E01-M01 Information System Security Officer IV at EXPANSIA in Washington, Washington DC

Job Description:

Start Date: Immediate


At EXPANSIA, we are focused on partnering with America's top companies to acquire new talent with speed, accuracy, and a differentiated pricing model. We pride ourselves in acquiring top talent to ensure our clients' competitive advantage.


A 100% employee-owned and operated technology firm, our client provides high-demand technical expertise in Digital Engineering & Transformation, Space Systems, Unmanned Systems, Flight Test Engineering, Modeling and Simulation, Cybersecurity, and DevOps for advanced defense and intelligence special programs. Our client delivers first-choice capabilities to solve problems of global importance.


OVERVIEW



Full-time/Permanent Employee




Location: Remote


As an Information System Security Officer (ISSO) IV, you will serve as a critical member of the cybersecurity team responsible for overseeing the secure operation of classified and unclassified information systems using government standards and Risk Management Framework (RMF). You will independently perform day-to-day security operations, including system accreditation, risk assessments, vulnerability management, and incident response to support IL5 Government-Owned Contractor-Operated (GOCO) Cloud activities and other high-security environments. You will collaborate with program managers, system security engineers, and government officials to ensure compliance throughout the system development life cycle and deliver technical solutions to complex problems. The role requires a proactive security expert with extensive experience in certification, accreditation, and continuous monitoring activities. You will also support customer-focused initiatives, manage security packages, and implement effective security measures aligned with applicable ICDs, NISP, NIST, and JSIG regulations. Operating with considerable autonomy, you will coordinate directly with internal and external stakeholders to address security concerns and maintain the integrity and availability of mission-critical systems. This position requires a high level of professionalism, technical acumen, and effective communication skills to ensure operational success.


The proposed salary range for this position is $112,950-$152,000. There are a host of factors that can influence final salary including, but not limited to, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, geographic location, education, and certifications. Our employees value the flexibility EXPANSIA allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our unique mix of benefits options is designed to support and protect employees and their families. Employment benefits include health and wellness programs, income protection, paid leave and retirement and savings.



RESPONSIBILTIES

• Manage the certification and accreditation of computer networks and standalone information systems using RMF and other guiding government standards


• Prepare, maintain, and implement System Security Plans (SSPs) and ensure they meet contractual and regulatory requirements


• Provide day-to-day security support for IL5 GOCO Cloud activities and ensure information systems comply with security requirements


• Review, prepare, and update information system accreditation packages, and notify customers of changes that may impact certification


• Conduct information system self-inspections, vulnerability assessments, and assist with risk mitigation and countermeasure implementation


• Perform ongoing vulnerability testing to verify system security features and operational controls meet government standards


• Review, coordinate, and track system test plans, inspections, reports, and responses to security incidents


• Conduct security surveys at subordinate facilities, gather and manage security documentation for accreditation packages


• Maintain security records, prepare Co-Utilization Agreements, and ensure systems are operated, maintained, and disposed of per security practices


• Develop, implement, and enforce facility procedures for marking, handling, transporting, sanitizing, reusing, and destroying classified media and equipment


• Interact with customers, government security officials, and internal staff to address security issues and perform access briefings


• Collaborate with program managers and system engineers throughout all phases of system life cycle development


• Conduct system security training, track compliance, and support technical review and inspection teams


• Support certification and accreditation (C&A) efforts with DoD, national agencies, and contractor organizations


• Initiate protective and corrective measures to prevent security incidents and assist in their mitigation and reporting


• Conduct risk assessments, develop and implement security measures, and maintain system accreditation documentation


• Ensure compliance with NISPOM Chapter 8, ICDs, and other applicable policies, including security marking and media handling


• Coordinate with stakeholders to address classified system changes, relocations, and temporary setups


• Maintain a thorough understanding of Automated Information Systems and RMF processes


• Proficiency with security tools and applications such as WASSP, MBSA, Nessus, and Microsoft Office (Word, Excel, PowerPoint)


• Provide technical support to operational strategies aligned within your program and initiatives that optimize processes, enhance productivity, and ensure quality across all program functions

KEY QUALIFICATIONS

• 
  Clearance: Secret Clearance with ability to obtain TS/SCI


• 
  Education and Years of Experience: Bachelor's degree (or equivalent) with 5+years of experience.9+ years of experience without a degree.

• Must meet Information Assurance Management (IAM) Level I or Information Assurance Technical (IAT) Level II certification requirements IAW DoD Directive 8570.01-M/8140.01 within 6 months of the date of hire


• Strong knowledge of NIST, RMF, JSIG, ICDs, and NISPOM compliance standards and processes


• Proficient with security assessment tools such as WASSP, MBSA, Nessus, and Microsoft Office applications (Word, Excel, PowerPoint)


• Ability to conduct security risk assessments, develop mitigation strategies, and manage incident responses


• Proven ability to develop, review, and coordinate System Security Plans, risk assessments, and accreditation packages


• Strong communication skills with the ability to interface effectively with technical and non-technical stakeholders, including government officials and contractors


• Ability to work independently, exercise considerable latitude, and develop technical solutions to complex security issues

PREFERRED ADDITIONAL QUALIFICATIONS

• CISSP, CISM, or equivalent DOD 8570.01-M/8140.01 IAM Level II certification (or actively working toward certification)


• Familiarity with Chapter 8 of the National Industrial Security Program Operating Manual (NISPOM) and facility-level security compliance


• Experience supporting IL5 or higher-level classified environments and cloud-based systems


• Hands-on experience conducting security surveys, preparing Co-Utilization Agreements, and maintaining system security records


• Experience in providing security training and developing documentation for system users and administrators

EXPANSIA is an Equal Opportunity Employer - Females/Minorities/Protected Veterans/Individuals with Disabilities Apply Now