Senior Information System Security Officer (ISSO)
Embedded Alliance, Inc.
Gaithersburg, United States of America
30 days ago
Role details
Contract type
Permanent contract Employment type
Full-time (> 32 hours) Working hours
Regular working hours Languages
English Experience level
Senior Compensation
$ 190KJob location
Gaithersburg, United States of America
Tech stack
Xacta
Disaster Recovery
Information Security Management
Zero Trust Network Access
Software Vulnerability Management
Patch Management
Nessus
Splunk
ServiceNow
Vulnerability Analysis
Job description
- A&A Leadership: Initiate, coordinate, and execute all Risk Management Framework (RMF) and A&A renewal activities in direct coordination with NGA Designated Authorization Officials (DAO/DAOR).
- Vulnerability Management: Oversee scanning, analysis, and remediation verification across three distinct classification enclaves using Nessus and Tenable-ACAS.
- Documentation & Records: Develop and maintain critical security artifacts-including System Security Plans (SSPs), Security CONOPS, IT Disaster Recovery (ITDR) plans, and POA&Ms utilizing XACTA-360 and ServiceNow.
- Cross-Functional Collaboration: Partner with System Engineers, Administrators, Lab Teams, and leadership to drive security process improvements and evaluate secure software/hardware integrations.
- Incident & Tasking Response: Rapidly address cybersecurity notices, orders, and directives in accordance with NGA vulnerability and patch management processes.
- Architecture Evaluation: Assess the effectiveness of defense-in-depth architectures and Zero Trust policy implementations against emerging threats.
Requirements
Do you have experience in Vuls?, Do you have a Bachelor's degree?, * Clearance: Active TS/SCI with Polygraph (US Citizenship required).
- Education & Experience: Bachelor's degree with 8-12 years of relevant cybersecurity/information assurance experience.
- Framework Expertise: Proven understanding and hands-on application of ICD-503 and the Risk Management Framework (RMF).
- Technical Toolset: Experience with XACTA/XACTA-360, ACAS, Nessus, and SPLUNK., * Direct experience supporting the National Geospatial-Intelligence Agency (NGA) or broader Intelligence Community (IC).
- Active CISSP or CISM certification.
- 3+ years of deep-dive experience analyzing and resolving vulnerability scan results using Tenable Security Center / Nessus.
Benefits & conditions
Pulled from the full job description
- Referral program
- Parental leave
- 401(k)
- Health insurance
- Retirement plan
- 401(k) matching
- Paid time off, We combine a mission-first mindset with agile innovation. Here, you aren't just a number you are a critical asset to national security. We offer competitive compensation, a collaborative culture, and the opportunity to work on the cutting edge of sustainment., * 401(k)
- 401(k) matching
- Dental insurance
- Health insurance
- Life insurance
- Paid time off
- Parental leave
- Referral program
- Retirement plan
- Vision insurance