Senior Information System Security Officer (ISSO)

About the role Seeking a Senior Information System Security Officer (ISSO) to support a critical government contracting program in Annapolis Junction, MD. The ideal candidate will have extensive experience in information systems security, particularly in large software development and IT environments, and will be responsible for maintaining security policies, managing vulnerabilities, and ensuring compliance with federal standards. This role offers the opportunity to work on mission-critical projects with a focus on enterprise security and cloud computing solutions. Job Responsibilities Implement and enforce information systems security policies, standards, and methodologies. Evaluate security solutions to ensure compliance with security requirements. Manage configuration for security-related software, hardware, and firmware. Analyze threats and develop methodologies for incident detection, reporting, and vulnerability remediation. Maintain records and documentation for workstations, servers, network devices, and security systems. Support the Information System Security Manager (ISSM) in maintaining operational security posture. Develop and update system security plans and certification & accreditation documentation. Manage Information Assurance Vulnerability Alerts (IAVAs) including response initiation and remediation. Administer user identification and authentication mechanisms for information systems. Required skills Information System Security IAVA Management System Security Plan (SSP) Preparation Security Policy Enforcement Threat Analysis Incident Detection and Reporting Configuration Management Encryption Techniques Communication Protocols Security Tools Preferred skills DoD 8570 IAT Level II Certification DoD 8570 IAM Level II Certification Enterprise Security Cloud Computing Security Systems Integration Education requirements Degree Bachelor Major Information Technology or Cybersecurity Job Requirements Minimum 10 years of experience as an ISSO in secure information system operations. At least 5 years of experience managing Information Assurance Vulnerability Alerts (IAVAs). Proven ability to prepare, maintain, and manage System Security Plans (SSPs) and related documentation for at least 5 years. Demonstrated knowledge of security tools, hardware/software security implementation, communication protocols, and encryption techniques. Experience conducting security evaluations of software systems or architectures to meet security requirements. Proven track record in proposing, coordinating, and enforcing information systems security policies and methodologies. Strong interpersonal skills and ability to work independently and as part of a team. Active Full Scope (FS) polygraph clearance with last polygraph within the past 6 years and no Continuous Coverage Adjudications (CCAs). Commitment to best practices in information security and a solutions-oriented mindset.

Created: 2026-03-04