Information Systems Security Officer (ISSO)

White Pine Innovations is part of the Seneca Nation Group (SNG) portfolio of companies. SNG is Seneca Holdings’ federal government contracting business that meets mission-critical needs of federal civilian, defense, and intelligence community customers. Our portfolio comprises multiple subsidiaries that participate in the Small Business Administration 8(a) program. To learn more about SNG, visit the website and follow us on LinkedIn.

Our team of talented individuals is what makes us successful. To support our team, we provide a balanced mix of benefits and programs. Your total rewards package includes competitive pay, benefits, and perks, flexible work-life balance, professional development opportunities, and performance and recognition programs. We offer a comprehensive benefits package that includes medical, dental, vision, life, and disability, voluntary benefit programs (critical illness, hospital, and accident), health savings and flexible spending accounts, and retirement 401K plan. One of our fundamental principles is to offer competitive health and welfare benefits to our team members, providing coverage and care for you and your family. Full-time employees working at least 30 hours a week on a regular basis are eligible to participate in our benefits and paid leave programs.  We pride ourselves on our collaborative work environment and culture, which embraces our mission of providing financial and non-financial benefits back to the members of the Seneca Nation.

This position is to support the Housing and Urban Development (HUD) Office of the Chief Financial Officer (OCFO) modernizing its data infrastructure by delivering a comprehensive, cloud-native data ecosystem. This initiative includes implementing a foundational Data and Analytics Platform (DAP), an Integrated Data and Adoption Platform, and a modern CFO Data Services (CDS) Hub to replace the legacy New Core Interface Solution (NCIS). These solutions will enable secure, scalable data integration, analytics, reporting, and future AI/ML capabilities, all within HUD’s existing AWS cloud environment. Each component is engineered with compliance, automation, and sustainability in mind, ensuring alignment with federal standards and HUD’s long-term modernization goals.

White Pine Innovations is seeking an Information Systems Security Officer (ISSO) to provide security compliance of information systems in accordance with federal requirements and support continuous monitoring, system security plans, risk assessments, and security control implementations for Office of Chief Financial Officer (OCFO). This position is a remote position. This is a full-time employment opportunity, and the candidate MUST be a U.S. Citizen or Permanent Resident and must be able to complete/pass/hold a public trust investigation. This is a remote opportunity, ET time zone work schedule.

Responsibilities include, but are not limited to:

• Responsible for system security compliance, auditing, security plan development and delivering information systems security education and awareness in accordance with federal requirements.
• Assist in investigating information system security violations and help prepare reports specifying corrective and preventative actions.
• Support continuous monitoring, system security plans, risk assessments risk management, and security control implementations.
• Routinely collaborate with the facility security team, program personnel, and government representatives.
• Support customer in Managing encryption keys at rest and/or in transit using Azure Key Vault and/or AWS KMS.
• Perform security sustainment activities (hardware change management, software change management, account management, media protection, user interface, file transfers, etc.).

Basic Qualifications:

• Must be a U.S. Citizen or Permanent Resident, as mandated by our government client.
• Must be able to complete, pass, and hold a public trust investigation.
• 5+ years of experience in an ISSO role managing and implementing security program requirements in a government environment.
• Must have experience with Authority to Operate (ATO) processes, documentation, security controls assessment and review, and NIST cybersecurity guidelines.
• Experience working in industrial security, information assurance/cyber, special programs, military or government information security programs.
• Solid understanding of the Federal Information Security Modernization Act (FISMA) and the National Institute of Standards and Technology (NIST).
• Deep knowledge of cybersecurity frameworks (e.g., NIST RMF, ISO 27001).
• Strong understanding of access control models, encryption, and incident response.
• Experience in compliance-based auditing using the Risk Management Framework (RMF).
• Ability to develop and enforce security policies and procedures.
• Knowledge of industry standard Information Assurance tools.
• Excellent oral and written communication and collaboration skills. presentation and meeting facilitation, and negotiation skills.
• BS/BA degree in Cybersecurity or related IT discipline.

Desired Skills:

• Working experience with regional data residency requirements and configuring services accordingly (e.g., GovCloud, Azure Government) is a PLUS.
• Proficiency with AWS Macie and Azure Purview for automated data discovery, classification, and sensitivity labeling is a PLUS.
• Certification in one of the following is a PLUS:
  • Certified Information Systems Security Professional (CISSP)
  • Certified Information Security Manager (CISM)
  • Certified Information Systems Auditor (CISA)
  • Security+

Equal Opportunity Statement:
Seneca Holdings provides equal employment opportunities to all employees and applicants without regard to race, color, religion, sex/gender, sexual orientation, national origin, age, disability, marital status, genetic information and/or predisposing genetic characteristics, victim of domestic violence status, veteran status, or other protected class status. This policy applies to all terms and conditions of employment, including, but not limited to, hiring, placement, promotion, termination, layoff, recall, transfer, leave of absence, compensation and training. The Company also prohibits retaliation against any employee who exercises his or her rights under applicable anti-discrimination laws. Notwithstanding the foregoing, the Company does give hiring preference to Seneca or Native individuals. Veterans with expertise in these areas are highly encouraged to apply.