Sr. Information Systems Security Officer (ISSO)

Sr. ISSO

Employment Type: Full-Time, Experienced

Department: Information Technology

CGS is seeking an Information Systems Security Officer (ISSO) with DIACAP and/or RMF experience, specializing in security assessment documentation, to support Department of Commerce systems and achieve Authorization to Operate (ATO). This position is located at the client site in the Herbert Hoover building, Washington, DC. The scope includes full lifecycle Assessment and Authorization (A&A) management through all 6 steps of the RMF process, supporting the Government ISSM. Responsibilities include conducting security assessments and overseeing information system security activities in accordance with NIST 800.53 standards.

CGS values motivated, skilled, and innovative professionals committed to solving government challenges using cutting-edge technology. We foster a collaborative environment that encourages professional growth through various learning opportunities.

1. Review systems to identify vulnerabilities, recommend improvements, and document upgrades.
2. Manage organizational cybersecurity risks.
3. Identify, prioritize, and maintain a risk registry for escalation to senior leadership.
4. Provide security guidance and validation using NIST RMF, DoC policies, and local security policies.
5. Recommend configuration management practices and coordinate changes with ISSM, SCA, and AO.
6. Ensure compliance with vulnerability scanning tools like HBSS or ACAS and patch management processes such as IAVM.
7. Support security authorization activities, including transitioning from DIACAP to RMF.
8. Offer cybersecurity expertise and develop solutions for complex problems.
9. Research and prepare risk assessment reports, including evaluation and scoring.
10. Provide guidance on mitigation strategies for cybersecurity risks.

• Bachelor’s Degree.
• At least five (5) years experience as an IA Analyst, ISSE, ISSO, or similar role in ATO package development.
• Experience with eMASS.
• Professional security certifications such as CCNA Security, CySA+, GICSP, GSEC, Security+, SSCP, or higher.
• Proficiency in Microsoft Word and Excel.
• Strong technical writing skills.
• Ability to multi-task in a deadline-driven environment.

• CISSP, CASP, or similar certification.
• Master’s Degree in Cybersecurity or related field.
• Strong organizational, analytical, and independent working skills.
• High work ethic and commitment to quality.

CGS aims to simplify and improve government processes through innovative solutions, leveraging technology and skilled personnel. We value honesty, professionalism, and quality, fostering a supportive environment for our employees. We offer comprehensive benefits including health, dental, vision, life insurance, 401k, flexible spending accounts, paid time off, and holiday observance.

Contact us at info@cgsfederal.com or visit our website for more information and to explore job opportunities: https://cgsfederal.com

Salary Range: $118,560 - $171,253.33 per year