Information System Security Officer (ISSO) jobs in United States
cer-icon
Apply on Employer Site
company-logo

Conviso Inc. ยท 1 day ago

Information System Security Officer (ISSO)

positionGermantown, MD
timeFull-time
remoteOnsite
seniorityMid Level
date3+ years exp

Conviso Inc. is seeking an Information System Security Officer (ISSO) to support the RMF lifecycle and cybersecurity monitoring. The role involves preparing for RMF readiness, categorizing information systems, selecting security controls, and supporting assessments and documentation.

Business IntelligenceCloud ComputingData ManagementInformation TechnologySoftwareStaffing Agency
badNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote
Hiring Manager
Sushil Ray
linkedin

Responsibilities

Prepare: Support enterprise, mission, and system-level RMF readiness, establish tailored baselines, identify assets, assess risks, and determine system placement in the enterprise architecture
Categorize Information Systems: Perform FIPS 199 categorization, develop SSP subsections, register systems, and ensure early engagement with developers to integrate cybersecurity impact analysis
Select Security Controls: Document, implement, and validate selected controls, incorporating security architecture, privacy requirements, and common control inheritance
Assessment: Develop assessment plans, test controls, produce SARs, document findings, and support POA&M development
Data Calls: Provide timely and accurate evidence and responses using approved tools
Internal & External Assessments: Support audits, collaborate with internal and external partners, and perform self-assessments
Program-Level Documentation Support: Maintain program policies, adjudicate comments, and assess the impact of federal directives and legislation

Qualification

NIST SP 800-37NIST SP 800-53Risk assessmentsEGRC toolsCybersecurity monitoringAnalytical skillsCommunication skills

Required

Must have Top Secret Clearance
Hands-on technical and analytical experience supporting the RMF lifecycle
Cybersecurity monitoring experience
Continuous authorization experience
Security control assessments experience
Understanding and interpreting data from security tools
Applying NIST frameworks with precision
Proficiency in NIST SP 800-37, 800-53, 800-60, FIPS 199, CNSSI 1253
Ability to perform risk assessments
System categorization experience
Control selection experience
Experience with eGRC tools (e.g., Archer) for documentation, continuous monitoring, and POA&M management
Skills in communicating risk
Documenting controls
Supporting both internal and external assessments
3 years as an ISSO

Company

Conviso Inc.

twittertwitter
company-logo
At Conviso, we empower both government and commercial clients by delivering tailored professional services that drive success and help them overcome unique business challenges.
dateFounded in 2009
location
Luray, Virginia, USA
people-size51-200 employees
web-link
https://convisoinc.com

Funding

Current Stage
Growth Stage

Leadership Team

leader-logo
Roy Quill
Chief Growth Officer (CGO)
linkedin
Company data provided by crunchbase