Sr. Information System Security Officer

Overview

i3 is seeking a Sr. Information System Security Officer (ISSO) to design, implement, and maintain secure cyber systems to protect an organization’s information and assets from cyber threats. Oversee compliance with governmental regulations, conduct system scans, manage cybersecurity activities, and maintain the integrity and confidentiality of information systems.

Position is based in Huntsville, AL, at Redstone Arsenal and is 100% onsite.

Responsibilities

• Serve as an Information Systems Security Officer (ISSO), ensuring systems meet acceptable risk levels and comply with RMF policies.
• Prepare and submit accreditation packages and maintain RMF ConMon authorization documentation utilizing eMASS.
• Collaborate with diverse teams to ensure secure system functionality and address compliance gaps.
• Conduct technical evaluations, vulnerability assessments, and compliance validations for systems, networks, and applications against applicable NIST controls, DISA STIGs, and DoD policies.
• Design, recommend, and enforce security policies, procedures, and plans for safeguarding information systems, software, and hardware.
• Develop and maintain Risk Management Framework (RMF) lifecycle documentation, including SSPs, POA&Ms, RARs, and continuous monitoring plans.
• Manage information systems using tools such as ACAS, OpenRMF and Elastic, ensuring compliance with Army, DISA, DoD, and PEO Missiles and Space regulations.
• Identify, assess, and mitigate cybersecurity risks throughout the system lifecycle.
• Formulate and implement mitigations and maintain the security posture of systems.
• Monitor and evaluate system compliance with DoD security, resilience, and dependability requirements, ensuring adherence to established standards.
• Assist and advise on investigations to resolve security incidents, recommend corrective actions.
• Oversee account management, security auditing, and configuration management reporting for assigned systems.
• Develop and deliver security education and awareness programs.
• Support technical integration and implementation of advanced IT architectures, including virtualization and Zero-Trust models.
• Implement programs to ensure implementation of IAVA and security related patches on end-user machines and servers to meet compliance requirements.

Qualifications

• Bachelor’s degree in a technical field or additional experience may substitute for degree.
• 6+ years of relevant experience in cybersecurity, RMF, and vulnerability management.
• Knowledge of DoD and federal cybersecurity standards, including DISA STIGs, NIST RMF, and IAVMs.
• Experience with cybersecurity tools such as ACAS and Elastic to provide cyber compliance and configuration guidance to technical teams.
• Hands-on experience with STIG Viewer and eMASS.
• Active or obtainable DoD 8140 Information Assurance certification (e.g., Security+, CISSP, or CASP+/Security X).
• Ability to obtain and maintain a DoD Secret security clearance.
• Strong understanding of information system architecture, cybersecurity principles, and risk management.
• Proficiency in analyzing vulnerabilities, implementing mitigations, and maintaining compliance with security requirements.
• Exceptional organizational, communication, and relationship management skills.
• Ability to work independently and collaboratively in a fast-paced, dynamic environment.
• Knowledge of advanced IT architectures, including virtualization, Zero-Trust and software defined networking concepts.
• Experience deploying and configuring cybersecurity tools and conducting vulnerability audits.

Knowledge/Skills

• Strong understanding of information system architecture, cybersecurity principles, and risk management.
• Proficiency in analyzing vulnerabilities, implementing mitigations, and maintaining compliance with security requirements.
• Exceptional organizational, communication, and relationship management skills.
• Ability to work independently and collaboratively in a fast-paced, dynamic environment.
• Knowledge of advanced IT architectures, including virtualization, Zero-Trust and software defined networking concepts.
• Experience deploying and configuring cybersecurity tools and conducting vulnerability audits.

About i3

i3 is a technically diverse, 100% team member owned business, headquartered in Huntsville, Alabama specializing in missile and aviation systems engineering and logistic services, electronic warfare and electromagnetic effects analysis, UAS system integration and flight operations, full lifecycle C5ISR engineering services, cybersecurity and IT/IA innovative solutions and virtual training, simulation & serious game development and implementation. We have established a broad offering of products and capabilities collectively providing decades of experience supporting the full complement of DoD military services, Missile Defense Agency, National Aeronautics and Space Administration, and a variety of other Government organizations and private industry customers.

Perks of being a team member owner include:

• Long-term financial security
• Higher job satisfaction
• Greater job security
• Personal and professional growth
• Great company culture

Other outstanding benefits:

• Excellent insurance coverage
• 401(k) match
• Generous PTO
• Health and wellness incentives
• Tuition and certification reimbursement
• Countless opportunities to give back to the community through i3 Cares

We work hard. We compete hard. We play hard. Apply now to join us!