Information Systems Security Officer

Modern Technology Solutions IncAlexandria, VA
$90,000 - $150,000Onsite

About The Position

Modern Technology Solutions, Inc. (MTSI) is hiring an Information Systems Security Officer (ISSO) in Alexandria, VA. Qualified candidates must have an active TS/SCI and already be read on a Special Access Program (SAP). This role involves performing day-to-day maintenance of systems, technical security assessments, identifying vulnerabilities, and ensuring compliance with Information Assurance (IA) standards and regulations. The ISSO will also be responsible for writing authorization and accreditation (A&A) documentation, enforcing security requirements for external systems, and supporting security planning and risk management for client systems and programs. The position requires interaction with technical team members from multiple organizations and identifying overall security requirements for handling MTSI and client data. The ISSO will perform system or network designs encompassing multiple enclaves with differing data protection/classification requirements, recommend system-level security solutions, and ensure users have the necessary clearances and authorizations before granting access. Periodic reviews of information systems for compliance with security authorization packages, as well as performing IS auditing, patching, maintenance, and scanning based on evolving threats and customer requirements, are key functions. The role also includes assessing changes to IS through self-inspections and ensuring corrective actions are taken for identified findings and vulnerabilities. A working knowledge of IS functions, security policies, technical security safeguards, and operational security measures is essential. Experience with DISA Security Technical Implementation Guide (STIG) implementation and coordinating with security managers to define and maintain information security policies and procedures are also required. The ISSO will implement policies for responding to security incidents and investigating/reporting security violations.

Requirements

  • 5 years of experience in Information Assurance OR 5-8 years of experience in IT with a heavy emphasis on systems administration.
  • Experience with Linux Operating System (RedHat Enterprise Linux)
  • In-depth knowledge of Microsoft Windows OS (client and server).
  • Experience with A&A documentation and system authorization artifacts.
  • Knowledge of federal security requirements and mandates (e.g., RMF, JSIG, Federal Information Processing Standards (FIPS), National Standards of Information Technology (NIST)).
  • Experience with security architecture, firewalls, and network access.
  • Experience with risk managed downloads, IS sanitization and destruction, PEDs, contaminations, incident response, virus scanning, privileged user access, and hardware/software configuration management.
  • Excellent oral and written communication skills.
  • Strong organizational skills and ability to manage multiple tasks concurrently.
  • Excellent time management, scheduling, and organizational skills.
  • Ability to work well independently as well as follow detailed instructions for completing tasks.
  • Must be a team player and be able to work within all levels of a project team.
  • Active TS/SCI security clearance
  • Read onto a Special Access Program (SAP)

Nice To Haves

  • Experience using security hardening, collection and assessment tools (e.g. SCC, Nessus, Splunk, etc.).
  • Strong Microsoft Windows background with some knowledge of UNIX/LINUX.
  • Knowledge of various computer software applications, hardware platforms, networking components and LAN/WAN architecture.
  • Familiarity with security procedures while working in a SCIF/SAPF environment.
  • Experience working with Defense Counterintelligence and Security Agency (DCSA).
  • Experience with eMASS.
  • Bachelor’s degree in Computer Science, Information Technology, Information Security, or a related field.

Responsibilities

  • Perform day-to-day maintenance of systems, including auditing and patch management.
  • Perform technical security assessments of complex systems.
  • Identify points of vulnerability, non-compliance with established Information Assurance (IA) standards and regulations, and recommend mitigation strategies.
  • Apply knowledge of IA policy, procedures, and workforce structure to implement secure networking, computing, and enclave environments.
  • Write authorization and accreditation (A&A) documentation and ensure the systems are operated and maintained in accordance with these security plans.
  • Enforce the design and implementation of trusted relationships among external systems and architectures.
  • Support security planning, assessment, risk analysis, and risk management for client systems and programs.
  • Interact with technical team members from multiple organizations in a diversified, team environment.
  • Identify overall security requirements for the proper handling of MTSI and client data.
  • Perform system or network designs that encompass multiple enclaves to include those with differing data protection/classification requirements.
  • Recommend system-level solutions to resolve security requirements.
  • Ensure all users have the requisite security clearances, authorizations, need-to-know, and are aware of their security responsibilities before granting access to client systems.
  • Conduct periodic reviews of information systems to ensure compliance with the security authorization package.
  • Perform key functions (above) and other security-related tasks as directed on multiple systems, at multiple sites, or for multiple clients.
  • Schedule, perform and maintain records of required IS auditing, patching, maintenance, software/hardware changes, and scanning based on evolving threat/vulnerabilities and customer compliance requirements.
  • Assess changes to an IS by performing periodic self-inspections, tests, and reviews of the IS program to ensure that systems are operating as authorized/accredited and that conditions have not changed; ensure corrective actions are taken for identified findings and vulnerabilities.
  • Maintain a working knowledge of IS functions, security policies, technical security safeguards, and operational security measures.
  • Experience working on DISA Security Technical Implementation Guide (STIG) implementation across multiple operating systems and applications.
  • Coordinate with Information Systems Security Manager, Facility Security Officer (FSO) and Contractor Program Security Officers (CPSO) to define, implement and maintain information security policies, strategies, and procedures.
  • Implement policies and procedures for responding to security incidents, and for investigating and reporting security violations and incidents.

Benefits

  • Full range of medical, financial, and other benefits, dependent on the position offered.
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service