Mid-Level ISSO (Cybersecurity)

TL;DR

Mid-Level ISSO (Cybersecurity): Ensuring compliance with federal cybersecurity requirements and maintaining security documentation for the Enterprise Security Services program with an accent on NIST RMF, FISMA, and FedRAMP compliance. Focus on overseeing security control assessments, managing risk through POA&Ms, and maintaining system authorizations (ATO/ATC).

Location: Must have an active Public Trust clearance and experience in a US federal environment.

Company

hirify.global provides specialized IT and cybersecurity support services for government programs.

What you will do

• Enforce system security requirements and ensure compliance with NIST RMF, FISMA, and FedRAMP.
• Maintain System Security Plans (SSPs), risk assessments, and authorization documentation.
• Lead security control assessments and continuous monitoring activities.
• Conduct vulnerability assessments and develop remediation strategies via POA&Ms.
• Manage the authorization process (ATO/ATC) and produce security reporting for leadership.
• Mentor junior ISSOs and collaborate with technical stakeholders to secure system configurations.

Requirements

• 6+ years of cybersecurity experience, including 3+ years as an ISSO in a federal environment.
• Active Public Trust clearance required.
• Deep knowledge of NIST SP 800-53 and Risk Management Framework (RMF).
• Bachelor's degree in Cybersecurity, IT, or Computer Science.
• Certification such as CISSP, CISM, CISA, or CAP.
• Experience briefing senior leadership on security posture and risks.

Nice to have

• Master's degree in a related field.