Information Systems Security Officer (ISSO) – SME

Please note that this position is contingent upon the successful award of a contract currently under bid.

Goldbelt Nighthawk offers sound solutions in software development and both defensive and proactive cybersecurity. Nighthawk offers an integrated, holistic cybersecurity workforce that is enthusiastic, continuously learning, and progressive. The team is fully committed to implementing dynamic cybersecurity solutions that effectively address the needs of customers. Nighthawk’s flexibility and expertise across the cybersecurity field provides customized solutions to our customer's unique needs. 

Summary:

The Information Systems Security Officer (ISSO) – SME is a recognized expert responsible for leading enterprise-level cybersecurity efforts, advising leadership on risk posture, and driving strategic RMF implementation across complex systems and environments.

Essential Job Functions:

• Provide expert-level guidance to ISSMs, ISSOs, and program leadership on cybersecurity and RMF strategy
• Lead execution and optimization of RMF processes across multiple systems or programs
• Interpret and apply Navy, DON, and DoD cybersecurity policies to complex environments
• Identify systemic risks, compliance gaps, and emerging threats, and develop enterprise mitigation strategies
• Oversee user access validation processes and ensure compliance with clearance and training requirements
• Architect and validate incident response, continuity, and disaster recovery frameworks
• Serve as primary authority for eMASS governance, workflow optimization, and audit readiness
• Direct the documentation, review, and approval of artifacts within the eMASS repository
• Lead and oversee Annual Security Control Reviews (ASRs) and continuous monitoring programs
• Mentor senior and junior cybersecurity personnel and influence organizational cybersecurity best practices

Necessary Skills and Knowledge:

• Deep knowledge of DoD cybersecurity policies, NIST frameworks, and system authorization processes
• Advanced experience with eMASS and enterprise-level cybersecurity management

Minimum Qualifications:

• Minimum 7-8 years of related experience
• Minimum 2 years of experience of the following:
  • Ensuring compliance with DoD-specific, DoN-specific, and NAVSUP-specific RMF services (including RMF package services) and using and complying with the Navy RMF Process Guide version 4.1 (or 4.0 or the latest version) and the NAVSUP FAO RMF Business Rules version 1.0 (or latest version).
  • Ensuring plans and channels are in place for incident response, business continuity, disaster recovery, and vulnerability and threat reporting and that team members are trained accordingly.
  • Ensure relevant policy and procedural documentation is current and accessible to properly authorized individuals.
• Continuous monitoring to include Annual Security Reviews.
• Must have a Tier III Level Clearance

Preferred Qualifications:

• Bachelor’s degree in Cybersecurity, Information Technology, or related field

Pay and Benefits
At Goldbelt, we value and reward our team's dedication and hard work. We provide a competitive base salary commensurate with your qualifications and experience. As an employee, you'll enjoy a comprehensive benefits package, including medical, dental, and vision insurance, a 401(k) plan with company matching, tax-deferred savings options, supplementary benefits, paid time off, and professional development opportunities.