CISSP Cyber Security Engineer

Conviso Inc is hiring CISSP Certified Cyber Security Engineer for 100% REMOTE set-up, This Job comes with benefits, 401K & some accrued PTO. The Ideal candidate will focus on securing enterprise systems and cloud/infrastructure environments while ensuring alignment with federal cybersecurity standards and audit requirements.

Role: CISSP Certified Cyber Security Engineer

Remote Project

Key Responsibilities

• Implement, maintain, and monitor security controls across enterprise infrastructure and applications

• Support vulnerability management, security assessments, remediation tracking, and compliance activities

• Develop, manage, and track POA&Ms (Plans of Action and Milestones) to ensure timely remediation of security findings

• Support security authorization processes, audits, and continuous monitoring initiatives

• Conduct security analysis, risk assessments, incident response support, and root cause investigations

• Collaborate with infrastructure, application, and compliance teams to resolve security issues and strengthen controls

• Maintain security documentation including SSPs, policies, procedures, and remediation plans

• Ensure compliance with federal cybersecurity standards including NIST and FedRAMP guidelines

Required Skills & Experience

• 5–10 years of Cyber Security / Information Security experience

• Federal project experience required

• Strong experience with vulnerability management, compliance, and remediation processes

• Hands-on experience managing and tracking POA&Ms

• Strong understanding of NIST security frameworks and federal security controls

• Experience supporting audits, ATO activities, and continuous monitoring programs

Required Certifications

• CISSP certification required

Desired Skills & Domain Experience

• MBI clearance preferred

• Familiarity with FedRAMP, FISMA, RMF, and ATO processes

• Experience with cloud security, SIEM tools, and endpoint security platforms

• Knowledge of security tools such as Tenable, Splunk, CrowdStrike, or Microsoft Defender

• Experience in compliance-driven and high-security environments