Federal Security Officer

About The Position

Requirements

• Active Secret clearance; TS or TS/SCI strongly preferred.
• 5+ years of industrial security / FSO experience with a cleared defense contractor or government entity.
• Deep working knowledge of NISPOM (32 CFR Part 117) and DCSA processes.
• Hands-on experience with DISS, NBIS, or equivalent personnel security systems.
• Experience managing an FCL and conducting DCSA self-inspections.
• FSO Certification through DCSA's Center for Development of Security Excellence (CDSE) or equivalent.
• Excellent communication skills — able to translate complex security requirements for non-security audiences including software engineers and executives.
• Bachelor's degree in security management, information assurance, cybersecurity, or a related field — or equivalent professional experience.

Nice To Haves

• Prior FSO or security management experience at a software, SaaS, or cybersecurity company.
• Familiarity with CMMC (Cybersecurity Maturity Model Certification) Level 2/3 requirements and C3PAO assessment processes.
• Understanding of cloud security environments (AWS GovCloud, Azure Government) in the context of classified or CUI-handling programs.
• Experience with ITAR/EAR export control compliance, including technology control plans (TCPs).
• OPSEC Coordinator certification or Special Access Program (SAP) security experience.
• Professional certifications: CPP (Certified Protection Professional), PSP, or SAPPC.
• Familiarity with Zero Trust concepts and how they intersect with federal security program requirements — a plus given AppGate's mission.

Responsibilities

• Own the full lifecycle of personnel security clearances — initiations, sponsorships, reinvestigations, and terminations — using DISS/NBIS.
• Serve as the primary liaison with DCSA (Defense Counterintelligence and Security Agency) and other cognizant security authorities.
• Conduct security briefings, debriefings, foreign travel briefings, and annual security awareness training for cleared staff.
• Maintain accurate records of cleared employees, visitor certifications, and foreign national contacts.
• Manage and maintain AppGate's Facility Clearance (FCL) in accordance with DCSA guidance and NISPOM (32 CFR Part 117).
• Oversee physical security controls including access management, classified storage, open storage areas, and classified destruction procedures.
• Conduct and document periodic self-inspections; develop and track corrective action plans.
• Manage classified visit certifications and coordinate cleared personnel access to government and contractor facilities.
• Ensure proper handling, transmission, storage, and disposition of classified information and Controlled Unclassified Information (CUI).
• Support program managers in reviewing DD Form 254s (Contract Security Classification Specifications) for new and existing contracts.
• Partner with AppGate's IT and DevSecOps teams to ensure classified and sensitive program environments meet applicable security requirements.
• Interface with government Program Security Officers (PSOs) on program-specific security requirements and deliverables.
• Maintain compliance with NISPOM, ITAR, EAR, and relevant federal security directives across all cleared programs.
• Develop and enforce security policies, procedures, and SOPs tailored to a software product company environment.
• Investigate and report security incidents and violations to DCSA and appropriate authorities; drive root cause analysis and remediation.
• Support CMMC assessments, government inspections, and contract-driven security audits.
• Stay current on evolving federal security regulations and proactively update AppGate's security program accordingly.

Benefits

• Base salary range: 90-115k