Senior Information System Security Officer (ISSO)

Graham Technologies is seeking a Senior Information System Security Officer (ISSO) within the Security Control Liaison Office (SCLO) is responsible for implementing and overseeing advanced information security practices in a classified operational environment. This role includes supporting removable media lifecycle, enforcing insider threat monitoring, managing data transfer programs, and ensuring compliance with FBI security policies and national cybersecurity standards. The ISSO will serve as a key liaison between IT operations, security leadership, and federal security stakeholders, and will play a pivotal role in mitigating risk and enhancing the organization's overall cybersecurity posture.

Location: Vienna, Virginia

Key Responsibilities:

• Removable Media & PED Management
  • Manage, approve, and track the collection, review, and destruction of all removable media and memory components.
  • Conduct semi-annual inventories of removable media.
  • Perform security reviews of external media prior to integration into FBI and TSC systems.
  • Provide technical reviews and registrations for laptops and Portable Electronic Devices (PEDs) entering the secure facility.
• Incident Response & Metrics Reporting
  • Process and track all security incidents, including but not limited to:
    • PED infractions
    • Data spills
    • Misclassification events
  • Provide quarterly and annual Security Incident Reports to the CSO, including trend analysis and risk mitigation recommendations.
  • Support the development of incident response strategies and participate in forensic assessments.
• Insider Threat & Threat Monitoring
  • Monitor Splunk dashboards for insider threat alerts across TSC systems.
  • Report concerns to the Chief Security Officer and Cyber Engineering team in a timely manner.
• Data Transfer Program Oversight
  • Manage the Data Transfer Officer (DTO) Program, ensuring all data movement from Top Secret enclaves is authorized, documented, and secure. Conduct semi-annual inventories of removable media.
• Policy & Compliance Support
  • Review and provide input on Information Security policies, ATO packages, and incident response procedures.
  • Ensure policy alignment with FBI standards, FISMA compliance, and federal cybersecurity mandates.

Required Skills:

• Must possess active DoD Top Secret/SCI CI Poly
• Minimum 5 years of of professional ISSO experience in a secure or classified federal environment.
• At least one of the following certifications: CISSO, CISA, CISM, CISSP.
• Hands on experience and technical expertise in the following::
  • Systems security policies, controls, and compliance frameworks (NIST, ISO 27001, CIS Controls).
  • Threat monitoring tools and platforms (e.g., Splunk, SIEMs).
  • Network security technologies and protocols: firewalls, IDS/IPS, encryption, key management.
  • Security incident response and forensic analysis.
  • Risk assessment, analysis, and mitigation strategies.
  • Windows and Linux operating systems, including hardening and security configurations.
  • System scan tools and compliance validation.
  • Policy development, internal standards, and SOP implementation.
  • Capability to manage operations in a 24/7 secure IT environment.

Compensation:

At Graham Technologies, we believe in treating everyone with fairness and respect. Our compensation package is designed to ensure fair pay for work, reflecting our commitment to integrity.

Many IT companies offer similar services, but what truly sets us apart is our people! We care deeply about our employees and consistently show our appreciation-not just for the final outcomes, but also for the effort and dedication shown every step of the way. Additionally, our generous benefits package supports our team members in living fulfilling and prosperous lives.

Here are just a few highlights of what we offer:

• Four Weeks of Accrued PTO in the First Year
• Eleven Paid Federal Holidays
• Comprehensive Health, Dental, Vision, and Life Insurance
• 401(k) Plan with Annual Employer Contributions
• Flexible Schedules
• Reimbursements for Continued Education and Training

Why Graham Technologies?

Our core values define who we are:

• Value our Customers
• Care about our Employees
• Passionate about Innovation
• Believe in a Strong Work Ethic
• Rely on Teamwork
• Integrity Matters

Founded in 2007, GTech is a consulting services firm passionate about delivering tailored solutions that meet our clients' needs and maximize the value of their investments. We achieve this by providing top-notch professionals across the IT industry. Our team embodies integrity, commitment, and reliability, which are at the heart of everything we do.

We are also dedicated to fostering a culture of support for our employees-the lifeblood of our business. At Graham Technologies, we've built a family-oriented environment where team members are encouraged to maintain a healthy work-life balance, pursue their passions, and grow professionally through flexible schedules, continued education, and a strong sense of community.