Information Systems Security Officer jobs in United States
cer-icon
Apply on Employer Site
company-logo

By Light Professional IT Services · 1 day ago

Information Systems Security Officer

positionUnited States
timeFull-time
remoteRemote
senioritySenior Level
date7+ years exp

By Light Professional IT Services is seeking a Senior Information Systems Security Officer (ISSO) to provide expert cybersecurity oversight and governance for mission-critical systems within the Department of Veterans Affairs. The role involves ensuring compliance with federal cybersecurity frameworks and supporting continuous monitoring and risk management activities.

GovernmentInformation ServicesInformation Technology
badNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Lead security compliance activities in alignment with VA, NIST, FISMA, and federal cybersecurity frameworks
Manage and maintain system security documentation including SSPs, SARs, POA&Ms, and risk assessments
Support and guide systems through the full ATO lifecycle, including initial authorization, continuous monitoring, and renewals
Ensure adherence to VA Handbook 6500, VA security directives, and TIC/Zero Trust initiatives
Oversee vulnerability management, patch compliance, and security control assessments
Conduct regular reviews of audit logs, scan results, and security events
Identify, document, and track risks; develop mitigation strategies and compensating controls
Coordinate with VA CSOC, privacy teams, and engineering groups to resolve findings
Provide security guidance during system design, integration, and modernization efforts
Review architecture diagrams, data flows, and configuration changes for security impact
Support incident response activities and root cause analysis
Advise development and operations teams on secure engineering practices
Serve as the security liaison between program leadership, system owners, and VA cybersecurity offices
Prepare and deliver briefings, dashboards, and status updates for executives and auditors
Collaborate with cross functional teams to ensure security requirements are understood and implemented

Qualification

NIST SP 800-53FISMAVA security policiesCISSPCloud securityRisk managementVulnerability managementCommunication skills

Required

7+ years of experience as an ISSO or similar cybersecurity role supporting federal agencies
Direct experience working within the VA environment (e.g., ATO processes, eMASS, Archer, CSAM, VA Handbook 6500)
Strong understanding of NIST SP 800 53, RMF, FISMA, and federal cybersecurity governance
Experience managing POA&Ms, vulnerability remediation, and continuous monitoring activities
Ability to interpret technical system details and translate them into security requirements
Excellent communication skills, including executive level reporting
Ability to obtain and maintain a Public Trust

Preferred

Experience supporting VA OIT, EHRM, VBA, VHA, or enterprise ICAM programs
Familiarity with cloud security (AWS, Azure, VAEC)
CISSP, CAP, Security+, or equivalent certifications
Experience with Zero Trust, identity modernization, or large scale federal IT transformations

Company

By Light Professional IT Services

twittertwittertwitter
company-logo
BY LIGHT Professional IT Services is a provider of IT, cloud, cyber and infrastructure solutions to the US Federal Government.
dateFounded in 2002
location
Arlington, Virginia, USA
people-size1001-5000 employees
web-link
http://www.bylight.com

Funding

Current Stage
Late Stage
Total Funding
unknown
2017-05-31Acquired

Leadership Team

leader-logo
Bob Donahue
CEO By Light
linkedin
leader-logo
Mike Bowser
Chief Operating Officer
linkedin

Recent News

PR Newswire
By Light Implements APS for Government Compliance
2026-01-07
Business Wire
Cole Engineering Awarded Hybrid Force-on-Force Small Arms Training System
2025-12-01
PR Newswire
By Light Deemed "Awardable" in P1 Solutions Marketplace
2025-10-09
Company data provided by crunchbase