Information Systems Security Officer, Staff

AMERICAN SYSTEMS is an employee-owned federal government contractor supporting national priority programs through our strategic solutions in the areas of Information Technology, Test & Evaluation, Program Mission Support, Engineering & Analysis, and Training.

 

We are seeking an Information System Security Officer (ISSO) to provide technical and programmatic Information Assurance support for customers in support of network and information security systems. This role is responsible for independently executing day-to-day information assurance and cybersecurity compliance activities for assigned systems, including security documentation, vulnerability assessment support, audit readiness, and implementation of security requirements.

The ISSO will support certification and accreditation efforts, conduct security assessments, develop required security documentation, evaluate compliance with applicable laws and regulations, and recommend improvements to strengthen the organization’s cybersecurity posture. The ideal candidate will be a strong communicator who can effectively partner with technical and program stakeholders, facilitate discussions, and support coordination across the security lifecycle.

.

• →Supports and implements security requirements within the organization’s business processes and system environments.
• →Prepare security documentation using accepted frameworks and guidelines, including RMF, Xacta, and related accreditation processes.
• →Lead and facilitate meetings, briefings, and cross-functional discussions with technical and non-technical stakeholders to communicate security status, risks, vulnerabilities, assessment results, and remediation progress, and to drive alignment and timely resolution of identified issues.
• →Develop and maintain Security Test and Evaluation (ST&E) plans, ensuring the implementation of Security Technical Implementation Guides (STIGs), and Plan of Action and Milestones (POA&Ms).
• →Provide certification and accreditation support, including developing, updating and maintaining security plans (SPs) and contingency plans.
• →Conduct complex risk assessments and vulnerability assessments and recommend mitigation strategies.
• →Analyze policies, procedures, and system implementations against applicable federal laws, regulations, and security standards; identify gaps and recommend corrective actions.
• →Recommend system enhancements and corrective actions to address security deficiencies.
• →Oversee secure configuration practices, guides implementation and validation of security tools, reviews compliance scan results, advise stakeholders on remediation priorities, and evaluates products and administrative practices for security impact and enterprise suitability
• →Conduct security program audits and develop remediation strategies to reduce identified risks.
• →Perform vulnerability assessments and track remediation through resolution.
• →Develop strategies to support compliance with privacy, risk management, and e-authentication requirements.
• →Provide information assurance support for the development and implementation of security architectures to address new and evolving requirements.
• →Evaluate, develop, and enhance security policies, requirements, and tools.
• →Support computer security incident investigations and response activities.

• 2-4 years of experience in related field.
• Secret clearance.
• Advanced cybersecurity certifications such as CISSP, CASP+, or CISM are a plus.
• CSWF certification preferred.
• Experience supporting DoD or federal information assurance programs, including Authorization to Operate (ATO) package support.
• Familiarity with security scanning, compliance validation, system hardening, and audit support.
• Experience supporting incident response, vulnerability management, and continuous monitoring activities.

• Knowledge of risk management and security control assessment methodologies.
• Evaluate products and support various aspects of system administration from a security perspective.
• Experience with security tools, vulnerability scanning platforms, and compliance reporting.
• Understanding of security architecture principles and secure system configuration practices.
• Ability to effectively use JIRA and Confluence to document security activities, track findings and remediation actions, manage workflow, and coordinate with developers, program managers, and other stakeholders.
• Ability to manage multiple priorities and support deadlines in a regulated environment.
• Strong analytical, documentation, and problem-solving skills.

AMERICAN SYSTEMS is committed to pay transparency for our applicants and employee-owners. The salary range for this position is USD $82,100.00/Yr. - USD $137,000.00/Yr. Actual compensation will be determined based on several factors permitted by law. AMERICAN SYSTEMS provides for the welfare of its employees and their dependents through a comprehensive benefits program by offering healthcare benefits, paid leave, retirement plans, insurance programs, and education and training assistance.

EEO Race/Sex/Disability Status/Veteran Status