Information System Security Officer (ISSO)

Lumen Technologies•Herndon, VA

15h•Onsite

About The Position

The Sr. Lead Information Security Engineer will serve as an Information System Security Officer (ISSO) and is a key member of the Industrial Security team supporting Lumen Public Sector, responsible for executing cybersecurity compliance activities across a range of government contracts. This role requires full lifecycle execution of all seven phases of the Risk Management Framework (RMF) process in accordance with FISMA and DoD policies. The engineer develops and maintains essential RMF documentation—including System Security Plans, Security Control Traceability Matrices, Plans of Action and Milestones, Standard Operating Procedures, and Continuous Monitoring Plans—while also managing vulnerability tracking and resolution, conducting continuous monitoring activities, creating security policies, and supporting all related compliance efforts. Regular collaboration with Lumen program teams and government customers is a central part of the position. A successful candidate brings strong communication skills and the ability to present complex cybersecurity issues to both technical and non‑technical audiences. The role requires someone who can work independently as well as lead teams in developing and executing security strategies. Candidates should maintain broad technical knowledge of current and emerging technologies used within both corporate and government infrastructures. Strong organizational abilities, attention to detail, and effective problem‑solving skills are essential. As a senior member of the Industrial Security team, the engineer is also expected to mentor and guide junior team members. A candidate must also be willing to visit government locations on a weekly basis to collaborate with government customers.

Requirements

8+ years or experience performing cybersecurity, certification & accreditation (C&A), or assessment & authorization (A&A) related activities
Excellent oral and written communication skills, collaboration skills, and experience in presenting cybersecurity issues to all levels of management, as well as non-technical staff
Strong work ethic, demonstrated self-starter with the ability to work in a fast paced, team-oriented environment
Uses strong interpersonal skills to build partnerships with stakeholders and peers
TS clearance required
Education: Bachelors or equivalent
Professional cybersecurity certification (CISSP, CISM, GSLC, etc.)

Responsibilities

Perform as an Information Systems Security Officer (ISSO) for government systems
Achieve and maintain ATO (Authority to Operate), as required.
Write System Security Plans (SSP), Plan of Actions & Milestones (POA&M), Continuous Monitoring Plan, Risk Assessments, Privacy Impact Analyses (PIA), and supporting documentation for systems subject to NIST SP 800-53
Lead Security Assessment and Authorization processes and procedures
Manage cybersecurity audits by federal departments/agencies, including third party auditors
Develop and complete continuous monitoring reports and briefings
Interface with appropriate government agencies, company management and employees, customers, vendors, and suppliers to ensure understanding of and compliance with security requirements
Review vulnerability and compliance scan results (Nessus, Qualys, etc), work with team members to resolve vulnerabilities, and track ongoing vulnerability status and remediation
Conduct periodic reviews to ensure compliance with established policies and procedures
Investigate and document cybersecurity incidents, as well as provide protective and corrective measures in response to such incidents
Report all cybersecurity incidents to the program Information Systems Security Managers (ISSM) through reports and briefings
Participate in the change management process to ensure changes to software, hardware, and firmware do not adversely impact the security of an environment
Develop, facilitate, and present information security awareness and security training on various customer and corporate security policies
Coordinate and participate in business development opportunities related to cybersecurity compliance to include evaluating Requests for Information (RFI) and Requests for Proposal (RFP) from government customers and documenting cybersecurity responses
Recommend security best practices and system configuration standards

Benefits

Lumen offers a comprehensive package featuring a broad range of Health, Life, Voluntary Lifestyle benefits and other perks that enhance your physical, mental, emotional and financial wellbeing.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume