Senior Level ISSO

About The Position

Requirements

• TS/SCI clearance
• CISM, CISSP (or Associate), or CCISO certification (IAM Level III)
• At least 7 years of experience in cybersecurity and equivalent field.
• Bachelor’s degree in a technical subject (or equivalent experience).
• Knowledge and experience with the NAVINTEL ICD 503 Risk Management Framework (RMF) Implementation Policies/Directives and Dept. of Navy (DON) cybersecurity Policies/Directives.
• Knowledge and experience with automated tools such as Assured Compliance Assessment Solution (ACAS), Center for Internet Security (CIS) Benchmark, and Security Content Automation Protocol (SCAP), and Retina.
• Experience with ISSO responsibilities per SECNAV M-5239.2
• Knowledge and experience of cybersecurity, A&A and RMF documentation development and support

Responsibilities

• Oversee security posture for multiple systems or enclaves
• Lead ATO packages end-to-end
• Act as primary security authority for assigned systems
• Interpret and apply NIST RMF at a strategic level
• Tailor controls from NIST SP 800-53 based on system risk
• Advise Authorizing Officials (AOs)
• Assess risk and recommend acceptance or mitigation
• Make judgment calls on POA&M prioritization
• Balance mission vs security requirements
• Guide to junior and mid-level ISSOs
• Review and approve security documentation
• Set standards and best practices
• Work with engineers, architects, and leadership
• Influence system design for security (shift-left mindset)
• Participate in architecture reviews
• Lead audits and represent the system/program to inspectors
• Handle high-level findings and responses
• Direct response efforts and ensure proper escalation/reporting

Benefits

• fully vested 401(k) matching program
• coverage of family medical deductibles
• spot bonuses
• educational assistance