Sr. Technical ISSO

We are seeking a highly skilled Senior Technical Information System Security Officer (ISSO) to lead and oversee cybersecurity compliance, governance, and risk management activities for mission-critical systems. The ideal candidate will have extensive experience implementing federal security standards, managing cloud-based security environments, and guiding teams in the delivery of secure, compliant, and resilient systems.

‍

Role Description:

• Serve as the senior point of contact for all information security compliance and accreditation activities.

• Develop, implement, and maintain Risk Management Framework (RMF) and Cybersecurity Framework documentation, processes, and procedures.

• Oversee Assessment & Authorization (A&A) activities to ensure systems meet federal security standards.

• Apply cloud security best practices in AWS environments, including architecture reviews, risk assessments, and compliance monitoring.

• Implement and maintain security for Kubernetes, Terraform, and cloud containerized environments.

• Conduct cloud security analyst activities, including log management, vulnerability management, and software asset management for active components.

• Manage and mentor junior security staff; oversee project-specific security efforts from initiation to completion.

• Develop and implement information security standards and procedures in accordance with Federal Laws, Executive Orders, OMB directives, CISA requirements, and NIST guidelines.

• Support audit readiness and respond to inspection and compliance reviews.

• Prepare and deliver security status reports, technical risk assessments, and compliance updates to stakeholders.

‍

Required Qualifications & Education:

• BS/BA Degree in Cybersecurity or Information Technology from a U.S. accredited college, university, or institution;

• 5+ years of experience working with Risk Management Framework, Cybersecurity Framework and A&A documentation development, implementations and

maintenance;

• Strong understanding of applying cloud security concepts in an AWS environment.

• Experience applying security best practices to Kubernetes, Terraform, and cloud containers.

• Experience with Cloud security analyst activities – log management, vulnerability management, software asset management for cloud – active components.

• Experience working on high-visibility and mission-critical tasks;

• Experience overseeing the efforts of less senior staff or be responsible for the efforts of all staff assigned to a specific security effort;

• Experience in the development and implementation of information security standards and procedures in accordance with Federal Laws, Executive Orders,

OMBs, CISA and NIST guidelines;

• Recommended Certification/s: Security +; Network +; Governance, Risk and Compliance Certification (CGRC) Certifications or equivalent Certification(s);

• Has excellent oral, writing, and team skills.

‍

Clearance and Location Requirements:

• Able to be cleared for a Public Trust clearance.

• This position requires to be onsite 3 days per week in Washington, DC.

‍