Information System Security Officer Lead

JOB DUTIES AND RESPONSIBILITIES

The ISSO Lead must also have extensive experience with security authorization processes, such as Authorization/Certification & Accreditation (A&A) and Authorization to Operate (ATO), along with the ability to develop associated documentation. A strong understanding of current security tools, multi-tenant cloud environments, hardware/software security implementation, communication protocols, and encryption techniques is essential. Furthermore, the role requires a proven ability to analyze security vulnerabilities, provide comprehensive assessments, and develop effective remediation instructions. Excellent written and verbal communication skills are paramount, enabling the ISSO Lead to present complex security information clearly and effectively to diverse audiences. This experience should be complemented by demonstrated expert knowledge of federal cybersecurity standards and best practices, including FISMA, NIST, and the Risk Management Framework (RMF) methodology.

QUALIFICATIONS

Required Certifications

One or more of the following certifications required

Active Certified Information Systems Security Professional (CISSP)

Active Certified Information Security Manager (CISM)

Other relevant certifications (e.g., CCSP, CEH) may be considered.

Education, Background, and Years of Experience

Bachelor’s degree in computer science, Engineering, STEM, Information Technology, or Cybersecurity

ADDITIONAL SKILLS & QUALIFICATIONS

Required Skills

A minimum of 8 years of experience in information security, with at least 5 years specifically in a lead ISSO or similar leadership capacity on large complex USG programs.

Preferred Skills

Active CISSP

Active Project Management Professional (PMP) certification

Active ISC2 Certified in Governance, Risk and Compliance (CGRC)

Knowledge of FedRAMP

Knowledge of A-123 audit Experience and Expertise with GRC tools such as CSAM

WORKING CONDITIONS

Environmental Conditions

Hybrid role in Reston, VA…