Information Systems Security Officer (ISSO)

About The Position

Requirements

• Active TS/SCI clearance
• Experience supporting DoD RMF accreditation processes
• Experience developing ATO packages and security documentation
• Familiarity with NIST SP 800-53, NIST SP 800-37, and DoD RMF
• Experience supporting continuous monitoring and security compliance programs
• Candidates must meet DoD 8140 requirements and obtain a DoD-approved IA baseline certification for ADP-III / IT-III based on the IAT level and CE/Operating System certification within six (6) months of assignment.

Responsibilities

• Lead Risk Management Framework (RMF) implementation for complex DoD information systems.
• Develop and maintain Security Authorization Packages including SSPs, SARs, and POA&Ms.
• Support the authorization process including IATTs, ATOs, and ATCs.
• Integrate RMF requirements into system engineering and acquisition lifecycles.
• Conduct security control assessments and compliance validation.
• Maintain continuous monitoring programs in accordance with NIST 800-137.
• Coordinate cybersecurity activities with system engineers, architects, and Authorizing Officials.
• Support Cyber Operational Readiness Assessments (CORA), IG inspections, and compliance audits.
• Perform STIG assessments and remediation activities.
• Assist with gap analysis and security baseline development.
• Maintain governance documentation including security classification and information disclosure guidance.
• Mentor junior ISSOs and support consistent RMF documentation practices.