats, and coordinating with geographically dispersed teams. To address these challenges, organizations provide robust secure communication systems, continuous security training, and clear protocols for incident response and information sharing. Regular collaboration through secure virtual platforms also helps ensure team alignment and effective risk management. Staying proactive and vigilant is key to successfully overcoming the unique demands of a remote security role.
What are the most commonly searched types of Comsec jobs in Reston, VA? The most popular types of Comsec jobs in Reston, VA are:
What are popular job titles related to Remote Comsec jobs in Reston, VA? For Remote Comsec jobs in Reston, VA, the most frequently searched job titles are:
What job categories do people searching Remote Comsec jobs in Reston, VA look for? The top searched job categories for Remote Comsec jobs in Reston, VA are:
- Temporary Workfront System Administrator
- Hiring Administrator
- Assistant Microsoft 365 Administrator
- Afternoon Google Workspace Administrator
- Junior Lms System Administrator
- Monday Through Friday Microsoft 365 Security Administrator
- Administrator Onsite
- Junior International Network Administrator
- Remote Microsoft Exchange Admin
- Weekend Jamf
What cities near Reston, VA are hiring for Remote Comsec jobs? Cities near Reston, VA with the most Remote Comsec job openings:
DoW Cloud Security ISSM with Security Clearance
Tetrad Digital Integrity (TDI)Alexandria, VA • On-site, Remote
Other
Posted 17 days ago
Job description
Tetrad Digital Integrity (TDI) is a leading-edge cybersecurity firm with a mission to safeguard and protect our customers from increasing threats and vulnerabilities in this digital age. Tetrad Digital Integrity (TDI) is seeking a DoW Cloud Security ISSM who thrives in the arena—hands-on, technically deep, and ready to engage credibly with senior government cyber leaders, engineers, and assessors. This is not a traditional ISSM role and it is not a paperwork-driven RMF seat. We are looking for a top-tier security operator who can make controls real in cloud-first, containerized systems with integrated Generative AI, drive ATO outcomes, and maintain traceability from control to implementation to evidence. If you are a roll-up-your-sleeves security leader who can speak RMF, NIST 800-53, Cloud SRG, Kubernetes/GKE, and AI risk in the same conversation—and turn that knowledge into measurable, continuously verifiable security outcomes—this is your platform to lead from the front. Join TDI’s Solutions team to help set the standard for modern DoD cloud security and deliver mission-critical impact from day one. This role is for a security professional who is equally comfortable discussing policy, architecture, control implementation, evidence, and risk tradeoffs. It is not for seeking a template-driven RMF job. The right candidate is proactive, technically credible, disciplined, curious, and able to turn security requirements into real, measurable outcomes in modern cloud environments. We have several ISSM job opportunities offering either a remote or hybrid commute around the Washington, DC area including the Pentagon. RESPONSIBILITIES:
Lead and support DoD RMF activities across the full lifecycle, including categorization, control selection, implementation, assessment, authorization, and continuous monitoring, with a focus on real security outcomes, not administrative throughput.
Provide expert guidance on DoD cloud security policy, NIST SP 800-53 controls, CNSS policy, Cloud Computing SRG, and emerging AI-related guidance, translating requirements into practical engineering and risk decisions.
Conduct security architecture reviews and security engineering analysis for cloud-native, containerized workloads hosted in Google Cloud Platform.
Evaluate the design, implementation, and effectiveness of security controls for Kubernetes, Docker, GKE, and related orchestration environments.
Develop, maintain, and improve SSPs, SARs, POA&Ms, and related RMF artifacts with a focus on accuracy, evidence quality, and operational relevance.
Perform threat modeling, vulnerability assessment, and risk analysis tailored to cloud and AI-enabled environments.
Partner directly with system architects, developers, platform engineers, and DevSecOps teams to integrate security into the SDLC rather than applying it after the fact.
Support security control assessments and coordinate effectively with third-party assessors, Authorizing Officials, and other stakeholders.
Monitor, track, and report compliance and risk posture through Continuous Monitoring processes using current data, measurable control health, and defensible evidence.
Help drive repeatable, scalable approaches to control validation, evidence collection, and compliance reporting to reduce manual effort and improve consistency. QUALIFICATIONS:
U.S. Citizenship with an active DoD Secret clearance; Top Secret preferred.
Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or related field.
Relevant security certification such as CISSP or CISM.
12+ years of cybersecurity experience, including significant experience supporting RMF activities for DoD systems.
Demonstrated working knowledge of cloud platforms, preferably Google Cloud Platform, including IAM, VPC, GKE, and security-relevant native services.
Strong knowledge of containerized environments, including Docker, Kubernetes, and container security best practices.
Familiarity with Generative AI technologies, including LLMs and AI/ML security considerations in regulated or mission-sensitive environments.
Deep understanding of NIST SP 800-53, DoD RMF, FedRAMP, and related cybersecurity frameworks.
Experience writing and maintaining RMF artifacts such as SSPs, POA&Ms, and SARs.
Strong communication skills, including the ability to communicate clearly with both technical and non-technical stakeholders.
Experience conducting security risk assessments in DoD or federal cloud environments.
Ability to distinguish between documented compliance and actual control effectiveness, and to defend recommendations with sound technical and risk-based reasoning. PREFERRED QUALIFICATIONS:
Advanced cloud security certifications such as Google Professional Cloud Security Engineer or CCSP.
Experience integrating DevSecOps pipelines with RMF or compliance workflows.
Familiarity with automation tools or approaches for RMF documentation, control validation, or control testing, such as Xacta, eMASS, or OpenRMF.
Experience building or improving repeatable evidence collection, control traceability, or continuous monitoring practices in cloud environments.
Experience working in high-visibility programs where speed, precision, and defensible judgment matter.
Lead and support DoD RMF activities across the full lifecycle, including categorization, control selection, implementation, assessment, authorization, and continuous monitoring, with a focus on real security outcomes, not administrative throughput.
Provide expert guidance on DoD cloud security policy, NIST SP 800-53 controls, CNSS policy, Cloud Computing SRG, and emerging AI-related guidance, translating requirements into practical engineering and risk decisions.
Conduct security architecture reviews and security engineering analysis for cloud-native, containerized workloads hosted in Google Cloud Platform.
Evaluate the design, implementation, and effectiveness of security controls for Kubernetes, Docker, GKE, and related orchestration environments.
Develop, maintain, and improve SSPs, SARs, POA&Ms, and related RMF artifacts with a focus on accuracy, evidence quality, and operational relevance.
Perform threat modeling, vulnerability assessment, and risk analysis tailored to cloud and AI-enabled environments.
Partner directly with system architects, developers, platform engineers, and DevSecOps teams to integrate security into the SDLC rather than applying it after the fact.
Support security control assessments and coordinate effectively with third-party assessors, Authorizing Officials, and other stakeholders.
Monitor, track, and report compliance and risk posture through Continuous Monitoring processes using current data, measurable control health, and defensible evidence.
Help drive repeatable, scalable approaches to control validation, evidence collection, and compliance reporting to reduce manual effort and improve consistency. QUALIFICATIONS:
U.S. Citizenship with an active DoD Secret clearance; Top Secret preferred.
Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or related field.
Relevant security certification such as CISSP or CISM.
12+ years of cybersecurity experience, including significant experience supporting RMF activities for DoD systems.
Demonstrated working knowledge of cloud platforms, preferably Google Cloud Platform, including IAM, VPC, GKE, and security-relevant native services.
Strong knowledge of containerized environments, including Docker, Kubernetes, and container security best practices.
Familiarity with Generative AI technologies, including LLMs and AI/ML security considerations in regulated or mission-sensitive environments.
Deep understanding of NIST SP 800-53, DoD RMF, FedRAMP, and related cybersecurity frameworks.
Experience writing and maintaining RMF artifacts such as SSPs, POA&Ms, and SARs.
Strong communication skills, including the ability to communicate clearly with both technical and non-technical stakeholders.
Experience conducting security risk assessments in DoD or federal cloud environments.
Ability to distinguish between documented compliance and actual control effectiveness, and to defend recommendations with sound technical and risk-based reasoning. PREFERRED QUALIFICATIONS:
Advanced cloud security certifications such as Google Professional Cloud Security Engineer or CCSP.
Experience integrating DevSecOps pipelines with RMF or compliance workflows.
Familiarity with automation tools or approaches for RMF documentation, control validation, or control testing, such as Xacta, eMASS, or OpenRMF.
Experience building or improving repeatable evidence collection, control traceability, or continuous monitoring practices in cloud environments.
Experience working in high-visibility programs where speed, precision, and defensible judgment matter.