Information Systems Security Officer

Seneca Holdings•Huntsville, AL

About The Position

Seneca Global Services, LLC seeks a highly motivated Information Systems Security Officer (ISSO) to join our technical team supporting the National Cyber Range Complex (NCRC). The NCRC plays a critical role in enhancing the resilience of DoD systems and the effectiveness of U.S. cyber operations by delivering full-spectrum test and evaluation, workforce training, and mission rehearsal events. As the NCRC continues to evolve as a best-of-breed cyber range, the ISSO will contribute directly to ensuring secure facilities, tools, and expertise for some of the most demanding test, training, and mission rehearsal requirements in the Department of Defense. As a key member of the cybersecurity team, the ISSO will act as a security liaison across multiple domains—including physical, personnel, information, cyber, operations, Anti-Terrorism/Force Protection, law enforcement, communications, and technical security—while working closely with the Information Systems Security Manager (ISSM) to ensure compliance, readiness, and secure mission execution.

Requirements

Active Top Secret clearance with SCI eligibility.
Bachelor’s degree in Cybersecurity, Information Systems, or related discipline, and/or 8+ years of relevant experience (additional experience may substitute for degree).
Minimum of 5 years of extensive experience in cybersecurity, information assurance, and RMF processes.
DoDD 8140.01 IAT Level II certification or higher.
At least 2 years of experience conducting IT application, system, or network reviews and providing DoD cybersecurity policy and technical guidance.

Nice To Haves

Certifications aligned to DoDM 8140.03 / DoD Cyberspace Workforce Framework.
Familiarity or background with some of the following technologies: CISCO equipment (routing and switching technologies) Zero-trust requirements VMWare (vSphere, vCenter, NSX, ESXi) RHEL (Ansible, Kubernetes, StackRox, OpenShift) AWS / Azure cloud technologies and containerization F5 BIG-IP, Cisco networking, and distributed technologies STIG and IAVA implementation NetApp storage technologies Dell Blade Servers

Responsibilities

Provide direct support to the ISSM on activities such as Assessment & Authorization (A&A), execution of Continuous Monitoring Plans, and facilitation of Security Controls Assessments.
Administer and monitor Risk Management Framework (RMF) steps and activities throughout the system lifecycle to maintain an appropriate security posture.
Implement cybersecurity programs, policies, and procedures for assigned systems.
Maintain working knowledge of current and upcoming events, system functions, policies, safeguards, and security measures.
Serve as a subject matter expert in RMF core concepts and processes.
Coordinate with applicable stakeholders across the enterprise to ensure security compliance and readiness.
Maintain Authorization to Operate (ATO) packages for assigned systems within the designated A&A System of Record (e.g., eMASS, XACTA 360, Keystone).
Review and analyze audit logs (e.g., Splunk, Windows EVTX, Linux syslogs) to detect potential anomalies or threats.
Perform validation checks to ensure CM-approved software and antivirus definitions are installed on assigned systems.
Conduct compliance/vulnerability scans and manual checks to identify and mitigate risks.
Execute ISSO-specific tasks as outlined in program security plans.
Deliver cybersecurity education, training, and awareness to system users as required by the ISSM.