Information System Security Officer (ISSO)

About The Position

Requirements

• Bachelor’s Degree preferred
• IAT Level II (Security+, GSEC, CCNA-Security, Certified Systems Security Professional (CISSP), or equivalent certification
• Must maintain required cybersecurity certifications in accordance with AFMAN 17‑1303.
• 3+ years of experience in a related field in a DoD environment
• Experience supporting Risk Management Framework (RMF) activities and cybersecurity compliance
• Experience using eMASS for authorization packages, artifact management, and accreditation support
• Vulnerability assessment and risk mitigation analysis
• STIG/SRG implementation and configuration management
• Security audits, assessments, and incident response support
• Information system security and operational security posture management
• Secure system and network design support in DoD environments
• Ability to develop innovative approaches to complex test problems
• Strong attention to quality, adequacy, and completeness of test results and conclusions
• Ability to deliver thorough, timely, and efficient task execution
• Ability to provide clear analysis and recommendations to program test leadership
• Must be a US citizen
• Must have an active Secret clearance

Responsibilities

• Ensure all systems and applications meet DoD and Air Force cybersecurity requirements.
• Protect the confidentiality, integrity, and availability of systems, networks, and data.
• Develop, implement, and maintain cybersecurity programs, policies, procedures, and security tools.
• Support all Risk Management Framework (RMF) authorization and accreditation activities.
• Perform risk and vulnerability assessments on information systems.
• Identify security gaps and recommend mitigation actions.
• Conduct security evaluations, audits, and reviews.
• Support development of system contingency and disaster recovery plans.
• Promote user compliance with cybersecurity policies and training requirements.
• Participate in system and network design efforts to ensure security controls are incorporated.
• Collect, analyze, and preserve digital evidence related to cybersecurity incidents.
• Maintain the operational security posture of assigned IT systems.
• Monitor situational awareness and implement actions to improve cybersecurity resilience.
• Enforce Air Force cybersecurity policies, procedures, configuration guidelines (e.g., STIGs/SRGs), and change management processes.
• Maintain and audit authorized user access documentation.
• Report security incidents or vulnerabilities and support corrective measures.
• Initiate and track exceptions, deviations, or waivers to cybersecurity requirements.

Benefits

• Health Care Plan (Medical, Dental & Vision)
• Retirement Plan (401k, IRA)
• Life Insurance (Basic, Voluntary & AD&D)
• Paid Time Off (Vacation, Sick & Public Holidays)
• Short Term & Long Term Disability
• Training & Development
• Wellness Resources