Cybersecurity Analyst / Information Systems Security Officer (ISSO)
Accelint · San Diego, CA · 1 wk ago
Information TechnologyFull-time
Duties & Responsibilities
- Manage RMF and A&A activities, including system categorization, security control assessments, authorization package development, continuous monitoring, and accreditation support.
- Conduct cybersecurity risk assessments, vulnerability analysis, remediation planning, and compliance reviews to ensure adherence to NIST, DoD, and DON security requirements.
- Develop and maintain cybersecurity documentation, policies, procedures, authorization artifacts, and compliance records within eMASS, VRAM, DADMS, and DITPR-DON.
- Collaborate with engineers, ISSMs, program managers, ISEAs, and government stakeholders to integrate cybersecurity requirements into system design, development, testing, fielding, and sustainment activities.
- Support configuration management, change control, software baseline management, vulnerability scanning, and modernization initiatives to maintain authorization readiness and mitigate cybersecurity risks.
- Prepare status reports, risk assessments, and recommendations for leadership while driving process improvements and automation initiatives that enhance RMF execution and cybersecurity program efficiency.
Required Qualifications
- Bachelor's degree in Cybersecurity, Information Assurance, Information Technology, Computer Science, Engineering, or a related field.
- 8+ years of cybersecurity, RMF, Information Assurance, or A&A experience supporting DoD or government programs.
- Experience supporting RMF and A&A activities using eMASS and related cybersecurity compliance tools.
- Strong knowledge of NIST 800-series publications, DoD RMF guidance, vulnerability management, and cybersecurity compliance requirements.
- Active Secret Clearance.
- Strong communication, analytical, and documentation skills with the ability to engage both technical and non-technical stakeholders.
Preferred Qualifications
- Current DoD 8570/8140 certification (Security+, CISSP, CAP, CASP+, or equivalent).
- Experience supporting Department of the Navy, NAVWAR, SPAWAR, or other DoD cybersecurity programs.
- Familiarity with VRAM, DADMS, DITPR-DON, Configuration Management, Continuous Monitoring, Security Control Assessments, and vulnerability management programs.
- Experience supporting cybersecurity process improvement, automation, system integration, testing, and fielding efforts.