ISSO Security Clearance

Position: ISSO with Security Clearance
Employer:

Magnus Management Group Clearance:
None

Location:

Honolulu, HI. Telecommute:
On-site Position Type:
Full time, W-2 employee of Magnus Management Group (40 hrs. a week)

Position Overview The Senior Information System Security Officer (Senior ISSO) provides expert‑level cybersecurity leadership supporting a federal government program within the Pacific Region Headquarters. This role ensures the confidentiality, integrity, and availability of federal information systems by leading security governance, advising senior leadership, and overseeing compliance with federal cybersecurity requirements. The Senior ISSO serves as a technical authority, guiding system owners, administrators, and program leadership through the implementation of NIST‑aligned security controls, risk management processes, and enterprise security strategies across mission‑critical federal systems.

Senior‑Level Responsibilities Cybersecurity Leadership & Governance Serve as the primary cybersecurity advisor to federal program leadership, system owners, and technical teams on all matters related to IT security, risk, and compliance. Lead the development, implementation, and continuous improvement of the program’s cybersecurity posture in alignment with federal directives and policies. Oversee the application of NIST SP 800‑series guidance, FIPS requirements, and federal IT security standards across all assigned systems.

Direct the creation, review, and maintenance of security policies, procedures, standards, and governance documentation. Risk Management & Compliance Lead the execution of the Risk Management Framework (RMF) lifecycle, including categorization, control selection, implementation, assessment, authorization, and continuous monitoring. Develop and maintain system security plans (SSPs), POA&Ms, security assessment reports, and other RMF artifacts. Conduct senior‑level risk analyses, recommending mitigation strategies and presenting risk decisions to Authorizing Officials and senior stakeholders.

Ensure compliance with federal IT security baseline policies and all applicable federal cybersecurity requirements. Technical Security Expertise Provide expert guidance on the implementation and monitoring of security controls across Windows, Linux, and hybrid enterprise environments. Oversee the use of enterprise security tools such as Cybersecurity Asset Management, Tenable Security Center, and other vulnerability, configuration, and compliance platforms. Lead the development and validation of contingency plans, backup strategies, and disaster recovery procedures, ensuring alignment with NIST SP 800‑34 and related guidance.

Provide senior‑level expertise in encryption technologies, secure configurations, and data protection best practices. Security Operations & Continuous Monitoring Direct vulnerability management activities, ensuring timely remediation and reporting of findings. Lead incident response coordination with federal cybersecurity teams, providing expert analysis and documentation. Oversee continuous monitoring activities, dashboards, and reporting to ensure ongoing compliance and operational readiness. Documentation, Reporting & Executive Communication Develop high‑quality white papers, technical briefs, and decision documents for senior leadership.

Present complex cybersecurity issues and recommendations to executives, system owners, and cross‑agency partners. Lead security reviews, audits, and assessments, ensuring accurate and complete documentation. Collaboration & Stakeholder Engagement Coordinate with federal CIO offices, cybersecurity leadership, system owners, network administrators, and external partners to ensure a unified security posture. Mentor junior ISSOs, analysts, and technical staff, providing guidance on federal cybersecurity practices and NIST frameworks.

Represent the Pacific Region program in enterprise‑level cybersecurity working groups and governance boards. Required Technical Skills Expert knowledge of US Federal IT security policies, implementation standards, and NIST SP 800‑series and FIPS requirements. Advanced proficiency applying IT security concepts, methodologies, and…