Information Systems Security Officer Lead (Cybersecurity)

TL;DR

Information Systems Security Officer Lead (Cybersecurity): Leading the operational security posture and authorization and accreditation activities for federal information systems with an accent on RMF implementation and FISMA reporting. Focus on strengthening compliance, improving security governance, and ensuring the practical implementation of federal security requirements.

Location: Washington DC

Company

A veteran-owned small business recognized as one of the "Best Places to Work" providing top-tier cybersecurity services to federal customers.

What you will do

• Maintain the operational security posture and manage day-to-day security operations for assigned Information Systems.
• Develop and maintain critical security documentation, including System Security Plans (SSPs), Risk Assessment Reports, and C&A packages.
• Support RMF implementation, authorization and accreditation (A&A) activities, and FISMA reporting.
• Provide configuration management for security software, hardware, and firmware, and lead Change Control Board meetings.
• Use MITRE ATT&CK to communicate monitoring gaps and inform remediation recommendations.
• Provide leadership for ISSO processes and prepare briefings for program leadership and stakeholders.

Requirements

• Secret Clearance (Interim) required.
• CISSP certification is a requirement for consideration.
• 7–10 years of experience in cybersecurity assurance.
• Deep expertise with NIST RMF, NIST SP 800-53, STIGs, and SCAP Compliance Checker.
• Proven experience leading the A&A process to achieve ATO/ATC objectives.
• Knowledge of Federal DevSecOps frameworks and IT security principles (firewalls, encryption, DMZs).

Culture & Benefits

• 100% of medical premiums covered by the company.
• 401k program with 100% company match on the first 4%.
• 3 weeks of PTO starting plus 11 paid holidays annually.
• Monthly reimbursement for cell phone and home internet costs.
• Investment in training and certifications to broaden technical skills.
• New business incentive programs and contribution incentives for white papers and blogs.