More jobs:
Information System Security Officer; ISSO Security Clearance
Job in
Gaithersburg, Montgomery County, Maryland, 20877, USA
Listed on 2026-07-06
Listing for:
Ennoble First
Full Time
position Listed on 2026-07-06
Job specializations:
-
IT/Tech
Cybersecurity, Information Security
Job Description & How to Apply Below
Information System Security Officer (ISSO)
Location:
Gaithersburg, MD Required Clearance: TS/SCI with Polygraph
Employment Type:
Full-Time Regular
Shift: Day Travel:
No Relocation Assistance:
Yes Company Overview We are Ennoble First. The people supporting and securing some of the most complex government, defense, and intelligence projects across the country. We ensure today is safe and tomorrow is smarter. Our work has meaning and impact on the world around us, but also on us, and that's important. Ennoble First is your place. You make it your own by embracing autonomy, seizing opportunity, and being trusted to deliver your best every day.
We think. We act. We deliver. There is no challenge we can't turn into an opportunity.
Position Overview Ennoble First is seeking an Information System Security Officer (ISSO) to support mission-critical intelligence systems within the Analysis Sustainment portfolio. The ISSO will be responsible for managing authorizations and risks related to the processing, storage, and transmission of information while ensuring compliance with government and corporate cybersecurity requirements. The ISSO will support Assessment and Authorization (A&A) activities, vulnerability management, continuous monitoring, security documentation, and risk mitigation efforts while partnering with system owners, administrators, engineers, and government stakeholders to maintain the security posture of critical mission systems.
Primary Responsibilities
* Develops risk mitigation strategies that contribute to the effectiveness, efficiencies, and performance outcomes for strategic projects, program goals, and business processes.
* Must be able to quickly respond to the needs for updates and maintenance of security documentation, especially System Security Plans, Plans of Actions and Milestones (POA&Ms);
Security Impact Assessment for proposed system changes, and Concept of Operations that identify and explain how each system satisfies its assigned security control baselines.
* Maintains system security plans and related configuration records in customer Service (Service Now), XACTA-360 platform, and security management tools.
* Drives necessary security changes through steering groups and control review boards to meet Risk Management milestones.
* Can work independently as well as collaboratively to drive security process improvements, especially to address gaps in meeting customer security requirements and due diligence responsibilities.
* Provides guidance and engages technical teams to implement secure software and hardware processes, government security standards, and industry security best practices.
* Resolves highly complex security problems by applying technical knowledge, conceptualizing, reasoning, and interpretation of requirements.
* Communicates with program leadership and customer stakeholders regarding matters of significant importance to the organization and project.
* Applies in-depth understanding of information security principles, theories, concepts, and their application across a range of programs.
* Develops and maintains security documentation in accordance with NGA, Intelligence Community, DoD, DISA, NIST, and industry standards.
* Initiates and coordinates Assessment and Authorization (A&A) and renewal activities with Designated Authorizing Officials and supporting organizations.
* Addresses Information Assurance and Cybersecurity notices, orders, taskings, and directives in accordance with vulnerability and patch management processes.
* Measures effectiveness of defense-in-depth architectures and Zero Trust implementations against known vulnerabilities.
* Performs security audits and assessments, including creation, tracking, and remediation support for POA&Ms.
* Coordinates with System Administrators and technical teams to remediate vulnerabilities, track findings, and document mitigation activities.
* Updates Security CONOPS and Information Technology Disaster Recovery (ITDR) plans.
* Manages security profiles and implementation activities for systems and services scheduled for Assessment and Authorization.
* Works closely with Systems Engineers, Administrators, ISSMs, security teams, and stakeholders to maintain security plans and associated documentation.
* Maintains records and documentation related to system upgrades, patches, and connectivity configurations.
* Evaluates security solutions and implementation strategies while maintaining the operational security posture of development, integration, and deployed capabilities.
* Provides training and approves user access and identification, authorization, and authentication mechanisms for information systems.
Required Qualifications
* BS degree and 8 to 12 years of prior relevant experience to operate within the scope of responsibilities.
* Active TS-SCI clearance with Polygraph.
* Experience that demonstrates an understanding and application of the ICD-503 and NIST risk management framework.
* Experience developing,…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
Search for further Jobs Here:
×