×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security

Information System Security Officer; ISSO

Remote / Online - Candidates ideally in
Annapolis, Anne Arundel County, Maryland, 21403, USA
Listing for: St. George Tanaq Corporation
Remote/Work from Home position
Listed on 2026-01-02
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security
Job Description & How to Apply Below
Position: Information System Security Officer (ISSO)

Description

Overview

Tanaq Technical Services (TTS), a division of St. George Tanaq (SGT) Corporation, is an 8(a) Alaskan Native Small Business that specializes in delivering Enterprise Integrated Technology Solutions and Support Services to the Federal Government. TTS’s innovative approach combines proactive strategies, efficient processes and emerging technologies to deliver seamless, integrated services for our clients. TTS prides itself in being Mission Driven, People Focused.

To learn more about us, visit

About the Role

We are seeking an Information System Security Officer (ISSO) to support our federal government customer. The ISSO is responsible for ensuring the secure configuration, operation, and compliance of information systems (IS) within federal government environments. The ISSO plays a critical role in supporting the Risk Management Framework (RMF) lifecycle, maintaining Authority to Operate (ATO) status, and enforcing cybersecurity policies, procedures, and controls in accordance with NIST, FISMA, and agency-specific standards.

This is a hybrid remote position based in the Washington, D.C., Maryland, Virginia (DMV) area that will require some onsite work at the customer’s location. This position is contingent on contract award.

Responsibilities
  • Serve as the primary cybersecurity point of contact for assigned information systems.
  • Implement and manage security controls and procedures in accordance with NIST SP 800‑53, NIST SP 800‑37, and the agency’s cybersecurity framework.
  • Support the system lifecycle (RMF Steps 1–6), including:
    System categorization;
    Security control selection and implementation;
    Security assessment preparation; POA&M tracking and remediation;
    Continuous Monitoring (Con Mon).
  • Coordinate and prepare system documentation including:
    System Security Plan (SSP);
    Security Assessment Report (SAR);
    Risk Assessment Reports (RAR);
    Incident Response Plans (IRP).
  • Conduct regular security reviews, vulnerability assessments, STIG compliance checks, and audit log reviews.
  • Collaborate with system owners, developers, and operations staff to ensure security is integrated into IT projects and daily operations.
  • Monitor, track, and report cybersecurity metrics and compliance status to the ISSM, CISO, or agency stakeholders.
  • Manage user access reviews, account recertification, and system-level security awareness training.
  • Support incident response and investigation efforts when cybersecurity events are detected.
  • Coordinate with external assessors, auditors, and the agency's Authorizing Official (AO) during security evaluations.
Requirements Required Experience and Skills
  • 5–7 years of progressive experience in cybersecurity compliance and systems security in the federal government or DoD sector.
  • Deep understanding of:
    • NIST SP 800‑53, 800‑171
      , and Risk Management Framework (RMF).
    • FedRAMP High and CMMC 2.0 Level 2/3 compliance requirements.
    • POA&M management, vulnerability management tools (e.g., Tenable.sc, Nessus), and audit support.
  • Hands‑on experience with:
    • AWS Gov Cloud/Azure Government security configurations.
    • Secure enclave architecture, boundary defense, incident response, and continuous monitoring.
  • Strong familiarity with ACAS, eMASS, HBSS, STIG Viewer, and SCAP compliance tools.
  • Excellent verbal and written communication skills.
  • Previous experience working at a federal government agency preferred.
  • Ability to pass required Federal background screening / security check including basic and expanded investigations. Ability to obtain and maintain both government clearance and customer approval.
  • Must be legally authorized to work in the United States without the need for employer sponsorship, now or at any time in the future.
Education and Training
  • Bachelor’s degree in Cybersecurity, Computer Science, or Information Systems (Master’s preferred).
  • Professional

    Certifications:
    • CISSP, CAP, or CISM strongly preferred.
    • Security+ CE (baseline DoD 8570 compliance).
Physical Requirements
  • Candidates must reside in the Washington, D.C., Maryland, Virginia (DMV) area.
  • Prolonged periods of sitting at a desk and working on a computer. May need to lift up to 25 pounds occasionally.
Pay Range

The projected annual salary range for…

To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search