Information System Security Officer (ISSO)

Title: Information System Security Officer (ISSO) Location: Washington, DC (On-Site) Terms: Full-Time Clearance: Top Secret / SCI Required Travel: 0-10%    RESULTS. INNOVATION. VALUES. ACCOUNTABILITY. That's RIVA. Our employee-first approach has cultivated a culture that attracts the best and brightest. By investing in people first and providing a flexible work environment, our employees experience higher morale, increased productivity, and lower turnover. At RIVA, people are our #1 priority. RIVA is seeking experienced and mission-driven Information System Security Officer (ISSO) to support the Department of Commerce (DOC). The ideal candidates will provide critical cybersecurity oversight, continuous monitoring, and security documentation support to ensure the confidentiality, integrity, and availability of classified IT systems.    Key Responsibilities include: 

• Serve as the primary cybersecurity point of contact for assigned classified information systems. 

• Develop, maintain, and manage security authorization packages in accordance with Risk Management Framework (RMF) guidelines. 

• Conduct continuous monitoring, risk assessments, and security impact analyses for assigned systems. 

• Ensure all systems comply with CNSS, NIST 800-53, RMF, and agency-specific security policies and standards. 

• Perform security control assessments and validate implementation of applicable security controls. 

• Draft and maintain System Security Plans (SSPs), Plan of Actions and Milestones (POA&Ms), Security Assessment Reports (SARs), and other required cybersecurity documentation. 

• Provide technical guidance on security architecture, security controls, and remediation strategies. 

• Coordinate with Information System Owners (ISOs), Information System Security Managers (ISSMs), and system administrators on security issues. 

• Respond to and document security incidents, ensuring appropriate incident response measures are executed. 

• Support configuration management processes, ensuring security impact assessments are conducted for system changes. 

• Participate in internal and external cybersecurity audits, inspections, and reviews. 

• Conduct security briefings, training sessions, and awareness activities for system users. 

• Maintain system audit logs and assist with forensic investigations as needed. 

   Requirements: 

• Bachelor's Degree in Cybersecurity, Information Assurance, Information Technology, or a related field. 

• Minimum 5+ years of cybersecurity experience with at least 3+ years in an ISSO or similar role. 

• Strong understanding of RMF, NIST 800-53 controls, CNSS policies, and DISA STIGs. 

• Experience developing and managing security authorization packages. 

• Proficient in vulnerability management, POA&M tracking, and incident response processes. 

• Ability to work independently and collaborate across multi-disciplinary teams. 

• Must have an active Top Secret / SCI clearance. 

   Preferred Skills and Experience: 

• Experience supporting Department of Commerce (DOC) or federal cybersecurity programs. 

• Familiarity with eMASS or similar security management platforms. 

• Industry certifications such as Security+, CISSP, CISM, or CAP are preferred but not required. 

   Salary: Max of $150,000 a year, based on experience RIVA Benefits: 

• Health, Dental, and Vision Coverage 

• Life Insurance 

• Retirement Benefits / 401K with Company Matching 

• HSA/FSA Spending Accounts 

• Long- and Short-Term Disability 

• Pet Insurance 

• Wellness Program Initiatives 

• RIVA Flex 

• Additional Workplace Benefits 

RIVA Solutions is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any protected class. If you need a reasonable accommodation to search for a job opening or to submit an online application, please email accommodations@rivasolutionsinc.com. Only messages left for this purpose will be returned.