Cybersecurity ISSO (Information Systems Security Officer)

Thompson Gray is an Equal Opportunity Employer and VEVRAA Federal Contractor. This contractor and subcontractor shall abide by the requirements of 41 CFR 60-1.4(a), 60-300.5(a) and 60-741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities, and prohibit discrimination against all individuals based on their race, color, religion, sex, gender identity, sexual orientation or national origin. Moreover, these regulations require that covered prime contractors and subcontractors take affirmative action to employ and advance in employment individuals without regard to race, color, religion, sex, gender identity, sexual orientation national origin, protected veteran status or disability. Thompson Gray, Inc. welcomes minority and veteran applicants.

Cybersecurity ISSO (Information Systems Security Officer)

Location: PEO STRI, Orlando, FL

Clearance Required: TS-SCI

Experience: 5 years or more

Work Schedule: Hybrid, In office 2 days a week

Job Summary:

PEO STRI is seeking a highly qualified Cybersecurity Information Systems Security Officer (ISSO) with a TS-SCI clearance and at least 5 years of experience to support our operations in Orlando, FL. The ISSO will be responsible for ensuring the secure operations of all information systems within the organization, including maintaining compliance with DoD security standards and risk management processes.

Key Responsibilities:

• Serve as the primary ISSO for designated systems, ensuring compliance with all relevant cybersecurity policies and regulations.
• Implement, maintain, and enforce security policies, standards, and procedures to protect information systems and data.
• Perform regular security audits, vulnerability assessments, and system hardening to ensure compliance with security requirements.
• Maintain and update system authorization packages, including System Security Plans (SSP), Plan of Actions and Milestones (POA&M), and Risk Assessment Reports.
• Monitor systems for security breaches, incidents, and anomalies, and respond accordingly.
• Work with cross-functional teams, including system administrators, network engineers, and other IT personnel to ensure continuous monitoring of information systems.
• Support Risk Management Framework (RMF) processes, including system categorization, control implementation, and continuous monitoring.
• Provide training and security awareness for system users.

Required Qualifications:

• 5 years of experience in a cybersecurity role with specific experience as an Information Systems Security Officer (ISSO).
• Active TS-SCI clearance is required.
• Strong knowledge of DoD Risk Management Framework (RMF) and other cybersecurity frameworks (e.g., NIST).
• Hands-on experience with security controls, vulnerability management, and incident response.
• Knowledge of system security tools and technologies such as firewalls, IDS/IPS, encryption, and endpoint protection.

Preferred Qualifications:

• Relevant certifications such as CISSP, CAP, Security+, or equivalent.
• Experience working with DoD or government systems.
• Excellent communication skills, both verbal and written, to interact with stakeholders at all levels.
• Ability to work independently and lead cybersecurity initiatives.