Information System Security Officer

Information System Security Officer

We are seeking a highly motivated and experienced Information System Security Officer (ISSO) to join our team on a cutting‑edge Department of Defense (DoD) Zero Trust project. As the ISSO, you will play a critical role in planning, implementing, and managing cybersecurity measures to enhance the DoD’s cybersecurity posture through Zero Trust principles.

• Support the integration and adoption of Zero Trust principles, ensuring all systems adhere to DoD cybersecurity mandates and frameworks.
• Maintain information system security policies, standards, and procedures to remain compliant with DoD directives such as RMF, NIST 800‑53, and CMMC.
• Identify, track, and mitigate security risks, facilitate vulnerability assessments and penetration testing, and ensure compliance with DoD security requirements.
• Lead efforts to achieve and maintain system accreditation under DoD RMF guidelines, overseeing security documentation such as SSP, POA&Ms, and related artifacts.
• Oversee continuous monitoring activities, incident response plans, and cybersecurity assessments.
• Collaborate with system engineers, administrators, developers, and leadership to develop and apply security controls aligned with Zero Trust elements (identity, endpoint, application, network, and infrastructure).

• 5+ years of experience in information assurance, cybersecurity, or serving as an ISSO on DoD or federal projects.
• Experience developing and managing system security documentation, including SSP, SAP, and POA&Ms.
• Knowledge of DoD RMF, NIST SP 800‑53 and 800‑207, and other cybersecurity frameworks.
• Experience with tools supporting Zero Trust implementation (identity management, endpoint detection, security analytics solutions).
• Experience conducting security compliance reviews and audits, and managing continuous monitoring solutions.
• Knowledge of IAM, MFA, segmentation, encryption techniques within Zero Trust architectures.
• TS/SCI clearance required.
• Bachelor’s degree in Cybersecurity, Computer Science, or related field.

• Experience with cloud service providers such as AWS and DoD Cloud, applying security controls for cloud-based systems.
• Experience working with Dev Sec Ops  pipelines and security automation tools.
• Experience in network security, firewalls, or access controls focused on Zero Trust principles.
• Knowledge of current and emerging DoD policies, standards, and guidance on cybersecurity, including DoD Zero Trust Strategy and CMMC.
• Industry‑recognized certifications such as CISSP, CISM, CISA, CCSP, CASP+.

The projected annualized compensation range for this position is $112,900 to $257,000, based on various factors such as location, education, skills, and experience.

All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, local, or international law.