Federal Security Officer

About AppGate

AppGate secures and protects the most valuable assets for the Department of War (DoW) and various Federal Agencies with its high performance Zero Trust Network Access (ZTNA) solution. AppGate is the only direct-routed ZTNA solution purpose-built to support DoW mission requirements by enforcing least privilege access across distributed, global, and disconnected environments. AppGate is fully operational across many DOD branches, including the Marine Corps, Navy, Air Force and Space Force. Learn more at appgate.com/federal-division.

About the Role

The Federal Security Officer (FSO) is AppGate's primary point of accountability for industrial security across our programs. You will manage personnel security, facility clearance (FCL) compliance, classified information handling, and security education — ensuring AppGate meets all contractual and regulatory obligations while supporting a fast-moving software engineering and delivery organization.

Key Responsibilities

Personnel Security

• Own the full lifecycle of personnel security clearances — initiations, sponsorships, reinvestigations, and terminations — using DISS/NBIS.
• Serve as the primary liaison with DCSA (Defense Counterintelligence and Security Agency) and other cognizant security authorities.
• Conduct security briefings, debriefings, foreign travel briefings, and annual security awareness training for cleared staff.
• Maintain accurate records of cleared employees, visitor certifications, and foreign national contacts.

Facility Clearance & Physical Security

• Manage and maintain AppGate's Facility Clearance (FCL) in accordance with DCSA guidance and NISPOM (32 CFR Part 117).
• Oversee physical security controls including access management, classified storage, open storage areas, and classified destruction procedures.
• Conduct and document periodic self-inspections; develop and track corrective action plans.
• Manage classified visit certifications and coordinate cleared personnel access to government and contractor facilities.

Information Security & Program Support

• Ensure proper handling, transmission, storage, and disposition of classified information and Controlled Unclassified Information (CUI).
• Support program managers in reviewing DD Form 254s (Contract Security Classification Specifications) for new and existing contracts.
• Partner with AppGate's IT and DevSecOps teams to ensure classified and sensitive program environments meet applicable security requirements.
• Interface with government Program Security Officers (PSOs) on program-specific security requirements and deliverables.

Compliance, Policy & Incident Management

• Maintain compliance with NISPOM, ITAR, EAR, and relevant federal security directives across all cleared programs.
• Develop and enforce security policies, procedures, and SOPs tailored to a software product company environment.
• Investigate and report security incidents and violations to DCSA and appropriate authorities; drive root cause analysis and remediation.
• Support CMMC assessments, government inspections, and contract-driven security audits.
• Stay current on evolving federal security regulations and proactively update AppGate's security program accordingly.

Required Qualifications

• Active Secret clearance; TS or TS/SCI strongly preferred.
• 5+ years of industrial security / FSO experience with a cleared defense contractor or government entity.
• Deep working knowledge of NISPOM (32 CFR Part 117) and DCSA processes.
• Hands-on experience with DISS, NBIS, or equivalent personnel security systems.
• Experience managing an FCL and conducting DCSA self-inspections.
• FSO Certification through DCSA's Center for Development of Security Excellence (CDSE) or equivalent.
• Excellent communication skills — able to translate complex security requirements for non-security audiences including software engineers and executives.
• Bachelor's degree in security management, information assurance, cybersecurity, or a related field — or equivalent professional experience.

Preferred Qualifications

• Prior FSO or security management experience at a software, SaaS, or cybersecurity company.
• Familiarity with CMMC (Cybersecurity Maturity Model Certification) Level 2/3 requirements and C3PAO assessment processes.
• Understanding of cloud security environments (AWS GovCloud, Azure Government) in the context of classified or CUI-handling programs.
• Experience with ITAR/EAR export control compliance, including technology control plans (TCPs).
• OPSEC Coordinator certification or Special Access Program (SAP) security experience.
• Professional certifications: CPP (Certified Protection Professional), PSP, or SAPPC.
• Familiarity with Zero Trust concepts and how they intersect with federal security program requirements — a plus given AppGate's mission.

Compensation

• Base salary range: 90-115k
• Bonus / commission: 10%

AppGate is An Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age or any other federally protected class.