Information System Security Officer

Information System Security Officer

We’re looking for an Information System Security Officer (ISSO) responsible for assessing and requesting customer authorization for company‑managed classified endpoints, servers, networks, and security appliances. This involves applying evolving U.S. Government cybersecurity policy and guidance.

The ISSO ensures system, network, and security appliance auditing, virus scanning, and hardware and software configuration management requirements are executed as defined in customer‑approved system assessment documentation and policy. Additionally, the ISSO monitors the activities of program system administrators to ensure all relevant security procedures are followed. The role also includes documenting clear and concise compliance criteria and test cases required to validate compliance with an evolving baseline of cybersecurity requirements and guidance from the National Institute of Standards and Technology (NIST), the Intelligence Community, and the DoD.

• Experience applying security systems concepts, requirements, design development, implementation, and integration to information systems
• Knowledge of Risk Management Framework (RMF), performing system assessment and authorization through a Governance, Risk, and Compliance (GRC) tool
• Knowledge of risk mitigation and selecting and designing security controls for implementation
• Knowledge of incident response and data loss prevention, detection, and response
• Knowledge of NIST and Federal Information Security Management Act (FISMA) requirements for monitoring and reporting
• TS/SCI clearance with a polygraph
• HS diploma or GED
• DoD 8570 IAM Level II Certification

• Experience executing the analysis, design, and implementation of enterprise cybersecurity solutions
• Experience maintaining vulnerability scanning tool compliance and patch management, including ensuring IT staff pushes patches to all systems, maintaining compliance with directives, managing changes to the system, and assessing the security impact of the changes
• Experience engineering and implementing security‑based solutions to further automate and improve the comprehensive security posture of systems and their supporting infrastructure
• Possession of excellent written and verbal communication skills
• DoD 8570 Certification such as CISSP, CISSP‑ISSAP, or CISSP‑ISSEP Certification

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance with polygraph is required.

Salary is determined by location, education, experience, and contract requirements. The projected compensation range is $62,000.00 to $ (annualized USD). This posting will close within 90 days from the posting date.

Our benefits include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work‑life programs, and dependent care. Full‑time and part‑time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen’s benefit programs.

All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, local, or international law.