Information System Security Officer (ISSO) / Space Communications

About The Position

Requirements

• Education and Experience - degree in Cybersecurity, Information Technology, Computer Science, Mathematics or a related technical field and related experience as follows: MS & 7 yrs, BS & 10yrs, AS & 12 yrs.
• In lieu of a degree - HS diploma/GED, 14 years of experience, and a professional certification such as CISSP, CAP, CISM, or Security+ may be considered.
• 4+ years of experience in an ISSO, cybersecurity compliance, or RMF-focused role supporting federal information systems.
• Experience managing or maintaining System Security Plans (SSPs) and RMF documentation for moderate or high-impact systems.
• Hands-on experience with POA&M management, including coordination with technical teams and federal stakeholders.
• Working knowledge of NIST SP 800-53 Rev. 5, RMF, and federal cybersecurity compliance requirements.
• Experience documenting security control implementations and coordinating control evidence collection.
• Strong written communication skills with demonstrated experience producing formal cybersecurity documentation.
• Ability to work independently while collaborating effectively across technical and government teams.
• Must be able to obtain and maintain a DoD Secret security clearance, which requires U.S. citizenship.

Nice To Haves

• Prior experience supporting NASA, other federal civilian agencies, or space/mission systems.
• Familiarity with Risk-Based Decisions (RBDs) and interaction with Authorizing Officials (AOs) or AO representatives.
• Experience supporting systems with complex boundaries, multiple interconnections, or hybrid environments.
• Understanding of continuous monitoring strategies and annual control assessment processes.
• Familiarity with cybersecurity tools used to support compliance and vulnerability tracking.
• Professional certifications such as CISSP, CAP, CISM, or Security+.
• Strong organizational skills with the ability to manage multiple compliance tasks simultaneously.

Responsibilities

• Serve as the primary contract ISSO responsible for the development, maintenance, and execution of the System Security Plan (SSP) for the NASA Near Space Network.
• Interface directly with the NASA Government ISSO to coordinate cybersecurity compliance activities, resolve findings, and ensure alignment with NASA security policies and RMF expectations.
• Manage and track Plans of Action & Milestones (POA&Ms), including documenting remediation activities, coordinating with technical teams, and supporting POA&M closure efforts.
• Support the preparation, submission, and adjudication of Risk-Based Decisions (RBDs), ensuring risks are clearly articulated, justified, and properly documented.
• Document and maintain security controls allocated to the system from NIST SP 800-53 Rev. 5, including implementation details, control inheritance, and applicable Organizationally Defined Values (ODVs).
• Coordinate with system engineers, ISSEs, and network/security teams to validate technical control implementations and collect evidence for compliance and assessments.
• Support RMF activities including system categorization, control selection, control implementation, assessment support, authorization packages, and continuous monitoring.
• Maintain SSP accuracy by ensuring system architecture diagrams, boundary descriptions, interconnections, and data flows remain current.
• Support internal and external security assessments, audits, and reviews, including providing documentation, responding to findings, and tracking corrective actions.
• Assist with continuous monitoring activities, including annual control reviews, vulnerability tracking, and compliance reporting.
• Provide regular status updates and briefings to Peraton leadership and NASA stakeholders on SSP posture, POA&M status, and risk trends.