Information System Security Officer (ISSO)
About The Position
BCMC is seeking an experienced Senior Cybersecurity Engineer with strong Certification & Accreditation (C&A) / Information Assurance (IA) experiences to support cybersecurity compliance, risk management, and accreditation activities for federal and DoD information systems. The ideal candidate will have deep expertise in RMF, NIST standards, and system authorization processes, and will serve as a key advisor on security posture and compliance strategy. Place of Performance: Remote within the DC Metro Area. This is mostly Remote but may require travel to Fort Meade, MD for SIPRNet access for sensitive data and information handling related to this position.
Requirements
- Candidate must be U.S. Citizen with at least active DoD SECRET security clearance.
- Bachelor’s degree in Cybersecurity, Information Systems, Computer Science, or related field (or equivalent experience)
- 8+ years of experience in Information Assurance / Cybersecurity / C&A
- Strong experience with RMF and system authorization processes.
- Hands-on experience with NIST 800-53 security controls, RMF Rev 5, and Security documentation (SSP, POA&M, SAR, etc.).
- Must have one or more of the following active certifications: CISSP and/or CISM
- Experience supporting federal agencies or DoD environments.
- Familiarity with tools such as eMASS, DITPR, DITPRs, GRC, and etc.
- Experience with cloud/SaaS security controls and compliances for ServiceNow, Azure, and/or FedRAMP.
- Strong analytical and communication skills.
- Risk management and compliance expertise.
- Strong documentation and reporting skills.
- Ability to lead accreditation efforts independently.
Responsibilities
- Lead Certification & Accreditation (C&A) activities in accordance with the Risk Management Framework (RMF) as the ISSO.
- Develop, maintain, and review authorization packages (e.g., SSP, SAR, POA&M)
- Conduct security control assessments and coordinate remediation efforts
- Ensure compliance with NIST 800-53, NIST 800-37, RMF Rev 5 standard, and applicable federal/DoD policies.
- Support system Authorization to Operate (ATO), Authority to Connect (ATC), and continuous monitoring activities.
- Perform risk assessments and provide mitigation strategies.
- Collaborate with system owners, ISSMs, and stakeholders across programs.
- Support audits, inspections, and security reviews.
Benefits
- Extremely competitive salary
- 95% employer paid for employee medical, dental, & vision coverages
- 100% employer paid for employee life, STD & LTD disability coverages
- 401k with company match and profit sharing
- Flexible Spending Account (FSA) for dependent & health care
- 11 standard holidays & 3 weeks of annual leave
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Number of Employees
11-50 employees
