Information System Security Officer (ISSO) / Security Engineer (ISSE)

CACI•Aberdeen Proving Ground, MD

6d•Hybrid

About The Position

Join a mission‑driven team securing the technologies that protect our nation. As an ISSO/ISSE supporting the Capability Program Executive for Chemical, Biological, Radiological and Nuclear Defense (CPE‑CBRND), you will play a critical role in safeguarding systems that enable warfighters to operate safely in contested CBRN environments. You will influence next‑generation capabilities—from tactical sensor networks to cloud‑enabled analytic systems—by embedding cybersecurity into every stage of the acquisition lifecycle. This role is ideal for a forward‑leaning cybersecurity professional who wants to shape secure architectures and lead RMF compliance from concept through fielding. Hybrid!

Requirements

Active Secret (Top Secret‑eligible preferred).
3–5+ years of cybersecurity experience supporting RMF, A&A processes, system hardening, and/or systems/cloud engineering within the DoD.
Bachelor’s degree in Cybersecurity, Computer Science, IT, Engineering, or related technical discipline.
DoD 8570/8140 IAM/IAT Level II or III (Security+, CISSP, CASP+, CISM, etc.).
Hands‑on experience with eMASS, ACAS, STIG Viewer, and vulnerability scanning workflows.
Familiarity with NIST SP 800‑37, NIST SP 800‑53, and CNSSI 1253.
Strong ability to translate complex security requirements for diverse technical and non‑technical audiences.

Nice To Haves

Experience supporting CBRN defense programs or tactical C4ISR/CBRN‑related systems.
Understanding of cloud architectures (AWS/Azure GovCloud), containers/Kubernetes, and modern software acquisition pathways.
Prior support to Army or Joint‑Service program offices, including ASA(ALT) or Joint PM structures.

Responsibilities

As an Information System Security Engineer (ISSE) Design, integrate, and test secure system architectures for tactical CBRN sensors, UAS platforms, and medical readiness networks.
Apply DISA STIGs and SRGs across hardware, software, and operating systems to ensure hardened configurations.
Conduct detailed technical vulnerability assessments, code reviews, and automated system scans using ACAS, Nessus, and SCAP tools.
Collaborate with developers to remediate findings using secure DevSecOps practices and engineered security enhancements.
As an Information System Security Officer (ISSO) Lead full RMF lifecycle activities, including A&A package development, to achieve and maintain IATT/ATO approvals.
Develop and maintain RMF documentation in eMASS, including SSPs, POA&Ms, SCA evidence, and continuous monitoring artifacts.
Serve as a key liaison between AOs, SCAs, engineering teams, and program management—ensuring technical requirements align with federal cybersecurity policy.
Oversee ongoing security activities including log reviews, configuration management updates, and continuous monitoring actions.