Information System Security Officer

Information System Security Officer

Anywhere

Type: Contract-to-Hire

Category: Security

Industry: Government

Workplace Type: Remote

Reference ID: JN -092025-103788

Date Posted: 09/21/2025

Shortcut: http://careers.eliassen.com/3wx6VH

The Information System Security Officer (ISSO) serves as the principal advisor to system owners on all matters related to cybersecurity compliance, risk management, and operational security. This role is critical in ensuring that systems maintain their Authorization to Operate (ATO) and comply with Departmental and federal cybersecurity standards.

The ISSO will lead efforts across the full lifecycle of the Risk Management Framework (RMF), ensuring systems are secure, compliant, and resilient against evolving threats.

Location: Washington DC

Pay Rate: $60 - $70 / hr

Note: This is a contract-to-hire opportunity. Applicants must be willing and able to work on a W2 basis and convert to FTE following contract duration. For our W2 consultants, we offer a benefits package that includes Medical, Dental, Vision, 401k with company matching, and life insurance.

• Implement and document security controls in alignment with NIST SP 800-53 and the Risk Management Framework (RMF).
• Manage the RMF lifecycle, including security categorization, control selection and implementation, security testing and evaluation, and continuous monitoring.
• Develop and maintain security documentation: System Security Plans (SSPs), Security Assessment Reports (SARs), and Plans of Action and Milestones (POA&Ms).
• Conduct regular security scans, vulnerability assessments, and compliance testing.
• Support internal and external audits by preparing and submitting required documentation and evidence.
• Identify, document, and track system vulnerabilities and coordinate remediation efforts.
• Serve as the central point of contact for system-level cybersecurity issues and inquiries.

Required Qualifications

• 5+ years of experience in an ISSO or equivalent cybersecurity role.
• Strong understanding of NIST RMF, FISMA, and CISA directives.
• Hands-on experience with vulnerability management and risk assessment tools.
• Excellent technical writing, documentation, and reporting skills.
• Ability to work independently and collaboratively in a remote environment.

Preferred Skills

• Experience supporting federal agencies or working in regulated environments.
• Familiarity with cloud security (AWS, Azure, etc.).
• Knowledge of GRC tools and SIEM platforms.

Education Requirements: A bachelor\'s degree is required

Note: The pay range provided in this posting reflects a W2 hourly rate; other employment options may be available that may result in pay outside of the provided range.

W2 employees of Eliassen Group who are regularly scheduled to work 30 or more hours per week are eligible for medical, dental, vision, pre-tax accounts, life and disability insurance, 401(k) with company match, and sick time as required by law in the state/locality.

Please be advised to verify the legitimacy of any open position connected with Eliassen Group. If you have concerns about fraudulent activity, contact InfoSec@eliassen.com.

About Eliassen Group:

Eliassen Group is a leading strategic consulting company for human-powered solutions with over 30 years of experience across technology, risk & compliance, and advisory solutions.

Eliassen Group is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.

Don’t miss our referral program! If we hire a candidate you refer, you may be eligible for a $1,000 referral check!