Cybersecurity SME / ISSO- Federal Health

rockITdataArlington, VA
Remote

About The Position

Driven by Innovation and built on Trust, rockITdata is a unique SDVOSB services company that partners with leading commercial healthcare/life sciences organizations on cutting edge innovations - think AI, automation and data transformation. We then bring those commercially tested solutions to government entities to deliver predictable, measurable impact for the American taxpayer and consumer. Join rockITdata as a Cybersecurity SME / Information System Security Officer (ISSO) supporting one of the nation's largest federal healthcare modernization initiatives. In this role, you'll lead cybersecurity compliance, Risk Management Framework (RMF) activities, and security engineering efforts that protect mission-critical healthcare systems and sensitive government information. Working closely with engineering, cloud, infrastructure, testing, and Government security teams, you'll ensure enterprise applications remain secure, compliant, and fully authorized throughout the system development lifecycle. This is an excellent opportunity for an experienced cybersecurity professional who enjoys solving complex security challenges, collaborating across multidisciplinary teams, and helping deliver secure healthcare technology solutions that directly improve services for our nation's Veterans.

Requirements

  • Bachelor's degree in Cybersecurity, Information Assurance, Computer Science, Information Systems, or a related technical discipline.
  • Five (5) years of experience supporting cybersecurity, information assurance, or Information System Security Officer (ISSO) responsibilities within enterprise IT environments.
  • Experience implementing and maintaining the NIST Risk Management Framework (RMF).
  • Experience developing and maintaining ATO packages, SSPs, POA&Ms, and other Federal cybersecurity documentation.
  • Strong knowledge of NIST SP 800-53, FISMA, FedRAMP, Zero Trust principles, and Federal cybersecurity standards.
  • Ability to obtain and maintain a Level 3 Public Trust clearance.

Nice To Haves

  • Experience supporting AWS GovCloud, Azure Government, or other secure cloud environments is preferred.
  • CISSP, CAP, Security+, CISM, or equivalent cybersecurity certification is preferred.
  • Experience supporting VA, VHA, DHA, or other Federal healthcare organizations, health IT, telehealth, or Federal program management is preferred.
  • Excellent analytical, leadership, communication, and problem-solving skills.

Responsibilities

  • Lead cybersecurity activities supporting enterprise healthcare modernization initiatives.
  • Manage Risk Management Framework (RMF) activities throughout the system lifecycle.
  • Develop, maintain, and coordinate Authority to Operate (ATO) documentation and authorization packages.
  • Prepare and maintain System Security Plans (SSPs), Security Assessment Reports (SARs), Plan of Action & Milestones (POA&Ms), and other security documentation.
  • Coordinate security control implementation, assessment, and continuous monitoring activities.
  • Perform security risk assessments and recommend mitigation strategies that reduce organizational risk.
  • Collaborate with engineering, cloud, infrastructure, and development teams to integrate cybersecurity throughout system design and implementation.
  • Support vulnerability management, remediation activities, security testing, and audit readiness.
  • Monitor compliance with NIST, FISMA, VA, and other Federal cybersecurity requirements.
  • Provide cybersecurity guidance to project leadership and Government stakeholders while promoting security best practices across the program.
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service