Information System Security Officer (ISSO) - Cybersecurity
About The Position
This position is 100% ON-SITE and does not provide relocation assistance. Candidates must live within 50 miles of Oak Ridge, Tennessee. Applicants must have a current DoD Top Secret security clearance or DOE Q security clearance. Global Engineering and Technology (GET) is seeking qualified applicants for Information System Security Officer (ISSO) in support of the cybersecurity program at a U.S. Department of Energy national security facility. This position requires extensive knowledge of ISSO functions and responsibilities. This is a highly compensated, high-responsibility technical guidance position that is central to our mission's success. The ISSO conducts independent comprehensive assessments of the management, operational, and technical security controls and control enhancements employed within or inherited by an IT system to determine the overall effectiveness of the controls (as defined in NIST SP 800-37).
Requirements
- Current DoD Top Secret security clearance or DOE Q security clearance.
- Firm understanding of NIST SP 800-37 and NIST SP 800-53.
- Demonstrated experience in implementing and maintaining security controls aligned with approved baselines and organizational requirements.
- Demonstrated experience in supporting system authorization activities, including the development and maintenance of security documentation such as System Security Plans (SSPs) and Plans of Action and Milestones (POA&Ms).
- Demonstrated experience in monitoring system security posture and identifying risks, vulnerabilities, and compliance gaps.
- Demonstrated experience in tracking and managing POA&Ms and coordinating remediation activities with system stakeholders.
- Demonstrated experience in assessing the security impact of system changes and supporting configuration and change management processes.
- Demonstrated experience in supporting continuous monitoring activities, including vulnerability management and security reporting.
- Demonstrated experience serving as a security liaison between system teams, cybersecurity operations, and governance bodies.
- Demonstrated experience preparing systems for security assessments, audits, and Authorizing Official reviews.
- Minimum of 5 years of experience as SCA and/or ISSO.
Nice To Haves
- Operational Technology/Industrial Control System experience.
Responsibilities
- Implementing and maintaining security controls aligned with approved baselines and organizational requirements.
- Supporting system authorization activities, including the development and maintenance of security documentation such as System Security Plans (SSPs) and Plans of Action and Milestones (POA&Ms).
- Monitoring system security posture and identifying risks, vulnerabilities, and compliance gaps.
- Tracking and managing POA&Ms and coordinating remediation activities with system stakeholders.
- Assessing the security impact of system changes and supporting configuration and change management processes.
- Supporting continuous monitoring activities, including vulnerability management and security reporting.
- Serving as a security liaison between system teams, cybersecurity operations, and governance bodies.
- Preparing systems for security assessments, audits, and Authorizing Official reviews.
Benefits
- Medical plan options with UnitedHealthcare
- Dental Insurance
- Long-term and Short-term Disability Insurance
- Life Insurance
- AD&D Insurance
- Generous 401(k) match
- Spouse/family coverage option available at a company-subsidized rate.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
Number of Employees
11-50 employees
