Information Systems Security Officer (ISSO)

H2 Performance Consulting is subject to the Vietnam Era Veteran's Readjustment Assistance Act as a Federal Contractor and is an Equal Opportunity/Affirmative Action Employer and strives to build a diverse workforce. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status or disability status. Additionally, as mandated under Executive order 12989, H2 is required to verify employment eligibility of selected candidates through the Department of Labor’s - E-Verify.

H2 Performance Consulting (H2) is seeking a Information Systems Security Officer to support the Naval Health Research Center in San Diego, California.

The Information Systems Security Officer responsibilities will include:

• Develop, implement, and maintain the organization's cybersecurity policies and procedures.
• Oversee the Risk Management Framework (RMF) process, ensuring compliance with federal and organizational standards.
• Conduct security assessments, vulnerability scans, and STIG (Security Technical Implementation Guide) reviews.
• Manage endpoint security solutions and oversee patch management to ensure systems are up-to-date and protected.
• Collaborate with IT and cybersecurity teams to identify and address security risks and vulnerabilities.
• Monitor and respond to security incidents, providing detailed analysis and reporting.
• Maintain documentation related to security policies, procedures, and compliance activities.
• Ensure continuous improvement of cybersecurity practices and tools.
• Implement DoD security requirements, including the deployment of software patches/updates, BIOS and firmware updates, Computer Tasking Orders (CTO), Information Assurance Vulnerability Alerts (IAVA), Public Key Infrastructure (PKI), Data at Rest (DAR) and encryption.
• Evaluate and/or recommend purchase of computers, peripheral hardware, and software.
• Maintain confidentiality regarding the information being processed, stored, and accessed on the network.
• Establish, maintain, and document host connections to the NHRC network.
• Troubleshoot network access problems and implement network security policies and procedures.
• Ensure network security access and protect against unauthorized access, modification or destruction of network components and stored data.
• Perform Information System Security Officer (ISSO) duties to include vulnerability mitigation, patch management and compliance reporting using enterprise cybersecurity tools.

Qualifications and Education Requirements:

• Clearance: Minimum SECRET clearance
• Security:  Security+ or higher DoD authorized certification
• Education:  Bachelor degree in Information Technology, Cybersecurity, Data Science, Information Systems, or Computer Science is preferred
• Experience: Minimum 3 years of experience with the cybersecurity posture of an organization, system or program and the Risk Management Framework (RMF) process as well as working with cybersecurity tools to include security and assessment scans, STIG reviews, endpoint security and patch management

Qualified candidates may submit their resume to the career section of our company website at http://www.h2pc.com.   All resumes will be reviewed within 5 business days and those candidates we wish to further in the application process will be contacted via email/phone to schedule initial phone screens.