Information System Security Officer (ISSO)

Posted:
10/15/2024, 3:07:03 AM

Location(s):
District of Columbia, United States ⋅ Washington, District of Columbia, United States

Experience Level(s):
Senior

Field(s):
IT & Security

Workplace Type:
On-site

Harmonia Holdings Group, LLC is an award-winning, rapidly growing federal government contractor committed to providing innovative, high-performing solutions to our government clients and focused on fostering a workplace that encourages growth, initiative, creativity, and employee satisfaction.  

We are seeking a highly skilled Information System Security Officer (ISSO) to support the implementation of security controls within a secure SCIF environment. The ISSO will be responsible for ensuring compliance with government security policies and standards while providing oversight of system security, assessing risks, and implementing necessary security controls to safeguard classified systems and data.

Key Responsibilities:

  • Implement and maintain security controls in accordance with government regulations, such as NIST 800-53, FISMA, and DoD Risk Management Framework (RMF).
  • Monitor, evaluate, and maintain the security posture of systems, ensuring compliance with Security Technical Implementation Guides (STIGs) and other relevant security requirements.
  • Develop and update System Security Plans (SSPs), Risk Assessments, Plan of Action and Milestones (POA&Ms), and other documentation to reflect the current system security state.
  • Collaborate with system administrators, network engineers, and other IT staff to identify, mitigate, and document risks associated with system vulnerabilities and security threats.
  • Ensure continuous monitoring of systems by reviewing audit logs, conducting vulnerability scans, and assessing the effectiveness of existing security controls.
  • Provide support for security assessments and accreditation processes, ensuring that security controls are properly implemented and verified.
  • Lead security control assessments and assist with audits and inspections from internal and external agencies.
  • Serve as the point of contact for all system security-related matters and provide guidance to system owners on maintaining compliance with security regulations.
  • Conduct regular security briefings and training to staff on the importance of maintaining security best practices within the SCIF environment.
  • Respond to and manage security incidents, coordinating with relevant stakeholders to perform root cause analysis and remediation.
  • Ensure that systems and networks comply with the Continuous Monitoring Program (CMP) and Incident Response Plan (IRP) for rapid detection and response to security events.

Required Qualifications:

  • Top Secret clearance with SCI eligibility is required.
  • Strong experience as an Information System Security Officer (ISSO) or similar role within a SCIF or other highly secure government environments.
  • Knowledge of Risk Management Framework (RMF), NIST 800-53, FISMA, and other relevant government security regulations.
  • Experience developing and maintaining System Security Plans (SSPs), POA&Ms, and other security documentation.
  • Strong understanding of Security Technical Implementation Guides (STIGs) and hardening of systems.
  • Proven ability to implement, manage, and monitor security controls, assess vulnerabilities, and mitigate security risks.
  • Hands-on experience with vulnerability management tools, SIEM solutions, and continuous monitoring technologies.
  • Familiarity with security incident response procedures, including root cause analysis and remediation.
  • Strong analytical and problem-solving skills with attention to detail.
  • Excellent communication and collaboration skills to work effectively with technical teams and senior leadership.

Preferred Qualifications:

  • Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Information Systems Auditor (CISA).
  • Experience with classified systems accreditation processes and Continuous Diagnostics and Mitigation (CDM).
  • Familiarity with security automation tools and processes.

Work Environment:

  • This position is 100% onsite in a SCIF environment, ensuring the secure handling of classified information.
  • Occasional after-hours work may be required to address security incidents or system updates.

#LI


___________________________________________________________________________________________________________

Here at Harmonia we are pleased to have been repeatedly recognized for our outstanding work culture, the innovative work we do, and the employees on our team who make a difference each day.  Some of these recognitions include:  

  • Recognized as a Top 20 "Best Place to Work in Virginia"
  • Recipient of Department of Labor's HireVets Gold Medallion
  • Great Place to Work Certification for five years running
  • A Virginia Chamber of Commerce Fantastic 50 company
  • A Northern Virginia Technology Council Tech 100 company 
  • Inc. 5000 list of fastest growing companies for eleven years
  • Two-time SBA SBIR Tibbett's Award winner
  • Virginia Values Veterans (V3) Certification

We recognize that every bit of our success is the result of our teams of hard-working, motivated, and innovative professionals who are proud to call themselves part of the Harmonia family!   In addition to competitive compensation, a family-focused culture, and a dynamic, productive work environment, we offer all full-time employees a variety of benefits including, but not limited to

  • Traditional and HSA- eligible medical insurance plans w/ Wellness Incentives for employees and family
  • 100% employer-paid dental and vision insurance options 
  • 100% employer-sponsored STD, LTD, and life insurance
  • Veterans Cohort
  • Gym membership reimbursement
  • 401(k) matching
  • Dollar-for-dollar 501(c)(3) donation matching
  • Flexible-schedules and teleworking options
  • Paid holidays and Flexible Paid Time Off
  • Adoption Expense Reimbursement
  • Paid Parental Leave
  • Professional development and career growth opportunities and paid training days
  • Employer-sponsored Employee Assistance Program for employee and family
  • Team and company-wide events, recognition, and appreciation-- and so much more! 

Check out our LinkedInFacebook, and Instagram to find out a little more about who we are and if we are the right next step for your career!   

Harmonia is an Equal Opportunity Employer providing equal employment opportunity to all employees and applicants for employment without regard to race, color, religion, national origin, age, gender, gender identity, sexual orientation, disability, or genetics. Harmonia does and will take affirmative action to employ and advance in employment individuals with disabilities and protected veterans.  To perform the above job successfully, an individual must possess the knowledge, skills, and abilities listed; meet the education and work experience required; and must be able to perform each essential duty and responsibility satisfactorily.  Other duties in addition to those listed may be assigned as necessary to meet business needs.  Reasonable accommodation will be made to enable an applicant with a disability to successfully apply for and/or perform the essential duties of the job.  If you are in need of an accommodation, please contact [email protected].