Senior Information Security Engineer

ASRC Federal Technology Solutions is seeking an Information System Security Officer (ISSO) to support cybersecurity governance, risk management, and compliance activities for systems within the Department of Justice – Office of Justice Programs (OJP). The ISSO will support the full RMF lifecycle for both on-premise and cloud-based systems and work closely with system owners, engineers, and the ISSM to maintain authorization and continuous monitoring posture. Key Responsibilities  Support execution of the NIST Risk Management Framework (RMF) across multiple DOJ-OJP systems, including on-premise and cloud-hosted environments Maintain and update System Security Plans (SSPs), POA&Ms, BIAs, contingency plans, and supporting security documentation Track, assess, and remediate vulnerability findings, including coordination with technical teams and validation of corrective actions Support continuous monitoring activities, including review of security controls, account management, audit logs, and security impact assessments Coordinate with system owners, engineers, and ISSMs to support ATO sustainment, audit response, and compliance reporting Utilize GRC and security tools to document risk posture, including log analysis and vulnerability scanning outputs Required Qualifications Bachelor’s degree in Cybersecurity, Information Systems, Computer Science, or a related field 6+ years of experience supporting cybersecurity/IT-related functions Hands-on experience with NIST SP 800-53, FISMA, and RMF documentation Experience supporting DOJ or other federal civilian agencies strongly preferred Ability to obtain and maintain a federal clearance suitable for DOJ systems Preferred Certifications - such as CC/Sec+ Graduate degree