Information Systems Security Officer (ISSO)

3 weeks ago Be among the first 25 applicants

This range is provided by CGS Federal (Contact Government Services). Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.

$92,213.33/yr - $125,146.66/yr

CGS is seeking an experienced Information Systems Security Officer (ISSO) with expertise in DIACAP and/or RMF, focusing on security assessment documentation to support Department of Commerce systems and achieve Authorization to Operate (ATO). This full-time role is located at the Herbert Hoover building in Washington, DC, covering full lifecycle Assessment and Authorization (A&A) management within the RMF process, supporting the Government ISSM.

1. Review systems for security weaknesses and recommend improvements.
2. Manage cybersecurity risks at the organizational level.
3. Identify and prioritize organizational risks; maintain a risk registry for leadership review.
4. Provide security guidance and validation using NIST RMF, DoC, and local policies.
5. Recommend configuration management practices for security software, hardware, and firmware, coordinating with ISSM, SCA, and AO.
6. Ensure compliance with vulnerability scanning tools like HBSS or ACAS and manage patching processes.
7. Support security authorization activities, including transition from DIACAP to RMF.
8. Offer cybersecurity expertise on trusted system technologies.
9. Develop solutions for complex cybersecurity problems through research and analysis.
10. Draft and review security assessments, policies, and reports, providing recommendations and feedback.
11. Conduct risk assessments, evaluate thresholds, and score findings.
12. Provide guidance on mitigation strategies and implement security risk solutions.

• Bachelor’s Degree
• At least five years of experience as an IA Analyst, ISSE, ISSO, or similar, with experience in ATO package development and security documentation.
• Experience with eMASS.
• Professional security certifications such as CCNA Security, CySA+, GICSP, GSEC, Security+, SSCP, or higher.
• Proficiency in Microsoft Word and Excel.
• Strong technical writing skills, including industry-standard grammar and structure.
• Ability to multitask effectively in deadline-driven environments.

• CISSP, CASP, or similar certification.
• Master’s Degree in Cybersecurity or related field.
• Strong organizational, analytical, and independent working skills.
• High ethical standards and dedication to quality.

CGS strives to optimize resources and deliver innovative solutions to government challenges, fostering a supportive environment for professional growth. We value honesty, professionalism, and quality, offering comprehensive benefits including health, dental, vision, life insurance, 401k, flexible spending accounts, and paid time off.

We consider all applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.

Explore more opportunities at CGS Job Board or visit our website at CGS Federal. Contact us at info@cgsfederal.com.