Information System Security Officer (ISSO)

Overview

Nakupuna Services is seeking an Information System Security Officer (ISSO). The Information System Security Officer (ISSO) is responsible for ensuring the security of information systems through the implementation, monitoring, and maintenance of security controls while ensuring compliance with organizational security policies and regulatory requirements.

Responsibilities

The following duties reflect management's definition of essential functions for this job but do not restrict the tasks that might be assigned. 

Management may assign additional duties and responsibilities at any time due to reasonable accommodation or other reasons:

Job Duties Include:

Security Management

• Implement and maintain information security controls
• Monitor system security posture and compliance
• Conduct security assessments and risk analyses
• Manage security incidents and violations
• Review system security logs and alerts
• Coordinate vulnerability scanning and remediation
• Maintain system security documentation
• Enforce security policies and procedures

Compliance and Documentation

• Ensure compliance with security requirements (NIST, RMF, etc.)
• Maintain Authority to Operate (ATO) documentation
• Update System Security Plans (SSP)
• Track and document security incidents
• Maintain security control documentation
• Create and update security procedures
• Document system configurations

Operational Support

• Provide security guidance to system users
• Conduct security awareness training
• Manage user access controls
• Support security audits and inspections
• Coordinate patch management
• Review system changes for security impact
• Participate in incident response activities
• Monitor security tools and systems

Qualifications

Education and Experience

• Bachelor's degree in Cybersecurity, Information Technology, or related field
• 5+ years of experience in information security
• Relevant certifications such as:
• CompTIA Security+
• CISSP (Certified Information Systems Security Professional)
• CAP (Certified Authorization Professional)
• CISM (Certified Information Security Manager)
• GIAC Security Essentials (GSEC)

Skills/Qualifications

Technical Skills

• Strong knowledge of security frameworks (NIST, RMF)
• Experience with security tools and technologies
• Understanding of network security principles
• Knowledge of operating system security
• Familiarity with encryption technologies
• Experience with security assessment tools
• Understanding of cloud security
• Knowledge of access control systems

Security Knowledge

• Information security principles
• Risk management frameworks
• Security control implementation
• Vulnerability management
• Incident response procedures
• Security assessment methodologies
• Compliance requirements
• Authentication and authorization

Soft Skills

• Strong analytical abilities
• Excellent communication skills
• Problem-solving capabilities
• Attention to detail
• Project management skills
• Team collaboration
• Time management
• Documentation abilities

Clearance Requirements:  Active TS/SCI security clearance required. Must be a U.S. citizen.

Location: Aberdeen, MD

Physical Requirements: The ideal candidate must at a minimum, be able to meet the following physical requirements of the job with or without a reasonable accommodation:

• Ability to perform repetitive motions with the hands, wrists, and fingers.
• Ability to engage in and follow audible communications in emergencies.
• Ability to sit for prolonged periods at a desk and work on a computer.

The Nakupuna Companies use a market-based compensation strategy to ensure that our employees are compensated within applicable market ranges commensurate with multiple factors, including but not limited to the individual’s particular combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability, organizational requirements, and position location. The projected compensation range for this position is $143,000.00 to $165,000.00 (annualized USD). The salary range displayed represents the typical salary range for this position and is just one component of Nakupuna Companies total compensation package for employees.