Information Systems Security Officer (ISSO)

About The Position

Requirements

• 3-5 years of relevant experience supporting security and information technology systems.
• Bachelors degreee in a related discipline
• At least Active Secret security clearence (TS/SCI is preffered)
• Proficient in firewall administration, intrusion detection systems, anti-virus software, and data encryption
• In-depth knowledge of information security principles and practices.
• Experience with security compliance and regulatory requirements.
• Strong analytical, problem-solving, and decision-making skills
• Adept at briefing executives and program IPT level leadership.
• Must possess an active DoD 8140/8570.01-M baseline certification at IAM Level II or higher (e.g., Security+ CE, CySA+, CISSP, or CISM).
• Candidates without IAM Level II on day one may be considered if they currently meet IAT Level II and can obtain an IAM Level II certification within an agreed-upon timeframe.

Responsibilities

• Serve as the program Information System Security Officer (ISSO) for several tactical information systems and data analysis enclaves at Naval Undersea Warfare Center Division Newport.
• Oversee day-to-day security operations and enforce security policies among system administrators, developers, and operators.
• Provide cybersecurity expertise to guide the program toward and maintain cyber compliance.
• Act as the primary interface between the program and the Command Information System Security Manager (ISSM) to support ongoing development and testing efforts.
• Manage inventory of enclave computing assets, ensuring devices are compatible with required software and performance requirements.
• Develop and maintain program Standard Operating Procedures (SOPs) and cybersecurity compliance artifacts.
• Enforce the program change management plan, ensuring proposed changes are documented, tested, and integrated into the applicable cybersecurity accreditation.
• Ensure system operations remain in compliance with the Authority to Operate (ATO).
• Perform system and network self-inspections.
• Provide security coordination and review for all system test plans.
• Coordinate with system administrators to ensure accurate and timely remediation of vulnerabilities.
• Ensure system users are current on all required training, access request forms, security clearances, and documentation applicable to their roles.
• Participate in routine program meetings briefing leadership on key areas such as system architecture development, personnel access, and security concerns.