Information System Security Officer (ISSO) Specialist

Job SummaryEmerging Tech is seeking an Information System Security Specialist (ISSO) Specialist to support the Department of Health and Human Services (HHS) Enterprise Shared Services (ESS) Line of Business. The ISSO will provide compliance oversight, risk management, and documentation support to ensure system security posture aligns with NIST, FISMA, and Federal standards. The ideal candidate will bring extensive experience in IT security governance, project management, and RMF/continuous monitoring processes, while also serving as a trusted security advisor to HHS stakeholders. This is a hybrid role requiring on-site support in the Washington, D.C., Maryland, and Virginia (DMV) area.Responsibilities and DutiesProvide ISSO services including project management and compliance measurement of information security documentation.Ensure implementation of security controls based on system classification and maintain compliance with Federal standards (e.g., NIST, FISMA) and agency policies.Develop, revise, and maintain security documentation such as: SSPs, CPs, BIAs, CMPs, IRs, Ras, ERAs, PIAs, etc.Conduct annual system security assessments and evaluate vulnerabilities, risks, and security controls.Support the Risk Management Framework (RMF) and continuous monitoring processes.Facilitate mitigation of Plan of Action and Milestones (POA&Ms).Provide customer support for ESS Line of Business (LoB) engagements, including documentation review and quality assurance.Act as alternate ISSO or security SME when supporting customer-assigned ISSOs.Support systems through the System Development Life Cycle (SDLC) to obtain/maintain Authorization to Operate (ATO).Assist with risk management, vulnerability management, incident response, and continuous monitoring.Deliver project management support, including status reporting, project plans, FISMA reporting, meeting minutes, and action tracking.Advise senior leadership on risk levels, security posture, and strategic risk guidance.Provide recommendations on new technology solutions and review procurement packages.Ensure compliance with audit requirements, security logs, and monitoring activities.Contribute to technical reports, studies, and white papers as required.Qualifications and Skills8–10 years of IT security experience in the Federal sector as an ISSO or in a related role.5–8 years of project management experience (developing/managing project plans).CISSP certification (or equivalent) required.PMP certification (or equivalent) is strongly -depth knowledge of Federal IT security laws, directives, and policies.Strong understanding of secured and non-secured environments and applicable security requirements.Experience writing documentation compliant with NIST, FISMA, FISCAM, and Federal regulations.Familiarity with security products, scanning tools, account administration tools, and Cloud Service Providers (CSPs).Knowledge of NIST 800-53 Rev 5 (or latest version) and ability to document control implementations.Ability to collaborate with security engineers and system administrators to document data flows and system architecture.Strong written and oral communication skills with the ability to brief senior management.What We OfferBenefits: Comprehensive health, dental, and vision benefitsRetirement: 401K savings plan with company matchWork Environment: Remote flexibility with occasional travel to federal sites as neededPaid Time Off (PTO): Generous PTO and federal holidaysPerformance Evaluation/Retention Bonus: Opportunity for performance-based bonusesEqual Opportunity EmployerEmerging Tech, LLC is an equal opportunity employer and prohibits discrimination and harassment of any kind. We are committed to providing a workplace that is inclusive and free of employment discrimination on the basis of race, color, religion, sex, national origin, age, disability, or any other status protected by applicable federal, state, or local law. This commitment extends to all aspects of employment, including hiring, promotion, transfer, compensation, benefits, training, social, and recreational activities.We value diversity and strive to create a positive and inclusive work environment where all employees are treated with dignity and respect. Decisions regarding employment are made based on an individual/'s qualifications as they relate to the job for which they are applying. #J-18808-Ljbffr

Created: 2025-09-21