CrawlJobs Logo

Lead Information Systems Security Officer (ISSO)

United States, Colorado Springs Employment contract 97016.00 - 168692.00 USD / Year · Job Posted June 02, 2026
Apply Position
Job Link Share

Job Description

We are seeking an experienced and driven Lead Information Systems Security Officer (ISSO) to guide and oversee the design, implementation, and continuous improvement of our USSF customer's information security program in CO Springs, CO. The Lead ISSO will serve as a critical point of contact for all security-related matters and be responsible for ensuring compliance with organizational, customer, and regulatory security requirements. In this leadership role, you will manage a team of cybersecurity professionals, lead security initiatives, oversee risk management, and act as a key advisor on security policies and processes.

Job Responsibility

  • Manage and oversee a team of ISSOs, analysts, and engineers
  • Provide mentorship, training, and guidance for developing team members' skills and expertise
  • Assign and prioritize security-related tasks and initiatives
  • Drive the implementation of best practices for system security
  • Serve as the primary SME on security policies, frameworks, and applicable standards
  • Develop, implement, and maintain System Security Plans (SSPs)
  • Lead periodic risk assessments and vulnerability assessments
  • Manage the certification and accreditation (C&A) process
  • Conduct security audits and reviews
  • Monitor and assess security-related control systems
  • Oversee system security measures
  • Manage handling of security incidents
  • Monitor security logs and review system audit trails
  • Maintain Incident Response and BCDR frameworks
  • Collaborate with system owners, administrators, and vendors
  • Provide security awareness training
  • Act as primary liaison with external auditors
  • Draft, implement, and enforce security policies
  • Create and maintain systems documentation
  • Stay current with emerging cybersecurity threats

Requirements

  • Bachelor’s degree (8-10 years' exp). Master's degree (6-8 years' exp) or a PhD (3-5 years' exp) in Computer Science, Information Security, Cybersecurity, or a related discipline (or equivalent work experience)
  • 7+ years of experience in cybersecurity or system security-related roles
  • 3+ years of experience in leadership, mentoring, or team management roles in a security-focused environment
  • Proven hands-on experience with security operations, policies, and frameworks
  • Must possess and maintain an ACTIVE TS/SCI CLEARANCE
  • Strong knowledge of cybersecurity frameworks and standards, such as NIST Risk Management Framework (RMF), FISMA, ISO 27001/27002, and GDPR
  • Thorough understanding of operating systems security (Windows, Linux, and Unix), network protocols, and security tools such as firewalls, VPNs, IDS/IPS, and endpoint protection
  • Experience using vulnerability scanning tools such as Nessus, Qualys, or Rapid7, and security information and event management (SIEM) tools like Splunk or LogRhythm
  • Scripting and automation experience with languages like Python, PowerShell, or Bash is preferred
  • Familiarity with cloud security best practices for platforms such as AWS, Microsoft Azure, or Google Cloud Platform
  • Demonstrated experience implementing and managing risk management processes, including vulnerability and threat assessments, risk remediation planning, and reporting to leadership teams
  • Proven success in preparing for and passing third-party IT audits or certifications (e.g., FISMA audits, SOC 2 audits, etc.)
  • Solid understanding of authentication mechanisms (Active Directory, SSO, MFA), encryption standards (TLS, AES), and secure data management principles
  • Proven leadership experience managing teams of cybersecurity professionals and fostering collaboration across departments
  • Ability to work cross-functionally to influence security decisions and communicate complex technical issues to non-technical stakeholders
  • Strong ability to evaluate risks and vulnerabilities, mitigate threats, and respond to incidents with urgency and precision
  • Analytical skills to correlate security events and identify potential sources or anomalies

Nice to have

  • Certified Information Systems Security Professional (CISSP)
  • Certified Information Systems Auditor (CISA)
  • Certified Information Security Manager (CISM)
  • GIAC Security Essentials (GSEC)
  • AWS Security Specialty
  • CRISC (Certified in Risk and Information Systems Control)
  • Knowledge and experience with zero-trust architecture principles
  • Experience with DevSecOps and integrating security into CI/CD pipelines
  • Familiarity with tools such as AWS Config, Azure Security Center, or Google Cloud Security Command Center

What we offer

  • Health Insurance
  • Life Insurance
  • Paid Time Off
  • Holiday Pay
  • Short Term and Long-Term Disability
  • Retirement and Savings
  • Learning and Development opportunities
  • wellness programs

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Lead Information Systems Security Officer (ISSO)

8 matching positions

Information Systems Security Officer

StraitSys is seeking an Information Systems Security Officer. In this role, you ...
Location
Location
United States , Huntsville
Salary
Salary:
Not provided
yulista.com Logo
Yulista Holdings
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Ability to lead an Army program to meet all documentation, artifact, and eMASS cyber security management requirements to achieve an Authority to Operate (ATO) for an Army tactical system
  • Skilled in providing technical support in the areas of vulnerability assessment, risk assessment, network security, product evaluation, and security implementation
  • Versed in design of information system contingency plans and other deliverables which maintain appropriate levels of protection and meet time requirements for minimizing operations impact to customer organization as well as Security Authorization and Assessment (A&A processes)
  • Strong writing skills to develop and maintain System Security Plans (SSP), Contingency Plans, Privacy Impact Assessments, Certification Reports, Accreditation Reports, Plan of Action & Milestones (POA&M), and other C&A documentation
  • Demonstrates oral and written communication skills to work closely with all levels of personnel involved in IT operations and technical aspects of systems
  • Familiarity with security policies & guidance documents to assist with the preparation and maintenance of process artifacts and traceability documents purposed for compliance with Authority to Operate (ATO) requirements
  • Must be a US Citizen
  • Active Secret Clearance
  • Greater than one-year minimum practical experience as an ISSO familiar with eMASS, ACAS/ Nessus scans, applying STIGs, etc.
  • Familiarity with cybersecurity and IT security matters, including documentation requirements and security control implementation
Job Responsibility
Job Responsibility
  • Supports all aspects of Risk Management Framework(RMF) processes tailored to include minimum cybersecurity standards and demonstrate competency with specific experience in Cyber Security, Engineering, Test & Evaluation, (T&E) and/or Security Control Assessor (SCA) under a Certification & Accreditation (C&A) and/or Assessment & Authorization (A&A) process
  • Function as a representative for cybersecurity matters, including reporting requirements, data calls, Army CIO requirements, as well as legal and compliance matters relating to IT security
  • Design, implementation, and support of cybersecurity artifacts
  • Actively participate in IT and security meetings
  • Manage the ATO process for Army tactical missile systems and assets, including control implementation and documentation
  • Conducts testing and audit log reviews to evaluate the effectiveness of current security measures. Directs and implements the necessary controls and procedures to cost-effectively protect information systems assets from intentional or inadvertent modification, disclosure, or destruction
  • Monitors security of electronic data, application system usage, networks, and physical environment
  • Evaluate security solutions to ensure they meet security requirements for processing up to classified information and supervise and/or maintain the operational security posture for an information system or program
  • Fulltime
Read More
Arrow Right

SCIF Manager / Information System Security Officer

Astrion has an exciting opportunity for an SE-3 SCIF Manager/ ISSO Mid-Level at ...
Location
Location
United States , Eglin Air Force Base
Salary
Salary:
Not provided
astrion.us Logo
Astrion
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in a technical discipline and a minimum of 3 years of technical experience. Additional experience may be substituted for education
  • Active Top Secret, Top Secret/SCI eligibility required
  • U.S. Citizenship is required
  • Must possess a DOD 8140, DoD Cybersecurity Workforce Framework (DCWF) certification or higher
  • As the SCIF Manager – knowledgeable professional with a solid background in secure facility operations and national security compliance
  • As the ISSO - experience with implementing and maintaining security controls
  • Experience in monitoring the systems for vulnerabilities and ensuring that all security patches and updates are applied
  • Understanding of Air Force cybersecurity policies and procedures using Air Force guidance
  • Organized, detail-oriented expert capable of maintaining the highest standards of information security while managing complex facility requirements
  • Excellent communication and customer interface skills
Job Responsibility
Job Responsibility
  • Respond to Information System Security Manager’s guidance in maintaining compliance with system security requirements
  • Lead the daily operations, maintenance, and security of Sensitive Compartmented Information Facilities (SCIFs), ensuring all systems comply with applicable security protocols and federal guidelines, including ICD 705, NISPOM, and DoD regulations
  • Implement and maintain security controls for information systems within the SCIFs
  • Monitor the systems for vulnerabilities and ensuring that all security patches and updates are applied
  • Assist with the implementation and enforcement of all Air Force cybersecurity policies and procedures using Air Force guidance
  • Accomplish cybersecurity incident monitoring and response
  • Manage multiple SCIF accreditation processes from start to finish, including coordination with accrediting authorities, documentation preparation, inspections, and audits
  • Establish and enforce physical and technical security standards within SCIF environments
  • Ensure strict control over access, surveillance systems, secure communications, TEMPEST requirements, and secure storage
  • Lead and mentor personnel involved in SCIF operations, including special security representatives and facility support staff
What we offer
What we offer
  • Competitive salaries
  • Continuing education assistance
  • Professional development
  • Multiple healthcare benefits package options
  • 401K with employer matching
  • Competitive time off policy along with a federally recognized holiday schedule
  • Fulltime
Read More
Arrow Right

Cybersecurity Engineer, Mid

Are you looking for an opportunity to share your cybersecurity experience to pro...
Location
Location
United States , Fort Meade
Salary
Salary:
99000.00 - 225000.00 USD / Year
boozallen.com Logo
Booz Allen Hamilton
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience with information assurance or cybersecurity
  • Experience serving as an Information Systems Security Officer (ISSO) or Governance, Risk, and Compliance specialist
  • Experience with the Cybersecurity Assessment and Authorization process to manage and administer an Authority to Operate (ATO) to maintain compliance with DoD, NIST, and RMF requirements
  • Experience utilizing the Enterprise Mission Assurance Support Service (eMASS) to address security controls, create POA&Ms, and upload artifacts such as STIG checklists and ACAS scans
  • Experience reviewing vulnerability documentation and developing Plan of Action and Milestones (POA&M) or courses of action to remediate findings
  • Knowledge of NIST SP 800-53 Rev 5 transition requirements and planning of implementation strategies
  • Ability to collaborate with program management office representatives such as ISSM, ISSE, assessors, systems architects, and systems engineering to manage accreditation
  • Secret clearance
  • Bachelor's degree
  • Cybersecurity Certification
Job Responsibility
Job Responsibility
  • Implement security solutions compliant with DoD, NIST, and RMF directives
  • Apply advanced skills and extensive technical expertise to solve complex cybersecurity challenges
  • Assess cybersecurity requirements, develop courses of action and POA&Ms, and proactively engage with clients and cybersecurity stakeholders to implement effective solutions
  • Prepare reports to inform and advise senior technical staff and management both verbally and in writing
  • Consistently coalesce with the systems security engineering team to prioritize and align system hardening activities to mitigate system vulnerabilities
  • Lead tasks such as planning, execution, staff oversight, and status reporting for an enterprise-level program management office
  • Utilize strong leadership skills and independence to work in a client-facing environment and mentor subordinate team members
  • Engage effectively with clients to understand their needs and provide viable cybersecurity solutions
What we offer
What we offer
  • health
  • life
  • disability
  • financial
  • retirement benefits
  • paid leave
  • professional development
  • tuition assistance
  • work-life programs
  • dependent care
  • Fulltime
Read More
Arrow Right

Secops Lead

Serves as the Lead Cybersecurity Operations (SECOPS) contractor, providing senio...
Location
Location
United States , Washington, DC
Salary
Salary:
Not provided
aac.com Logo
AAC
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Demonstrated ability to guide technical discussions and provide expert advisory support to senior government officials, including the CISO, system owners, SOC staff, and executive leadership, while operating under government direction
  • Proven experience as a SOC Lead or Senior Team Lead, successfully coordinating with managed security service providers (MSSPs) and external cybersecurity partners (e.g., CISA, CYBERCOM) in support of incident response (IR), incident handling (IH), and vulnerability management (VM) activities), including mitigating actions to contain activity and facilitating forensics analysis when necessary
  • Documented experience conducting and guiding in-depth technical evaluations of INFOSEC, IT security, and cybersecurity tactics, techniques, and procedures (TTPs), including their impact on baseline system configurations
  • Demonstrated proficiency providing cybersecurity posture assessments, hygiene reporting, and technical input in support of Governance, Risk, and Compliance (GRC) activities and continuous monitoring programs
  • Experience providing incident response support to network subscribers, including recommending mitigating actions, supporting containment efforts, and facilitating forensic analysis under government oversight
  • Demonstrated expertise in log-based and endpoint-based threat detection, threat hunting, and analysis across multiple threat sources
  • Strong technical knowledge of web services security, Microsoft cloud environments (Azure, M365), and modern enterprise security architectures
  • Advanced experience evaluating the security of complex web portals, APIs, and databases (e.g., Java, Ruby, SQL, Oracle) using commercial and open-source security assessment tools such as SQLmap and mongoaudit
  • Near-expert proficiency in: Web application security testing frameworks (e.g., NMAP, W3af)
  • Continuous monitoring and remediation tools (e.g., Azure Security Center, Defender for Cloud, Qualys, Wireshark)
Job Responsibility
Job Responsibility
  • Serves as the Lead Cybersecurity Operations (SECOPS) contractor, providing senior-level technical leadership and operational support to the Agency’s IT Security Program
  • Supports and coordinates SECOPS activities under government direction and maintains technical inputs to the Agency’s IT Security Program
  • Provides senior technical advisory support to the Chief Information Security Officer (CISO) on developments in cybersecurity, information security (INFOSEC), and IT security, including emerging threat vectors, advanced persistent threats (APTs), attack surface analysis, and identified weaknesses
  • Supports Agency-level technical implementation of approved cybersecurity policies, standards, and directives by developing technical documentation, implementation guidance, and draft procedures for government review and approval
  • Leads day-to-day contractor cybersecurity operations activities within the SECOPS function, supporting government-led oversight of systems and services that impact the Agency’s mission and critical infrastructure
  • Implements and administers cybersecurity incident handling (IH) and incident response (IR) capabilities, including SIEM dashboards, detection inputs, incident response playbooks, and operational metrics, to improve efficiency and effectiveness of security operations
  • Facilitates and coordinates SECOPS activities in support of the Agency’s Information Security (INFOSEC) Program, assisting Agency system security personnel and Information System Security Officers (ISSOs)
  • Serves as the senior technical advisor for threat, vulnerability, and configuration management activities, providing threat intelligence analysis, mitigation recommendations, and defensive strategy insights to Agency stakeholders
  • Fulltime
Read More
Arrow Right

Navy Qualified Validator

Synectic Solutions seeks a Navy Qualified Validator to join our team supporting ...
Location
Location
United States , Corona
Salary
Salary:
140000.00 - 150000.00 USD / Year
synecticsolutions.com Logo
Synectic Solutions Inc
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Must be on NQV List or if moved to inactive been on NQV list within last 18 months where reactivation can be obtained (Alternatively, equivalent experience as an ISSO will also be considered)
  • Must have an active DoD Secret Clearance
  • 10+ Years and bachelor’s degree in Information Systems, Engineering, Computer Science, or Business or similar field
  • Nessus/ACAS Scanner Experience - ACAS dashboard, setup, ability to run scans, ability to troubleshoot scanner and scanner results
  • NIST/STIG Experience - Experience with STIG Viewer/validation/analyzing and compiling results into a POA&M
  • RMF Experience - Experience with eMASS, Artifacts, Test Plans, Control Assessments, and compiling tools to process and collate test results
  • CISSP Certification/IAT Level II Certified
  • Ability to provide presentations to senior level staff
  • Advanced level skills in Microsoft Office software suite - Word, Excel, Outlook, PowerPoint
  • Ability to communicate effectively with all levels of employees, Government personnel, and other stakeholders
Job Responsibility
Job Responsibility
  • Act as Validator for all RMF packages for the NSWC Corona – Corona Division
  • Serve as portfolio SME for the Portfolio Information Systems Security Manager (ISSM) in compliance reviews of systems
  • Manage, track and delegate all cybersecurity actions for division
  • Contribute to the development of cybersecurity policies and procedures
  • Responsible for reviewing, assessing, and managing cybersecurity risks
  • Responsible for the management of Risk Management Framework (RMF) best practices to attain/ maintain continuous Authority-to-Operate (ATO) capability
  • Ensure the cybersecurity posture of assigned projects
  • Direct RMF continuous ATO attainment/maintenance
  • Research National Institute of Standards and Technology (NIST), DoD and Navy Guidance on Cybersecurity and related topics in response to requests for data or information related to cybersecurity topics, posture, impacts, or issues and reviews
  • Review architectures and designs for cybersecurity compliance and provide recommendations
  • Fulltime
Read More
Arrow Right
New

Branch Manager

Come and join us as a results driven Branch Manager to deliver sales and exceed ...
Location
Location
United Kingdom , Lymington
Salary
Salary:
Not provided
cityplumbing.co.uk Logo
City Plumbing
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • A great positive attitude
  • Enjoy customer interaction
  • Management Experience
  • Safe Practices
  • Forward Thinking
  • Tenacity and resilience
  • A pro-active approach to sales, with a strong desire and ability to win and grow new business
  • Experience of customer relationship management and developing a true partnership approach
  • Excellent communication skills
  • Self confident and self motivated, with the ability to work on own initiative or as part of a wider team
Job Responsibility
Job Responsibility
  • Effective management of the team and resource
  • Setting the standard of a sales orientated culture
  • Delivering against sales and customer demands while maximising profitability
  • Maximising margin and net profit
  • Keeping everyone safe
  • Build and maintain relationships with new and existing trade and retail customers
  • Ability to interpret and analyse financial and statistical information
What we offer
What we offer
  • Bonus
  • Discounts, savings and cash back at numerous retailers
  • Life assurance
  • Extended family policy including maternity, paternity, additional annual leave and more
  • Mental Health First Aiders and Employee Assistance Programme, we look out for each other
  • Complete induction and a company that lets you grow and encourages development
  • Financial education and loans
  • Flexible working options
  • A business striving to create an environment of inclusion so everyone can be their true self
  • Fulltime
Read More
Arrow Right
New

Guest Environment Expert

Our jobs aren’t just about giving guests a clean room and a freshly made bed. In...
Location
Location
United States , Poughkeepsie
Salary
Salary:
18.00 USD / Hour
https://www.marriott.com Logo
Marriott Bonvoy
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Ensuring a safe work place
  • following company policies and procedures
  • maintaining confidentiality
  • upholding quality standards
  • ensuring professional uniform, personal appearance, and communications
  • ability to stand, sit, or walk for an extended time
  • ability to move, lift, carry, push, pull, and place objects weighing less than or equal to 50 pounds without assistance
Job Responsibility
Job Responsibility
  • Delivering guest requests
  • stocking carts
  • cleaning rooms and public spaces
  • maintaining the appearance and cleanliness of the whole hotel
  • Parttime
Read More
Arrow Right
New

Project Engineer

Our client is seeking a motivated and experienced Project Engineer to join their...
Location
Location
United Kingdom , Dartford
Salary
Salary:
30000.00 GBP / Year
https://www.office-angels.com Logo
Office Angels
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven construction based industry experience, (ideally within Smoke Ventilation/Fire Alarm Systems but not essential)
  • Computer literate with strong reporting and organisational skills
  • Excellent interpersonal and communication skills
  • Ability to multitask and manage cross-disciplinary projects
  • Strong time management and decision-making abilities
  • Professional, presentable, and self-motivated
  • Team-oriented with a commitment to exceeding client and colleague expectations
  • Full UK Driving License required, ideally with your own transport
Job Responsibility
Job Responsibility
  • Assist in the development and delivery of Risk and Method Statements
  • Compile detailed project reports covering quality, progress, and issues
  • Measuring up for install jobs and conducting Coordinate on-site deliveries to ensure smooth logistics
  • Support the accounts team with project-related financials and debt collection
  • Monitor project costs and provide financial updates, including profit/loss analysis
  • Communicate effectively with subcontractors and ensure alignment with project goals
  • Manage resources according to the client's program and track project progress
  • Ensure all documentation and certification is accurate, complete, and submitted on time
What we offer
What we offer
  • 23 days annual leave plus bank holidays, rising to 25 days annual leave at 2 years service
  • Company mobile phone
  • uniform and PPE
  • Life Insurance
  • Private Health Care
  • Pension Scheme
  • Fulltime
Read More
Arrow Right