Information Systems Security Officer (ISSO) - Clearance reqd @ APG, MD

Description
INFORMATION SYSTEM SECURITY OFFICER
ICF is hiring a cleared Information Systems Security Officer. This is a full-time, on-site position located at Aberdeen Proving Ground, MD. Join us in support of the Army Program Executive Office - Intelligence Electronic Warfare and Sensors to assess cybersecurity risks, evaluate and test security controls, and recommend solutions to enhance the organization's security posture. The role includes reporting findings to management, overseeing remediation efforts, and potentially leading technical audit teams to assess the effectiveness of cybersecurity governance, tools, and operations.

1. Perform all ISSO duties and responsibilities in DODI 8500.01, DODI 8510.01, and AR 25-2.
2. Ensure the appropriate operational security posture is maintained for the information system (IS) on multiple security domains and classifications, meeting Intelligence Community (IC), DoD, and Army cybersecurity/information assurance regulations and policies. Provide guidance and oversight to vendors.
3. Develop, review, evaluate, and verify self-testing results to validate enclave security requirements in accordance with applicable regulations and policies for various ISs including Cross Domain Solution Suites (CDSS), Cloud, On-Prem, Tactical, etc.
4. Maintain organizational situational awareness and initiate actions to improve or restore cybersecurity posture of assigned IS.
5. Implement and enforce Army IS cybersecurity policies and procedures, ensuring documentation is current and accessible. Prepare and maintain security plans, instructions, and SOPs.
6. Prepare and maintain Risk Management Framework (RMF) system accreditation packages using tools like eMASS or XACTA, including System Security Plans, Risk Assessment Reports, and other documentation as required.
7. Review vendor RMF BOEs and provide guidance and oversight.
8. Understand DISA Port Protocol and Services Management (PPSM) requirements, and obtain PPSM accounts as needed.
9. Willingness to travel up to 25%.

• Bachelor's Degree plus 7+ years of related experience; or MS degree plus 5+ years of related experience.
• Degree in Computer Science or a related field.
• Active High Level security clearance with SCI and Poly.

• Primary certifications per DoDI 8570.01, such as IAM II, CASP, CISM, CISSP, GSLC, CCISO, HCISPP.
• Linux Certification.

• Experience with DOD-I-8500, DOD-I-8510, ICD 503, NIST 800-53, CNSSI 1253, Army AR 25-2, and RMF security controls.
• Experience in system design, development, and information assurance processes.