Mid-Level ISSO

Description

Information Systems Solutions (ISS) is looking for a Mid-Level ISSO supporting the Office of Naval Intelligence. This role is responsible for ensuring the security and compliance of information systems in accordance with Department of Defense and federal cybersecurity requirements. This role is responsible for ensuring the security and compliance of information systems in accordance with Department of Defense and federal cybersecurity requirements. The ideal candidate will support the implementation of the NIST Risk Management Framework, maintain system security documentation, and assist in continuous monitoring activities to ensure systems remain in a secure and authorized state.

 100% onsite

 Specific duties include, but are not limited to the following:
System Security Management 

· Maintain and update system security documentation (SSP, POA&M, SAR) 

· Ensure systems comply with frameworks like NIST RMF 

· Track vulnerabilities and remediation status 

Assessment & Compliance Support 

· Support security assessments (internal/external audits) 

· Work with assessors during ATO processes 

· Ensure controls from NIST SP 800-53 are implemented 

Continuous Monitoring 

· Review scan results (e.g., ACAS, SCAP) 

· Identify findings and coordinate fixes with system admins 

· Maintain ongoing authorization posture 

Stakeholder Coordination 

· Work with ISSMs, system owners, engineers 

· Translate security requirements into actionable tasks 

Incident Support
• Assist in incident response and reporting for systems you manage
 

Why Work For ISS?
At ISS we pride ourselves on providing an employee-focused and family first environment. Being a small business, we take the time to get to know our employees and have a vested interest in helping them achieve their career goals. We work to schedule regular social gatherings within the company to foster camaraderie. ISS values their employees by providing a comprehensive benefits package that includes a fully vested 401(k) matching program, coverage of family medical deductibles, spot bonuses, and educational assistance to further your career. 

Requirements

Clearance Level
TS/SCI clearance 

 Certifications (IAM Level II)
One of the following:

· CGRC

· CASP

· CISM

· CISSP (or Associate)

· CCISO

 Required Skills
• 6+ years of experience in cybersecurity and equivalent field.
• Bachelor’s degree in a technical subject (or equivalent experience).
• Knowledge and experience with of the NAVINTEL ICD 503 Risk Management Framework (RMF) Implementation Policies/Directives and Dept. of Navy (DON) cybersecurity Policies/Directives.
• Knowledge and experience with automated tools such as Assured Compliance Assessment Solution (ACAS), Center for Internet Security (CIS) Benchmark, and Security Content Automation Protocol (SCAP), and Retina.
• Experience with ISSO responsibilities per SECNAV M-5239.2
• Knowledge and experience of cybersecurity, A&A and RMF documentation development and support