Apply for this opportunity

This job application is on an outside website. Be sure to review the job posting there to verify it's the same.

Apply Offsite

Information Security Officer

Job

P3S Corporation

Remote

$71,603 Salary, Full-Time

Posted 3 weeks ago (Updated 2 weeks ago) • Actively hiring

Expires 6/18/2026

See Job Scorecard

Review key factors to help you decide if the role fits your goals.

How is this calculated?

Pay Growth

out of 5

Not enough data

Not enough info to score pay or growth

Job Security

out of 5

Not enough data

Calculating job security score...

Total Score

out of 100

Average of individual scores

Were these scores useful?

Skill Insights

Compare your current skills to what this opportunity needs—we'll show you what you already have and what could strengthen your application.

Job Description

Position:

Information System Security Officer —

ISSO Location:

Onsite/Remote/Hybrid/South Dakota and or Ohio -

TBD Clearance:

Active Secret required

Recommended Level:

Mid/Senior ISSO Reports To:

ISSM / Authorizing Official support chain Position Summary The ISSO will serve as the day-to-day cybersecurity steward for assigned Air Force Financial Management systems within the

DAF FM AO

boundary. The role supports RMF lifecycle execution, ATO package maintenance, continuous monitoring, vulnerability tracking, system security documentation, user access reviews, STIG/IAVA compliance, and incident reporting. The ISSO works under the ISSM and supports the AO/AODR in maintaining compliant, secure, and audit-ready systems. The uploaded SOW specifically requires RMF lifecycle support, authorization artifacts including SSP, RAR/RARS, POA&Ms, eMASS and ITIPS support, vulnerability management, and Secret clearance for

ISSO/ISSM

personnel.

Key Duties The ISSO will:

RMF / Authorization Support AO, AODR, ISSM, system owners, and program offices through all RMF phases. Maintain ATO packages, including SSP, SAR/RAR, RARS, POA&M, control implementation evidence, inheritance documentation, and continuous monitoring artifacts. Update and sustain eMASS and ITIPS records for assigned systems. Ensure systems are operated, maintained, and disposed of in accordance with their authorization boundary and approved security authorization. Continuous Monitoring Conduct periodic control reviews and self-assessments. Monitor control compliance, log review, audit activity, and security-relevant events. Report system security posture, significant changes, anomalies, and risk items to the ISSM. Vulnerability / STIG / Patch Management Support vulnerability scans, risk analysis, mitigation planning, and remediation tracking. Track STIG findings, IAVA/IAVB/IAVT compliance, patch status, and POA&M milestones. Coordinate remediation with system owners, administrators, database teams, and program offices. Use DISA STIGs/SRGs as the baseline source for hardening and compliance validation. Configuration and Change Management Review hardware, software, firmware, and architecture changes for cybersecurity impact. Maintain current hardware/software inventories. Coordinate with the ISSM before changes are implemented. User Access / Account Management Enforce least privilege, need-to-know, privileged-user documentation, and periodic account reviews. Validate cybersecurity awareness and privileged-user training completion. Incident Response Identify, document, preserve evidence, and report cybersecurity incidents. Coordinate with the ISSM, Wing Cybersecurity Office, AFCYBER, and other reporting channels as required. Required Knowledge / Systems RMF under DoDI 8510.01 and Air Force RMF processes. DoDI 8500.01, DoD 8140/8570 transition, AFI 17-101, NIST

SP 800-53, CNSSI 1253, FIPS 199.

MASS, ITIPS, STIG

Viewer, ACAS/Nessus, SCAP, HBSS/ESS, POA&M tracking, vulnerability dashboards. ATO packages, SSPs, SAR/RAR, RARS, POA&Ms, control evidence, continuous monitoring plans.

IAVA/IAVB/IAVT

tracking. Windows/Linux baseline security, network security, privileged access, audit/log review.

Education / Experience

Bachelor's degree in cybersecurity, information technology, computer science, information systems, or related field preferred. 4-7 years of cybersecurity, RMF, IA, ISSO, system security, or DoD compliance experience. Direct Air Force or DoD RMF experience strongly preferred. Experience supporting financial management systems, ERP systems, or mission/business systems preferred.

Certifications Recommended minimum:

Security+ CE, CySA+, GSEC, SSCP, CAP/CGRC, or equivalent DoD 8140-aligned qualification.

Preferred:

CGRC/CAP, CISSP, CISM, CASP+/SecurityX, GSLC, or other DoD 8140-approved certifications. DoD Manual 8140.03 is the current qualification framework for DoD cyberspace workforce roles, and DoD maintains qualification matrices for approved certification/training alignment. "We're an equal opportunity employer. All applicants will be considered for employment without attention to race, color, religion, s ex, s exual orientation, gender identity, national origin, veteran or disability status." www.p3scorp.com

Pay:

$51,098.84 - $75,000.00 per year

Benefits:

401(k) 401(k) matching Dental insurance Employee assistance program Health insurance Life insurance Paid time off Referral program Vision insurance

Education:

Bachelor's (Preferred)

Experience:

cybersecurity, RMF, system security, or DoD compliance: 5 years (Preferred)

ISSO:

5 years (Preferred) • RMF under DoDI 8510.01 and Air Force RMF processes. : 5 years (Preferred) DoDI 8500.01, DoD 8140/8570 transition, NIST

SP 800-53

5 years (Preferred) e

MASS, ITIPS, STIG

Viewer, ACAS/Nessus,:

5 years (Preferred)

SCAP, HBSS/ESS, POA&M

tracking, vulnerability dashboards. : 5 years (Preferred) • ATO packages,

SSPs, SAR/RAR, RARS, POA&Ms:

5 years (Preferred) Windows/Linux, network security, audit/log : 5 years (Preferred)

License/Certification:

• Security+ CE, CySA+, GSEC, SSCP, CAP/CGRC (Preferred) Security clearance: Secret (Preferred)

Work Location:

Hybrid remote in Ellsworth AFB, SD 57706