Information Security Officer

Hybrid / Philadelphia, Navy Yard, PA

Full Time

Apothe6

Mid Level

Position Summary:

The Information System Security Officer (ISSO) is responsible for ensuring the confidentiality, integrity, and availability of information systems in accordance with DoD cybersecurity policies and standards. The ISSO will provide direct support to system owners in maintaining compliance with applicable cybersecurity frameworks, conducting risk assessments, managing system authorizations, and overseeing continuous monitoring activities.

Key Responsibilities:

Develop, implement, and manage cybersecurity policies and procedures in compliance with DoD and Navy directives.
Conduct system security assessments, risk analyses, and vulnerability management to identify and mitigate threats.
Support the development, review, and maintenance of System Security Plans (SSPs), Security Assessment Reports (SARs), and Plans of Action and Milestones (POA&Ms).
Participate in system authorization activities, ensuring compliance with DoD RMF (Risk Management Framework) requirements.
Coordinate with system administrators, network engineers, and program managers to ensure proper implementation of security controls.
Monitor cybersecurity posture, manage incident response activities, and perform forensic data collection and reporting.
Provide security awareness and training to staff and end users to promote compliance with cybersecurity best practices.
Communicate effectively across all levels of the organization regarding cybersecurity posture, incidents, and mitigation actions.

Required Certifications (IAM Level II):

Candidates must meet the DoD 8570.01-M IAM-II baseline certification requirements by possessing one or more of the following:

CAP
CASP+ CE
CISM
CISSP (or Associate)
GSLC
CCISO
HCISPP

Education:

Bachelor’s degree in Computer Science, Information Technology, Communications Systems Management, or a related STEM discipline from an accredited college or university.

Experience:

Minimum of six (6) years of experience in:
- Coordinating and enacting required security changes within various organizational levels to ensure compliance with published cybersecurity policies.
- Conducting cybersecurity vulnerability and threat analyses.
- Supporting cyber incident response efforts, including isolation of affected assets, initial investigations, data collection, and status reporting.

Preferred Qualifications:

In-depth knowledge of DoD Risk Management Framework (RMF) and NIST 800-53 security controls.
Experience with Navy or DoD information systems and accreditation processes.
Familiarity with enterprise security tools (e.g., ACAS, HBSS, eMASS).
Strong written and verbal communication skills, with the ability to brief senior leadership.

Apply for this position

Required*

Apply with Indeed

First Name*

Last Name*

Email Address*

Phone*

Address

Resume*

We've received your resume. Click here to update it.

Attach resume or Paste resume

Attach resume as .pdf, .doc, .docx, .odt, .txt, or .rtf (limit 5MB) or Paste resume

Paste your resume here or Attach resume file

Do you currently hold an active U.S. Government Secret clearance or higher (e.g., Top Secret, TS/SCI)?* YesNo

This position may require working onsite at the Navy Yard in Pennsylvania based on client needs. Are you comfortable with that arrangement?* YesNo

The following questions are entirely optional.

To comply with government Equal Employment Opportunity and/or Affirmative Action reporting regulations, we are requesting (but NOT requiring) that you enter this personal data. This information will not be used in connection with any employment decisions, and will be used solely as permitted by state and federal law. Your voluntary cooperation would be appreciated. Learn more.

Gender

Race/Ethnicity

Human Check*

Submit Application

Thanks for visiting our Career Page. Please review our open positions and apply to the positions that match your qualifications.

Information Security Officer

Apply for this position