Information Systems Security Officer

Information Systems Security Officer Information System Security Officer (ISSO)Washington, DC MetroAre you a dedicated cybersecurity professional with a passion for safeguarding organizational information assets? We are seeking an experienced Information System Security Officer (ISSO) to lead our cybersecurity compliance and risk management initiatives, ensuring the security posture aligns with federal standards and frameworks.

Key Responsibilities:

Lead and support the entire Risk Management Framework (RMF) lifecycle, including system categorization, control selection, and authorization processes.

Conduct continuous cybersecurity monitoring and assessments, ensuring compliance with applicable standards.

Collect, analyze, and interpret security evidence to support system authorization and security controls validation.

Prepare clear, comprehensive documentation including System Security Plans (SSPs), control implementation, and risk assessment findings.

Facilitate internal and external audits, providing technical expertise and necessary documentation to auditors.

Communicate risk posture, remediation strategies, and security requirements effectively to both technical teams and non-technical stakeholders.

Collaborate with various teams to implement security controls and coordinate incident response and mitigation activities.

Qualifications & Experience:

Minimum of 3 years' experience as an ISSO or in a closely related RMF-focused cybersecurity compliance role. Hands-on experience supporting RMF lifecycle activities, security monitoring, and continuous authorization processes. Proficiency with security frameworks and standards such as

NIST SP 800-37, 800-53, 800-60, FIPS

199, and

CNSSI 1253.

Strong capability to interpret data from security tools and apply NIST guidelines accurately. Experience using eGRC platforms (e.g., Archer) for documentation, risk tracking, and POA&M management. Active Top Secret (TS) clearance is required to ensure access to sensitive information.

Core Skills:

Risk assessment, system categorization, and control implementation. Detailed and clear documentation of security controls and findings. Excellent written and verbal communication skills, with the ability to explain technical issues to diverse audiences. Proven ability to support audit activities and manage compliance initiatives. Why Join Us? Be part of a forward-thinking organization committed to cutting-edge cybersecurity practices. Opportunities for professional growth, certifications, and continuous training. Engage in impactful work that enhances national security and organizational integrity. Competitive salary, comprehensive benefits, and a supportive work environment. If you are a proactive security professional with a strong foundation in RMF and cybersecurity compliance, we invite you to apply and contribute to our mission of maintaining the highest standards of information security....Visit the Employer site for more details