Information System Security Officer (ISSO)
Job Description
Draft, maintain, and update Assessment & Authorization (A&A) packages and artifacts for Enterprise Mission Assurance Support Service (eMASS), and implement system-level Cybersecurity (CS) controls per MSC, Navy and DoW policies.
Review and analyze Assured Compliance Assessment Solution (ACAS) vulnerability scans, monitor and assist in reporting compliance with Information Assurance Vulnerability Alerts (IAVAs) and other downward directed taskings, and coordinate directly with system and network administrators for prompt patching and remediation.
Apply DoW Security Technical Implementation Guides (STIGs), author and manage Plans of Action and Milestones (POA&Ms) to resolve outstanding security deficiencies, and support RMF continuous monitoring.
Required Technical Skills & Qualifications
- Dedicated Cybersecurity Experience: Minimum of 3–5 years of direct, hands-on experience explicitly focused on information assurance, system security, and managing RMF workflows.
- Framework Mastery: Deep understanding of DoW Risk Management Framework (NIST SP 800-37 / 800-53) and practical application of Security Technical Implementation Guides (STIGs).
- Security & Compliance: Understanding of secure data handling practices and adherence to strict impact level operational frameworks (such as IL5 environments).
Required Clearance and Certifications
- Active Secret Clearance
- CompTIA Security+ CE, CAP, CISM, or equivalent
Pay
The anticipated salary range for this role is $90,000 to $105,000 annually.