Information System Security Officer (ISSO)
About the role
The Information System Security Officer (ISSO) will lead a team to develop, manage, and maintain information system security Assessment and Authorization (A&A) packages. This includes supporting the planning, executing, and monitoring of the seven-step RMF process for customers.
Responsibilities
- Create, manage, and maintain A&A packages including System Security Plans (SSPs), Security Control Traceability Matrices (SCTMs), Plans of Action and Milestones (POA&Ms), and other artifacts.
- Support the entry and maintenance of data into information system security systems of record, such as eMASS or Xacta.
- Drive cybersecurity activities throughout the systems' life cycle, ensuring proper hardening and security analysis to protect Confidentiality-Integrity-Availability (C-I-A).
- Brief ISSMs/SCAs/AOs on the Cyber posture of the information system.
- Manage and implement Continuous Monitoring activities, including periodic reviews of controls, audits, vulnerability scans, and penetration test reports.
- Develop and maintain POA&M to compile and track system vulnerabilities, mitigation efforts, remediation, and closures; provide fix actions and compensating controls.
- Perform POA&M maintenance, including reviews and stakeholder briefings as necessary.
Requirements
- Experience leading a team of Cyber individuals
- 5+ years of relevant Cyber experience
- Experience assessing technical environments and translating implemented security controls into clear NIST SP 800-53 control narratives and supporting Authorization to Operate (ATO) documentation
- Cloud Platform familiarity with at least one service offering from AWS, Azure, or Google GCP
- Experience as an RMF Engineer, ISSO, and/or information assurance engineer
- Hands-on eMASS or Xacta experience completing full system lifecycle activities
- Experience with NIST 800-53 Rev5 and CNSSI 1253
- Experience with Air Force risk management policies/procedures, to include DODI 8510.01, AFI 17-101, Fast Track ATO Handbook & AF Continuous ATO Playbook
- Ability to clearly articulate ideas for executive level consumption
- Ability to use prior experience and knowledge to address new situations; especially during interactions with clients
Qualifications
- B.A. or B.S. in Information Security, Computer Science, or related discipline; or 3 years of equivalent industry experience
- US Citizenship and hold a TS/SCI security clearance
Benefits
The salary range for this position is estimated to be between $140,000.00 - $160,000.00, commensurate on experience and technical skillset.
We are proud to be an Equal Opportunity Employer. We are committed to creating a diverse environment and encourage applications from all qualified individuals.
In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification form upon hire.
We are strictly looking for direct, full-time W2 employees. We do not engage with third-party staffing agencies, C2C, or 1099 independent contractors for this role.