June 17, 2026For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above. If you received an email purporting to be from Leidos that asks for payment-related information or any other personal information (e.g., about you or your previous employer), and you are concerned about its legitimacy, please make us aware immediately by emailing us at LeidosCareersFraud@leidos.com.
Gaithersburg, MD8 days ago
The ISSO is responsible for meeting regulatory and non-regulatory compliance (security best practices) demands, providing leadership over security assessment activities, working across system ownership and management organizations to test security controls, policies, and procedures, providing program management support, team leadership, and participating in and coordinating the support as needed for security assessment and activities The ISSO also manages and enforces government and corporate information security policies, provides training, and educates end users and program staff about proper security practices. The ISSO conducts security and risk assessments as required using a range of security accreditation frameworks (e.g., NIST, RMF, Common Criteria, DoD, the Intelligence Community Directives (ICDs)), and works to mitigate risks by applying security controls effectively to achieve an acceptable degree of operational risk.
June 25, 2026For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above. It's a better process: facilitating a continuous ATO through real-time monitoring and dashboards that provide single pane of glass visibility into control compliance, zero-trust built-in to system design from day one, continuous evidence that gives auditors real-time proof instead of point-in-time packages, and an ATO that program teams can inherit rather than pursue.
Fort Belvoir, VA5 days ago
li>Facilitated multiple MDA SAPCO working groups to drive policy alignment, process improvement, and inter-directorate coordination, while maintaining program record and DOD-required office files in strict accordance with DODI 5205.11. The Contractor SAP Security Officer (CSSO) – Journeyman will support our government customer by developing, implementing, and managing comprehensive protection strategies across multi-disciplined security environments.
The enforced dress code is business casual, i.e., collared shirt with slacks for men, no skirts above the knee for women.
• Collaborate with security engineers, compliance officers, and business managers to ensure policies are both technically sound and operationally practical.
The successful candidate will possess strong operational judgment, exceptional communication skills, and extensive experience supporting intelligence, continuity of operations (COOP), emergency management, or national security missions in a high-tempo environment. This position serves as a key member of a 24/7 Mission Operations Center or (MOC) providing situational awareness, incident response coordination, continuity operations support, and executive-level reporting to ensure mission readiness during routine operations and crisis events.
June 2, 2026For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above. If you received an email purporting to be from Leidos that asks for payment-related information or any other personal information (e.g., about you or your previous employer), and you are concerned about its legitimacy, please make us aware immediately by emailing us at LeidosCareersFraud@leidos.com.
Conduct ISR/CPSO duties in the following areas: Management, maintenance and accreditation preservation of Open Storage Spaces (OSS) and Sensitive Compartmented Information Facilities (SCIFs).Processing of Prime and Sub DD254s; escorting uncleared personnel/visitors; update and maintain facility checklists; conduct routine/annual inspections; maintain databases; respond to emerging security-related issues; process outgoing visit requests and validate incoming visit requests; • Conduct Personnel Security processing actions including requesting, reviewing, approving, and submitting clearances packages up to and including SCI nomination packages in accordance with customer requirements. May 29, 2026For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.
HII - Mission Technologies is currently seeking a Senior Information System Security Officer (ISSO) to work out of Fairfax, VA in support of the DoD/DoW Advana War Data Platform designed to aggregate operational, intelligence, logistics, and sensor data from multiple domains, enable Joint All-Domain Command and Control (JADC2) by providing a common data fabric, and support AI/ML applications for predictive analytics, targeting, and mission planning. • 10 years relevant experience with Bachelors in related field; 7 years relevant experience with Masters in related field; 4 years relevant experience with PhD or Juris Doctorate in related field; or High School Diploma or equivalent and 13 years relevant experience.
May 28, 2026For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above. If you received an email purporting to be from Leidos that asks for payment-related information or any other personal information (e.g., about you or your previous employer), and you are concerned about its legitimacy, please make us aware immediately by emailing us at LeidosCareersFraud@leidos.com.
Annapolis Junction, MD8 days ago
March 16, 2026For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above. The selected individual will lead all security engineering efforts for a large, complex network environment with geographically distributed systems; and will manage a team of Information Systems Security Officers (ISSOs) and Information Systems Security Engineers (ISSEs), providing technical leadership and direction to meet program requirements.
p/>As an integral member of the team, you will work closely with DTP Program Management, Task Order Leads, and Security and System Engineers on the following key tasks:
- Provide management oversight and coordination of DTP Security Team across multiple Task Orders with a focus on streamlining ATO management processes with engineering solutions and best practice efficiencies . June 24, 2026
For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.
May 7, 2026For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above. If you received an email purporting to be from Leidos that asks for payment-related information or any other personal information (e.g., about you or your previous employer), and you are concerned about its legitimacy, please make us aware immediately by emailing us at LeidosCareersFraud@leidos.com.
HII - Mission Technologies is currently seeking a SME Information System Security Manager (ISSM) to work out of Fairfax, VA in support of the DoD/DoW Advana War Data Platform designed to aggregate operational, intelligence, logistics, and sensor data from multiple domains, enable Joint All-Domain Command and Control (JADC2) by providing a common data fabric, and support AI/ML applications for predictive analytics, targeting, and mission planning. • 15 years relevant experience with Bachelors in related field; 13 years relevant experience with Masters in related field; 10 years relevant experience with PhD or Juris Doctorate in related field; or High School Diploma or equivalent and 19 years relevant experience.
li>Self-driven analytical thinker capable of managing priorities in fast-paced environments and delivering technical briefings to senior government organizations (including Officer, Enlisted, and Civilian personnel); highly proficient with the Microsoft Family of Software and Tools (Office, Visio, SharePoint, Project) alongside development/task management capabilities like Jira and Confluence. - Familiarity with the Marine Corps Operational Test and Evaluation Activity (MCOTEA), including the MCOTEA Operational Test & Evaluation Manual (6th Edition); experience planning Field User Evaluations and Joint Service Exercise events incorporating Electronic Warfare and Intelligence collection platforms under the Risk Management Framework (RMF).
Our capabilities range from C5ISR, AI and Big Data, cyber operations and synthetic training environments to fleet sustainment, environmental remediation and the largest family of unmanned underwater vehicles in every class. Our workforce includes skilled tradespeople; artificial intelligence, machine learning (AI/ML) experts; engineers; technologists; scientists; logistics experts; and business administration professionals.
Washington, DC30+ days ago
The CSPO, as the liaison, must effectively communicate with senior leaders and be knowledgeable of all security pillars: Physical security, Industrial Security, Information Security, personnel security, and Cyber Security; Development of Program Protection Plans, OPSEC Plans, SOPS, SSAs and Transportation plans. Industrial Security Analyst 2 : 3 years relevant experience with Bachelors in related field; 1 year relevant experience with Masters in related field; or High School Diploma or equivalent and 7 years relevant experience.
HII - Mission Technologies is currently seeking a Senior Zero Trust Compliance Officer to work out of Fairfax, VA in support of the DoD/DoW Advana War Data Platform designed to aggregate operational, intelligence, logistics, and sensor data from multiple domains, enable Joint All-Domain Command and Control (JADC2) by providing a common data fabric, and support AI/ML applications for predictive analytics, targeting, and mission planning. • 10 years relevant experience with Bachelors in related field; 7 years relevant experience with Masters in related field; 4 years relevant experience with PhD or Juris Doctorate in related field; or High School Diploma or equivalent and 13 years relevant experience.
The employees supporting our customers deliver unique, high-value mission solutions while effectively leveraging the technological expertise of our valued workforce to meet critical mission requirements in the areas of Data Analytics and Software Development, Engineering, Targeting and Analysis, Operations, Training, and Cyber Operations. As an Information Security Analyst performing as an Information Systems Security Officer (ISSO), a typical day will include the following duties: - Performs audit log analysis, report generation and brief findings to Senior Management.
The entire section leverages agile and works to provide enhanced reporting and global searching capabilities to facilitate task management, cross-utilization, and address national intelligence priorities while protecting confidential data and sources. As appropriate, each employee is responsible for completing all training requirements and fulfilling all self-aid/buddy aid responsibilities, participating in emergency response tasks and serving on safety committees and teams.
p>Minimum Requirements (Knowledge, Skills, and Abilities): - Minimum of 7 years of experience collectively with the following:
- Proven work experience as an Information Systems Security Officer or a similar role, preferably in a complex organizational setting. The entire section leverages agile and works to provide enhanced reporting and global searching capabilities to facilitate task management, cross-utilization, and address national intelligence priorities while protecting confidential data and sources.
li>Translating "Geek to Greek": The unique ability to explain a highly complex technical vulnerability to a non-technical Board member or leadership team using simple, non-alarmist analogies. - Hands-on & Strategic Balance: Proven track record of operating at a high strategic level with the ability to "roll up your sleeves" to troubleshoot complex architectural issues, infrastructure outages, or urgent security incidents alongside engineers.
Perform and support risk assessments, threat and vulnerability management, audits, and incident response activities, serving as a domain expert in coordination with the Computer Security Incident Response Team (CSIRT). What you will be doing: Acting as the primary information security partner to assigned business lines and operating companies, providing risk insights and practical mitigation guidance to strengthen the enterprise cybersecurity posture.
The role also supports the ability to maintain assurance in our technical security controls, especially on the Cloud, so that risks to the confidentiality, integrity, and availability of the bank's information systems and infrastructure are sufficiently mitigated which in turn, supports the bank's operational and compliance goals. City First Bank N.A. is a mission-driven Community Development Financial Institution (CDFI) principally focused on a transformative impact in underserved, urban markets with the highest needs to drive equitable economic development.
Washington, DC30+ days ago
Contribute to the ongoing information security initiatives and improvements, development, implementation, and maintenance of information security for FLUOps Serves as an Information Security subject matter expert and participates in the development, implementation, and maintenance of information security for FLUOps Provides guidance and advocacy regarding the prioritization of investments that impact information security Advises management on risk issues related to information security and recommends actions in support of the banks wider risk management and compliance programs Monitors information security trends, internal and external to the bank, and keeps leadership informed Manages quality control and reporting Ensures compliance with policies and laws. Drives GISFLUOps risk deliverables Collaborates with risk partners on info security critical priorities Participates in senior FLUOps specific Risk Management & Business Continuity Routines Identifies and measures global information security GIS controls on most critical business processes or channels.
Washington, DC30+ days ago
The selected incumbent will be responsible for ensuring the confidentiality, integrity, and availability of enclave systems, networks, and data, including Controlled Unclassified Information (CUI), in accordance with federal cybersecurity requirements and institutional policies. We are searching for a Senior Information Security Officer (SISO) who will provide leadership and oversight for cybersecurity operations within a designated secure enclave supporting federally sponsored research.
Washington, District of Columbia8 days ago
li>Provide leadership supporting a team to streamline and maintain a modern compliance model for cybersecurity safeguards, including access controls, MFA, encryption, asset classification, change management, patch management, network segmentation, firewalls, detection technologies including network and endpoint security, insider threat protection, logging and network monitoring, and vulnerability management.
Proactively identify, assess, and prioritize IT risks to data and systems in coordination with OT portfolio management and OERM including internal/external threats, cyber-crimes, and vendor/third-party risks; partner with OERM or relevant stakeholders on the appropriate courses of action to mitigate or eliminate risk.
The incumbent directs cybersecurity operations, security monitoring, threat assessment, incident response, cyber continuity planning, and resiliency initiatives across on-premises, cloud, and externally hosted environments supporting County applications, infrastructure, communications, endpoints, and data systems. OIT will provide leadership, expertise, and resources in the ideation, development, and deployment of innovative technologies and streamlined processes to improve government efficiency, business interaction, and citizen access to government information and services.
This includes following Ntiva's IT User and Security Policies that include but are not limited to password-protecting all equipment, keeping confidential and proprietary documents secure, refraining from using public Wi-Fi, having adequate arrangements in place to avoid significant interruptions from caregiving responsibilities during work hours (except in emergency situations with manager approval). Provide direct support to Sales and Account Management teams during CMMC and broader compliance discussions with prospective and existing clients, including but not limited to client calls, strategy sessions, and proposal development.
The Senior ISSO will ensure proper access controls are implemented for both system access and physical access to data processing facilities, track and suggest technologies, processes, and practices designed to protect networks, devices, programs, and data from malicious attack, damage, or unauthorized access, and research and maintain proficiency in tools, techniques, countermeasures, and trends in computer and network vulnerabilities, data hiding, and network and device security and encryption. Critical deliverables include preparing Security Test Plans 90 days prior to testing and Security Test Reports within 15 days after testing, generating Risk Assessment Reports within 0 to 15 days after analysis completion, and producing Weekly Activity Reports and Monthly Program Reports to track progress and compliance.
Critical deliverables include preparing Security Test Plans 90 days prior to testing and Security Test Reports within 15 days after testing, generating POA&Ms within 0 to 15 days after vulnerability identification, and updating System Security Plans, Configuration Management Plans, and Contingency Plans annually or when changes occur. This position requires following the Information Systems Security Officer (ISSO) Guide when developing, updating, or reviewing required security artifacts and tracking and suggesting technologies, processes, and practices designed to protect networks, devices, programs, and data from malicious attack, damage, or unauthorized access.
Arlington, VA30+ days ago
This position ensures information systems security compliance and manages security controls for DoD cloud migration projects while coordinating security accreditation activities and maintaining ongoing security posture. INFORMATION SYSTMES SECURITY OFFICER - CLOUD SECURITY SPECIALIST (NAUT): Bowhead seeks an Information Systems Security Officer (ISSO Cloud) to support our customer on the Nautical contract in the Arlington, VA area.
We recommend that your resume includes examples that are clear, concise, and emphasize their level of responsibilities, the scope and complexity of the programs, activities, or services managed; program accomplishments; policy initiatives undertaken; level of contacts; the sensitivity and criticality of the issues addressed; and the results of actions taken. If you are currently serving under a career Senior Executive Service appointment, are eligible for reinstatement into the Senior Executive Service, or have completed a Senior Executive Service Candidate Development Program (SES CDP) approved by OPM, you only need to submit a two-page resume and personnel action showing you have held a career SES position.
Mt. Weather, VA30 days ago
Responsibilities: The Intermediate Information System Security Officer (ISSO) shall provide support to the designated Information System Security Officer (ISSO) to ensure customer systems maintain their Authority to Operate (ATO) with a security posture in accordance with DHS 4300A and NIST SP guidance. Pay Range: There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications.
Washington Dc, District of Columbia15 days ago
Critical deliverables include preparing Security Test Plans 90 days prior to testing and Security Test Reports within 15 days after testing, generating POA&Ms within 0 to 15 days after vulnerability identification, and updating System Security Plans, Configuration Management Plans, and Contingency Plans annually or when changes occur. This position requires following the Information Systems Security Officer (ISSO) Guide when developing, updating, or reviewing required security artifacts and tracking and suggesting technologies, processes, and practices designed to protect networks, devices, programs, and data from malicious attack, damage, or unauthorized access.
Washington Dc, District of Columbia15 days ago
The Senior ISSO will ensure proper access controls are implemented for both system access and physical access to data processing facilities, track and suggest technologies, processes, and practices designed to protect networks, devices, programs, and data from malicious attack, damage, or unauthorized access, and research and maintain proficiency in tools, techniques, countermeasures, and trends in computer and network vulnerabilities, data hiding, and network and device security and encryption. Critical deliverables include preparing Security Test Plans 90 days prior to testing and Security Test Reports within 15 days after testing, generating Risk Assessment Reports within 0 to 15 days after analysis completion, and producing Weekly Activity Reports and Monthly Program Reports to track progress and compliance.
ITSO manages the judiciarys IT security program; promotes the confidentiality, integrity, and availability of the judiciarys IT; oversees the judiciarys security operations; proposes national IT security policies; and establishes collaborative relationships with third-party partners to ensure the judiciarys IT security. Court Name/Organization Administrative Office of the U.S. Courts Overview of the Position The Deputy Chief Information Security Officer position is in the Department of the Chief Information Office (DCIO), Information Technology Security Office (ITSO).
HII - Mission Technologies is currently seeking a Senior Information System Security Officer (ISSO) to work out of Fairfax, VA in support of the DoD/DoW Advana War Data Platform designed to aggregate operational, intelligence, logistics, and sensor data from multiple domains, enable Joint All-Domain Command and Control (JADC2) by providing a common data fabric, and support AI/ML applications for predictive analytics, targeting, and mission planning. Requirements: • 10 years relevant experience with Bachelors in related field; 7 years relevant experience with Masters in related field; 4 years relevant experience with PhD or Juris Doctorate in related field; or High School Diploma or equivalent and 13 years relevant experience.
p>The Senior ISSO will leverage their strong technical background and knowledge to support accreditation efforts, to include creating Body of Evidence (BOE) documentation, responding to/implementing/documenting required controls, and completing required tasks and actions. There are differentiating factors that can impact a final salary/hourly rate, including, but not limited to, Contract Wage Determination, relevant work experience, skills and competencies that align to the specified role, geographic location (For Remote Opportunities), education and certifications as well as Federal Government Contract Labor categories.
There are differentiating factors that can impact a final salary/hourly rate, including, but not limited to, Contract Wage Determination, relevant work experience, skills and competencies that align to the specified role, geographic location (For Remote Opportunities), education and certifications as well as Federal Government Contract Labor categories. As an ISSO, you will work alongside customers, Integrated Product Teams (IPTs), and vendors to support the implementation and compliance of advanced EIT capabilities through Data Center & Compute Services.
Arlington, VA30+ days ago
Minimum of 16+ years of information security experience with demonstrated expertise in cloud security• Minimum of 5+ years of DoD security experience in enterprise environments• Minimum of 3+ years of hands-on experience with cloud security frameworks and implementations• Complete understanding and experience implementing requirements of the NISPOM and ICDs• Knowledge of cloud security principles and FedRAMP requirements• Meets the Core and Additional Knowledge, Skills, and Abilities Tasks (KSATs) defined in the DoD Cyber Workforce Framework• Demonstrated ability to develop solutions to complex security problems• Proven ability to work in fast-paced, deadline-driven environments• Excellent verbal and written communication skills for technical and executive audiences• Recent experience with security management policies and procedures• Proficiency with Microsoft Office Suite and security management tools. CERTIFICATION REQUIREMENTS:
Required: CISSP, CISM, or equivalent DoD Directive 8570 compliant certification; CompTIA Security+Desired: GCIH, GSEC, CISSP, CISA, FITSP-M, GCSA, GISF, SSCP, CEH, or other advanced security certifications.
Washington, Washington, DC4 days ago
li>Review, update, and deliver enterprise privacy training programs, including privacy awareness, advanced privacy training, records management, data collection practices, and role-based training models tailored to Legislative Branch versus DoD applicability. The successful candidate will ensure information systems meet security requirements and will lead and support ongoing privacy-related activities, including the development, implementation, maintenance, and enforcement of federal and organizational policies and procedures governing the protection of Personally Identifiable Information (PII) and other sensitive data.
li style="font-family:'helvetica' , 'arial' , sans-serif">Develop, review, and maintain accreditation artifacts including System Security Plans (SSPs), Security Assessment Reports (SARs), Risk Assessments, and POA&Ms. - Bachelor's Degree, or more advanced degree, in Information Technology, Computer Science, Cybersecurity, Computer Engineering, or Information Systems or related field .
Herndon, Virginia30+ days ago
Visit peraton.com to learn how we’re keeping people around the world safe and secure. Peraton Overview: Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy.
This role supports both hands-on RMF execution and security compliance efforts, ensuring systems remain authorized and aligned with federal requirements. - 35+ years of experience in IT or cybersecurity roles, with at least 1 year supporting ISSO or security compliance functions.
There are multiple factors that are considered in determining final pay for a position, including, but not limited to, relevant work experience, skills, certifications and competencies that align to the specified role, education and certifications as well as contract provisions regarding labor categories that are specific to the position and could fall outside of this range. - National Resilience – supporting agencies such as Federal Deposit Insurance Corporation (FDIC), Treasury, Health & Human Services (HHS), National Institutes of Health (NIH), National Oceanic and Atmospheric Administration (NOAA) and the United States Department of Agriculture (USDA).
p>The Lead ISSO reports to the Security Program Management Office (SPMO) Manager and is responsible for leading a small team supporting system security, authorization, continuous monitoring, and risk management functions across assigned systems. By providing the information below and checking the boxes referenced, you acknowledge and consent to SAIC''s Privacy Policy to include access and use of your information for the purposes of sharing your information for possible employment recruitment effects by SAIC and it''s third party vendors.
p>Pay Range: There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. We are seeking an experienced Information System Security Officer (ISSO) to help protect, maintain, and strengthen the security posture of complex systems that support high‑priority intelligence programs.
Laurel, Maryland30+ days ago
div class="content">Information Assurance, IAVA, System Security Plans (SSPs), RMF, Windows, Linux, Authorization to Operate, Verification and Validation, Security+, Security X, CASP+, NIST 800-53
Due to federal contract requirements, United States citizenship and an active TS/SCI security clearance and polygraph are required for the position.
.
These Qualifications Would Be Nice to Have: - Extensive experience as an Information Systems Security Officer on large software development and integration programs.
Chantilly, VA30+ days ago
Fusion Technology is a performance-driven HUBZone Small Business concern residing in the heart of the beautiful mountainsides of West Virginia, steps away from the Federal Bureau of Investigation's Criminal Justice Information Services Division's Headquarters. Education and Experience: You have a Bachelor's Degree in a related field or an advanced degree in Cybersecurity with 5+ years of experience in within information security or risk management supporting multi-domain SAP or SCI environments.