Information System Security Officer (Cybersecurity)

TL;DR

Information System Security Officer (Cybersecurity): Ensuring the security posture of mission-critical applications and infrastructure across multiple network enclaves with an accent on federal cybersecurity frameworks and cloud security. Focus on managing Authority to Operate (ATO) documentation, conducting risk assessments, and implementing cybersecurity controls in compliance with FISMA and NIST.

Location: On-site in Washington, DC

Company

hirify.global is a federal contractor specializing in national security and intelligence services.

What you will do

• Serve as the principal cybersecurity advisor to system owners and stakeholders.
• Design, analyze, and test information security systems, cloud architectures, and cloud solutions.
• Manage Authority to Operate (ATO) documentation and ensure continuous operational security for assigned systems.
• Perform risk analysis, vulnerability assessments, and security audits using tools like Nessus and Splunk.
• Develop and maintain security documentation including System Security Plan (SSP), Contingency Plan, and POA&M.
• Collaborate with development, platform, and infrastructure teams to resolve security issues.

Requirements

• Top Secret (TS) Clearance with SCI eligibility.
• 3-5 years of professional experience in cybersecurity.
• Extensive experience with federal frameworks: RMF, NIST 800-53, CNSS, and FISMA.
• Experience supporting cloud security in AWS GovCloud, C2S, SC2S, or Microsoft Azure.
• Hands-on experience with GRC tools (Xacta/JCAM) and scanning tools (Nessus, ACSA).
• Hold at least one security certification: Security+, CGRC, CASP, or CISSP.

Nice to have

• Advanced certifications: CISSP, CISM, CAP, or AWS Certified Security – Specialty.
• Experience working in high-side or multi-enclave (U/S/TS) environments.
• Familiarity with Infrastructure as Code (IaC) tools such as Terraform or Ansible.
• Experience with CI/CD pipelines and Agile/SAFe methodologies.