Information Systems Security Officer (ISSO)

About JYG Innovations

JYG Innovations (JYG) is a professional solutions and services company focused on providing innovative and exceptional service in the Defense, State/Local and Commercial sectors. With a primary focus on IT Solutions, Cyber Security, Research and Analysis, and Medical/Clinical Staffing, JYG continues to receive exceptional customer satisfaction surveys due to the outstanding technical expertise and performance of its employees and strategic partners.

Job Title: Information Systems Security Officer (ISSO)

Location: Proximity to Wright-Patterson AFB (Dayton, OH) or Gunter AFB (Montgomery, AL) is preferred to support mission requirements; however, qualified candidates from other locations will also be considered.

Employment Type: Full Time, Remote

Targeted Start Date: 23 June 2025

Job Description:

The Information Systems Security Officer (ISSO) will provide comprehensive cybersecurity support for applications within the Department of the Air Force's Business and Enterprise Systems (BES) Directorate. This includes ensuring the appropriate operational security posture is maintained for applicable BES applications.

Key Responsibilities:

• Implements and enforces all Air Force (AF) cybersecurity policies, procedures, and countermeasures.

• Completes and maintains required cybersecurity certifications in accordance with DAFMAN 17-1305.

• Ensures software, hardware, and firmware comply with applicable security configuration guidelines (e.g., Security Technical Implementation Guides [STIGs], Security Requirements Guides [SRGs]).

• Assists mission applications through the Risk Management Framework (RMF) Authorization to Operate (ATO) process.

• Coordinates with the Information System Security Manager (ISSM) to initiate protective or corrective actions when security incidents or vulnerabilities are identified.

• Reports security incidents or vulnerabilities to the system-level ISSM and wing cybersecurity office in accordance with AFI 17-203, Cyber Incident Handling.

• Initiates and manages exceptions, deviations, or waivers to cybersecurity requirements.

• Develops and maintains cybersecurity documentation, including but not limited to:

• System Security Plan (SSP)

• Incident Response Plan (IRP)

• Information System Continuous Monitoring (ISCM) Plan

• IT Contingency Plan (ITCP)

• Conducts STIG reviews, provides remediation recommendations, and documents test results.

• Ensures configuration management procedures are followed and changes are approved prior to implementation.

• Utilizes cybersecurity tools (e.g., Nessus, Checkmarx) to analyze system vulnerabilities and interpret results.

• Provides guidance, oversight, and subject matter expertise on the security posture of Department of Defense (DoD) Information Systems.

• Performs routine project tasks related to specialized cybersecurity challenges.

• Manages eMASS security control test results and associated documentation.

• Oversees the development of RMF artifacts aligned with NIST security control families

Required Qualifications:

• Ability to obtain and maintain a Secret Clearance

• Security+ CE, CISSP, CISM, or other DoD 8140-intermediate certification required.

• 5+ years of experience in cybersecurity, with at least 2 years supporting DoD or federal systems.

• Experience with cloud-based environments (AWS, Azure, etc.), preferably in a DoD context.

Preferred Qualifications:

• Prior experience supporting Department of Defense (DoD) government customers.

• Hands-on experience using the Enterprise Mission Assurance Support Service (eMASS) platform.

• Familiarity with Atlassian tools, including Confluence and Jira, for collaboration and project tracking.

• Previous work performed under the Civil Engineer Information Technology Authorizing Official (CE IT AO) is advantageous.

• Experience supporting Authorization to Operate (ATO) processes in Amazon Web Services (AWS) cloud environments.

• Background in information security, including risk assessment, compliance, or cybersecurity operations.

JYG Innovations is committed to hiring and retaining a diverse workforce. JYG Innovations is an equal opportunity/affirmative action employer and does not discriminate on the basis of race, color, creed, sex, national origin, religion, age, disability, pregnancy or veteran status. We welcome the employment of women, minorities, veterans and individuals with disabilities in our workforce. If you need special assistance, please contact our Human Resources Department. Interested parties may view our Affirmative Action Plan for Veterans and Individuals with Disabilities by contacting the Human Resources Department. JYG Innovations participates in E-Verify.