Information Systems Security Officer

We are seeking Information Systems Security Officers (ISSO) to join us on a contract being awarded in June of 2025. As the ISSO you will serve on a team that is responsible for the Authorization and Assessment process under the Risk Management Framework (RMF) for new and existing information systems and will be expected to maintain Authority to Operate compliance for all assigned systems.

The work environment is fastpaced and sometimes involves deadline pressures. The nature of the work requires a high degree of teamwork and cooperation with other members of the staff as well as individuals across the Company and Customers. Our program includes easily available process information and support from others with similar positions across the team.

Responsibilities:

• Maintain the appropriate operational security posture for assigned systems programs and/or enclaves
• Provide guidance and technical expertise on all matters that impact or effect the security of the information system
• Assist in the development and execution of an enterprise level continuous monitoring program to minimize security risks and ensure compliance with that program on a routine basis
• Developing updating and submitting the System Security Plan and other required documentation that make up the Security Authorization Package
• Conduct configuration management for securityrelevant changes to software hardware and firmware
• Perform and deliver security impact analyses of changes to the system or its environment of operation
• Assess the effectiveness of system security controls on an ongoing basis to determine system security status
• Maintain and enforce IT security policies and implementation guidelines for customer systems in diverse operational environments
• Provides configuration management for securityrelevant information system software hardware and firmware

Basic Qualification:

• Active TS/SCI with Polygraph
• A Bachelors degree in Computer Science Information Technology Engineering or a related field may be substituted for 4 years experience and 10 years of related work experience in the field of security authorization
• DoD 8570.1 compliant IAM Level I certification such as the CompTIA Security certification. A higherlevel certification such as GSLC CAP CASP CISM and/or CISSP will also be accepted
• A working knowledge of the security authorization processes and procedures as defined in the RMF in NIST SP80037 and familiarity with the ICD503 CNSSI1253 SP80053 etc.
• Knowledge of commercial security tools and their uses
• Experience with hardware/software security implementations
• Knowledge of different communication protocols encryption techniques/tools and PKI and authorization services
• Familiarity with security incident management experience collaborating with Incident Response Teams and able to provide viable recommendations for the resolution or computer security incidents and vulnerability compliance
• Experience creating and presenting documentation and management reports
• Must put forward a professional behavior that enhances productivity and promotes teamwork and cooperation
• Must work well under pressure to meet deadline requirements

Preferred Qualifications:

• Experience working with the XACTA IA Manager
• Highly analytical and effectively able to troubleshoot and prioritize needs requirements and other issues
• Committed to continuous learning and system development because of the constant developing nature of cyberattacks
• Have the ability to quickly learn new concepts data formats and software
• Selfmotivated independent detail oriented responsible team player and exhibit exceptional relationship management skills