Lead Information Systems Security Officer (ISSO)
Based in the United StatesFull-TimeLead
Salary not disclosed
Apply NowOpens the employer's application page
Job Details
- Experience
- 8+ years
- Required Skills
- Risk Management
Requirements
- 8+ years of experience in information security, cybersecurity operations, or security governance roles.
- Strong expertise in vulnerability management, security scanning tools, and federal compliance frameworks.
- Experience supporting security authorization, audit readiness, and continuous monitoring programs.
- Knowledge of federal data privacy requirements and cloud security best practices.
- One or more relevant certifications (e.g., Security+, CISSP, CISM, CCSP, or equivalent cloud security credentials).
- Strong communication skills with the ability to manage stakeholders and explain complex security risks clearly.
- Eligibility to obtain and maintain a DHS Public Trust clearance.
Responsibilities
- Lead and oversee the organization’s information security posture for federal systems, ensuring continuous authorization, compliance readiness, and alignment with regulatory requirements from U.S. Department of Homeland Security frameworks and related federal standards.
- Manage security authorization activities including POA&Ms, risk acceptance documentation, system assessments, and annual reviews to ensure ongoing compliance and timely remediation of vulnerabilities.
- Coordinate across Privacy, IT, Records, Engineering, and Governance teams to ensure security requirements are embedded into system design, configuration management, and development lifecycles (Agile, DevSecOps, Waterfall).
- Conduct vulnerability management, ISVM response, patch tracking, contingency planning, and system self-assessments to proactively reduce security risk exposure.
- Support internal and external audits (FISMA, A-123, financial, DHS-related reviews) across all phases, ensuring documentation accuracy and audit readiness.
- Maintain system inventory, compliance documentation, and reporting dashboards while ensuring accurate tracking of security metrics and operational risk indicators.
View Full Description & ApplyYou'll be redirected to the employer's site
