Information Security (INFOSEC) Specialist

We are seeking an Information Security (INFOSEC) Specialist to support aviation, transportation, and technical modernization efforts in the Washington, DC area. This role provides hands-on cybersecurity and information assurance support across system development, sustainment, and operational environments. The selected candidate will work with program teams, engineers, and stakeholders to help ensure systems remain secure, compliant, and prepared for authorization and ongoing operation.

The ideal candidate has 5–10 years of relevant experience and is comfortable supporting cybersecurity activities within structured program and regulatory environments.

This is a hybrid position in the DC area.

Responsibilities

• Support cybersecurity requirements analysis, development, and traceability for systems and interfaces.
• Assist with cybersecurity impact assessments related to system changes, upgrades, and configuration updates.
• Support system authorization activities, including preparation, review, and maintenance of security documentation.
• Contribute to continuous monitoring activities and help maintain cybersecurity posture over the system lifecycle.
• Track, update, and support remediation of cybersecurity findings, vulnerabilities, and POA&Ms.
• Assist with risk assessments, gap analyses, and mitigation planning to support secure system operation.
• Support review of security-related documentation for completeness, accuracy, and compliance with customer and regulatory requirements.
• Coordinate with system owners, engineers, program teams, and other stakeholders to support cybersecurity objectives.
• Assist with privacy, compliance, audit response, and data-call activities, as applicable.
• Contribute to development and maintenance of cybersecurity procedures, plans, and supporting artifacts.
• Support integration, testing, and validation of security controls and cybersecurity capabilities.

Required Qualifications

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, Engineering, or a related technical field.
• 5–10 years of relevant experience in information security, cybersecurity, information assurance, or related technical security roles.
• Experience supporting cybersecurity activities such as security documentation, risk analysis, system assessment, vulnerability tracking, continuous monitoring, or authorization support.
• Familiarity with cybersecurity frameworks, standards, and compliance processes in enterprise or government environments.
• Strong analytical, organizational, and written/verbal communication skills.
• Ability to work effectively with cross-functional teams and multiple stakeholders.
• U.S. Citizen or Permanent Resident eligible to work in the United States.
• Ability to obtain required customer or FAA security suitability.

Preferred Qualifications

• Experience supporting FAA programs, National Airspace System (NAS) environments, or other federal transportation or critical infrastructure programs.
• Experience with NIST RMF, system authorization packages, POA&M management, and continuous monitoring processes.
• Familiarity with tools or processes used for security tracking, assessment, and compliance reporting.
• Experience supporting modernization of legacy systems, enterprise systems, or service-based/cloud-based environments.
• Knowledge of privacy compliance, audit support, and configuration/change management in regulated environments.
• Industry certification such as Security , CISSP, CISM, or similar is a plus.