Information Systems Security Officer – ISSO

Role Overview

• Support the Lead Federal ISSO in execution of cybersecurity and RMF activities across client mission systems and enterprise engineering efforts.
• Serve as the engineering-focused cybersecurity SME supporting system modernization, infrastructure deployment, cloud integration, and operational sustainment initiatives.
• Apply knowledge of federal RMF requirements, including NIST 800-37, NIST 800-53, DHS 4300A/B, and federal cybersecurity policies.
• Collaborate within a matrixed project team consisting of network engineers, architects, cloud engineers, system administrators, program managers, and cybersecurity personnel.
• Analyze system architectures, components, interconnections, data flows, and operational changes to assess security impacts and authorization implications.
• Support development, review, and maintenance of RMF artifacts including System Security Plans (SSPs), boundary diagrams, hardware/software inventories, POA&Ms, contingency plans, and configuration management documentation.
• Assist with implementation and oversight of configuration management processes across authorization boundaries.
• Support continuous monitoring activities, vulnerability management, patch compliance, STIG implementation, and remediation tracking.
• Conduct periodic system reviews to ensure compliance with approved security controls and operational requirements.
• Coordinate with engineering teams to ensure cybersecurity controls are integrated into technical designs and deployment activities.
• Support ATO and Continuous ATO (cATO) activities including package preparation, artifact updates, security impact assessments, and audit support.
• Evaluate proposed engineering changes and provide cybersecurity recommendations regarding operational and authorization impacts.
• Support security assessment activities, audit readiness efforts, and customer cybersecurity reviews.
• Assist with cybersecurity documentation updates related to evolving infrastructure and engineering implementation.

Requirements

• Bachelor’s degree in Cybersecurity, Information Technology, Engineering, Computer Science, or related field (or equivalent experience)
• 5+ years of experience supporting RMF, cybersecurity compliance, or ISSO activities within federal civilian environments
• Experience supporting engineering or infrastructure-focused cybersecurity initiatives
• Working knowledge of federal RMF processes and authorization requirements
• Familiarity with NIST security controls, continuous monitoring, vulnerability management, and configuration management practices
• Experience supporting ATO/cATO package development and maintenance
• Understanding of enterprise networking, cloud environments, virtualization, and infrastructure technologies
• Experience working in collaborative, cross-functional engineering environments
• Strong written and verbal communication skills supporting technical and non-technical stakeholders
• Active Secret clearance required.

Tech Stack

• Cloud
• Cyber Security

Benefits

• CyKor is an equal opportunity employer and values diversity in the workplace.
• All qualified applications will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, natural origin, or protected veteran status, and will not be discriminated against on the basis of disability.