Sr Information Systems Security Officer(ISSO)

Zel Technologies•Charlottesville, VA

About The Position

The Senior Information Systems Security Officer (ISSO) is responsible for ensuring the security, compliance, and ongoing risk management of information systems operating within local, networked, and cloud-based environments. This role provides senior-level cybersecurity oversight, supports system authorization and continuous monitoring activities, and ensures compliance with federal security regulations, policies, and standards. The ISSO works closely with system owners, engineers, program management, and security stakeholders to protect organizational assets and mission-critical systems.

Requirements

Must be a US citizen.
Bachelor’s degree in Cybersecurity, Information Assurance, Computer Science, Information Systems, or a related discipline.
Current TS/SCI security clearance.
Minimum of 10 years of experience performing ISSO or information systems security functions.
Extensive experience supporting system authorization, accreditation, and continuous monitoring activities.
Strong working knowledge of federal cybersecurity frameworks and standards (e.g., RMF, NIST SP 800-series).
Experience developing, reviewing, and maintaining system security documentation.
Experience conducting security assessments, vulnerability analysis, and risk management activities.
Demonstrated ability to communicate security risks and recommendations to technical and non-technical stakeholders.
Successful background and drug screening.

Nice To Haves

TS/SCI with CI Poly.
Certifications such as CISSP, CISM, CAP, Security+, or equivalent.
Experience supporting classified or sensitive systems.
Experience in cloud, hybrid, or enterprise-scale environments.
Prior experience mentoring security personnel or leading security teams.

Responsibilities

Serve as the senior ISSO supporting information systems across development, test, and production environments.
Implement, maintain, and enforce system security controls in accordance with applicable federal standards and organizational policies.
Support system accreditation and authorization processes, including development and maintenance of security documentation (e.g., SSPs, POA&Ms, SARs).
Conduct continuous monitoring activities, including vulnerability scanning, security assessments, and risk analysis.
Analyze security findings and work with technical teams to develop mitigation strategies and corrective action plans.
Ensure compliance with relevant cybersecurity frameworks and regulations, including RMF, NIST, DoD, or agency-specific requirements.
Review and approve system changes through configuration management and change control processes to ensure security impact is assessed.
Monitor system security posture and respond to security incidents, coordinating with incident response teams as needed.
Provide guidance and oversight to system administrators, engineers, and developers on secure design and implementation.
Lead or participate in security audits, inspections, and assessments conducted by internal or external entities.
Brief leadership on system risk posture, security issues, and compliance status.
Mentor and guide junior security staff and function as a subject matter expert for ISSO-related activities.
Collaborate with Authorizing Officials (AO), Information System Security Managers (ISSM), and program stakeholders to support mission objectives.