Information Systems Security Officer

About The Position

Requirements

• Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or a related field. An additional four (4) years of ISSO experience may be substituted.
• 10+ years of experience in a similar Information System Security Officer (ISSO) role
• Strong background with security tools, encryption protocols, and enterprise security technologies.
• Must meet DoD 8570 IAM Level I (or higher) certification requirements. Examples include: CAP, Security+ CE, GSLC, or equivalent.
• TS/SCI with Polygraph
• This position requires access to information that is subject to compliance with the International Traffic Arms Regulations (“ITAR”) and/or the Export Administration Regulations (“EAR”). In order to comply with the requirements of the ITAR and/or the EAR, applicants must qualify as a U.S. person under the ITAR and the EAR, or a person to be approved for an export license by the governing agency whose technology comes under its jurisdiction.
• Please understand that any job offer that requires approval of an export license will be conditional on AeroVironment’s determination that it will be able to obtain an export license in a time frame consistent with AeroVironment’s business requirements.
• A “U.S. person” according to the ITAR definition is a U.S. citizen, U.S. lawful permanent resident (green card holder), or protected individual such as a refugee or asylee. See 22 CFR § 120.15.
• Some positions will require current U.S. Citizenship due to contract requirements.

Nice To Haves

• Ability to manage multiple systems and competing priorities with precision.
• Experience supporting DoD or federal information systems.
• Excellent communication skills for working with system owners, engineers, and leadership.
• Strong understanding of RMF, NIST 800‑53, and related frameworks.

Responsibilities

• Act as the primary Change Manager, controlling and documenting all system modifications.
• Conduct vulnerability assessments and risk analyses to identify and mitigate threats.
• Develop, maintain, and update System Security Plans (SSPs), Risk Assessment Reports, and Security Requirements Traceability Matrices (SRTMs).
• Ensure continuous compliance with DoD, federal, and organizational cybersecurity standards.
• Maintain strict oversight of configuration baselines and change control processes.
• Manage all activities related to Certification & Accreditation (C&A) for assigned systems.
• Perform security impact analysis for every proposed change before implementation.
• Provide expert guidance to system owners and engineering teams on risk reduction strategies.
• Track, prioritize, and validate remediation of findings.

Benefits

• AV offers an excellent benefits package including medical, dental vision, 401K with company matching, a 9/80 work schedule and a paid holiday shutdown.
• For more information about our company benefit offerings please visit: http://www.avinc.com/myavbenefits.
• We also encourage you to review our company website at http://www.avinc.com to learn more about us.