Technical Information Systems Security Officer (ISSO)

Arlington, Virginia

Local Only

Full Time

$130k - $140k

Technical Information Systems Security Officer (ISSO)

The company is looking for creative individuals interested in helping grow something truly unique in our markets. The ideal candidate will have direct experience managing risk for systems containing PII, PCI, and CUI, experience in reviewing 3rd party security assessment reports, and possess strong written and oral communication skills to support customers, internal stakeholders, and public audiences. 

The company is located in Reston, VA and this position will remain 100% remote.
What You Will Be Doing:
  • Exhibit detailed knowledge and experience with NIST Policies, Governance, Security Planning and Architecture, FISMA Compliance, RMF, Incident Analysis, and General Security Best Practices.
  • Communicate, both written and orally, to both technical and non-technical stakeholders.
  • Technical expertise with Nessus Tenable Security and NetSparker reports.
  • Manage systems on both cloud and on premises environment.
  • Perform detailed architecture and technical design reviews on the full stack for vendor solutions. 
  • Oversee and manage relationships with vendors for assigned contractor owned and contractor operated systems, ensuring vendors comply with agency security and privacy requirements.
  • Ensure all systems are operated, maintained and disposed of based on security policies and procedures including but not limited to Assessment & Authorization (A&A).
  • Support the development and maintenance of all security documentation such as the System Security Plan, Privacy Impact Assessment, Configuration Management Plan, Contingency Plan, Contingency Plan Test Report, POA&M, annual FISMA assessment, and incident reports.

Required Skills & Experience:
  • Security+, CISSP, CISM, CISA, or equivalent Security certification, CCSP
  • Seven (7) years of experience in the IT security field
  • Five (5) years of current experience as an ISSO supporting A&A (NIST 800-53) and compliance activities.
  • Three (3) years prior hands-on technical experience as a System Administrator, Security Engineer, or related hands-on technical role.
  • Bachelor’s degree in computer science or a related field, or an additional two years of industry experience.
  • Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information.

Desired Skills & Experience:
  • Strong communications skills to interact with senior managers, junior staff, and business unit (non-technical) customers.
  • Experienced with Cloud technologies and platforms.

Applicants must be currently authorized to work in the United States on a full-time basis now and in the future.
This position doesn’t provide sponsorship.

Posted by: Ashton Corbett