Information Systems Security Officer

Job Requisition: Information System Security Officer (ISSO)

Job Title: Information System Security Officer (ISSO)

Location: Naval Station Norfolk, Norfolk, VA

Reports To: Program Manager

Position Status: Full-Time, Key Personnel

---

Job Summary:

We are seeking a highly qualified and experienced Information System Security Officer (ISSO) to support the United States Transportation Command (USTRANSCOM) Joint Enabling Capabilities Command (JECC) under the Command, Control, Communications, Cyber, Collaboration Support (C5S) contract. The ISSO will be responsible for maintaining the cybersecurity posture and ensuring the confidentiality, integrity, and availability of information systems across multiple network environments (NIPRNet, SIPRNet, and JWICS). Advise JECC J6 on cybersecurity and information assurance activities. Serves as the service owner/manager for Cyber Security services to maintain and coordinate system compliance with the DOD, USTRANSCOM, Air Force, and JECC policies and instructions. Provide advice and guidance regarding Risk Management Framework (RMF) procedures and supporting activities.

Key Responsibilities:

Perform duties as the Information Systems Security Officer (ISSO) and SIPRNet hardware Token Trusted Agent in accordance with Department of Defense (DoD), USTRANSCOM and JECC guidance.

Manage the command's cybersecurity program, including information assurance certifications and accreditations. Serve as the principal point of contact for all cybersecurity and information assurance matters.

Coordinate and assist with RMF and Assessment and Authorization (A&A) activities, including certification packages, POA&Ms, and continuous monitoring.

Develop, prepare, and make recommendations on policy requirements to include evaluating new requirements to ensure continual A&A compliance.

Lead cybersecurity incident handling and reporting, including completing initial and final incident checklists and submitting all documentation to the USTRANSCOM Cyber Operations Center.

Manage the security exemption and waiver program by submitting, tracking, and removing requests as appropriate.

Ensure Information Assurance Vulnerability Management (IAVM) compliance by reviewing weekly IAVM lists, coordinating scanning and remediation, and developing Plans of Actions and Milestones (PO&Ms).

Provide technical support for user account/permission management, SIPRNet hardware token support, and Communications Security (COMSEC)/Electronic Key Management System (EKMS) services.

Develop and maintain essential documentation, including briefings, point papers, meeting minutes, and continuity folders related to cybersecurity tasks.

Required Credentials/Certifications:

Bachelor's degree or equivalent

5 years of related experience

Certified Information Systems Security Professional

Security Clearance: A current, fully adjudicated Top Secret/SCI Eligibility is required.

DoD Cyberspace Workforce Qualification:

Applicants must be Foundationally Qualified in accordance with DoD Directive 8140 guidelines at the time of hire. Proficiency must be validated by holding at least one current DoD 8140-approved certification.: CASP+, CGRC/CASP, CISSP, FITSP-M, GCIA, GCIH, GCSA, GICSP, GSEC, GSLC, Security+

Experience:

Demonstrated experience performing ISSO duties in a DoD environment.

Proven experience with incident response, IAVM compliance, and security waiver management.

Demonstrated experience applying the Risk Management Framework (RMF) and supporting assessment and authorization of systems in classified DoD environments

Hands-on experience developing and managing A&A artifacts, POA&Ms, DISA STIG compliance, and IAVM compliance

Desired Skills:

Excellent written and verbal communication skills.

Ability to prepare and present technical information and reports to government stakeholders.

Strong analytical and problem-solving skills for resolving complex security issues.