Job Description
Job DescriptionLightFeather is seeking a Cybersecurity Compliance Engineer to support a high-profile federal program based in Washington, DC. This position requires a security-minded professional with deep knowledge of federal compliance frameworks and hands-on experience supporting the full lifecycle of system authorization. The ideal candidate will serve in an Information System Security Officer (ISSO) capacity—ensuring systems meet all federal cybersecurity and risk management requirements—while acting as a key liaison between engineering teams and governance authorities.
Location: Washington, DC 20036 (Onsite, 5 Days/Week)
Clearance Requirement: Active Secret or Top Secret Clearance
Employment Type: Full-Time
Citizenship: U.S. Citizenship RequiredKey Responsibilities
- Serve as a cybersecurity compliance engineer in an ISSO capacity, supporting ongoing security compliance activities for a portfolio of federal systems.
- Act as the principal interface between system engineering teams and governance, risk, and compliance (GRC) stakeholders to facilitate security reviews, audits, and control assessments.
- Ensure adherence to federal security frameworks including NIST SP 800-53, FISMA, and FedRAMP.
- Conduct and support security audits, system assessments, risk evaluations, and continuous monitoring efforts.
- Leverage the Arkangel GRC platform (similar to CSAM/eMASS) for both automated and manual compliance tracking, document workflows, and control validations.
- Monitor and manage compliance issues and incident response workflows using JIRA and Agile project management methodologies.
- Collaborate with peer compliance engineers to divide and manage a portfolio of approximately ten systems.
- Maintain and update core security documentation such as System Security Plans (SSPs), Security Assessment Reports (SARs), POA&Ms, and other risk-related artifacts.
- Provide expert security guidance to DevOps, infrastructure, and development teams during Agile ceremonies and planning sessions.
Required Qualifications
- U.S. Citizenship and an active Secret or Top Secret Clearance.
- 5+ years of experience in cybersecurity compliance, ISSO support, or federal GRC engineering roles.
- Strong understanding of federal cybersecurity policies, including NIST SP 800-53, FISMA, and FedRAMP.
- Experience working with GRC tools such as Arkangel, CSAM, or eMASS.
- Demonstrated ability to manage system audits, compliance reviews, and risk documentation.
- Experience operating within Agile environments and using project management tools such as JIRA.
- Exceptional written and verbal communication skills, with the ability to clearly convey compliance requirements to both technical and non-technical stakeholders.
Preferred Qualifications
- Prior experience supporting or managing systems built on platforms such as UiPath, EAST, or other automation and data management tools.
- Familiarity with modern security architectures, including Zero Trust principles.
- Industry-recognized certifications such as:
- Certified Information Systems Security Professional (CISSP)
- Certified Information Security Manager (CISM)
- Certified in Risk and Information Systems Control (CRISC)
Why Join LightFeather?
You'll be part of a team dedicated to meaningful impact, working on solutions that address mission-critical needs. Experience variety, fulfillment, and the opportunity to work with some of the best in the industry. We are committed to fostering a diverse and inclusive environment where everyone is valued and respected.