Today
Dept of Homeland Security
Unspecified
Unspecified
IT - Security
Washington, DC (On-Site/Office)
Who we are:
ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a "work hard, play hard" mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.
The Perks:
As recognized members of the Cyber Elite, we work together in partnership to defend our nation's critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.
Who we're looking for:
We are seeking a Senior Information Systems Security Officer (ISSO) with deep hands-on experience supporting the Risk Management Framework (RMF) lifecycle. The ideal candidate will bring expertise in applying federal security policies, directives and compliance standards while guiding systems through authorization and continuous monitoring. The Sr. ISSO role is critical to ensuring systems remain secure, compliant and fully authorized to operate. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market.
What you'll be doing:
What you need to know:
Must have's:
Beneficial to have the following:
Where it's done:
ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a "work hard, play hard" mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.
The Perks:
As recognized members of the Cyber Elite, we work together in partnership to defend our nation's critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.
Who we're looking for:
We are seeking a Senior Information Systems Security Officer (ISSO) with deep hands-on experience supporting the Risk Management Framework (RMF) lifecycle. The ideal candidate will bring expertise in applying federal security policies, directives and compliance standards while guiding systems through authorization and continuous monitoring. The Sr. ISSO role is critical to ensuring systems remain secure, compliant and fully authorized to operate. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market.
What you'll be doing:
- Provide subject matter expertise to ensure compliance with Treasury, DHS and NIST cybersecurity policies and frameworks.
- Support the implementation, assessment and sustainment of security controls aligned with the NIST RMF (SP 800-37).
- Maintain and update required security documentation including System Security Plans (SSPs), Security Assessment Reports (SARs), Plans of Action and Milestones (POA&Ms) and continuous monitoring artifacts.
- Review and analyze vulnerability and compliance scan results and work with system owners to track and coordinate remediation.
- Support system owners in achieving and maintaining Authorization to Operate (ATO) status.
- Apply knowledge of FS-191, CNSSI 1253, operational directives and NIST SP 800-53 Rev 4 & Rev 5 controls.
- Develop and deliver compliance reports to demonstrate control effectiveness and overall system cybersecurity posture.
- Collaborate with system owners, ISSMs and internal/external partners to strengthen risk reduction and resilience.
- Contribute to process improvements that align with OIG FISMA Metrics Level 4 (Managed and Measurable).
What you need to know:
- Strong knowledge of NIST RMF (SP 800-37), NIST SP 800-53 Rev 4 & Rev 5, CNSSI 1253, FS-191 and operational directives.
- Hands-on experience with vulnerability scanning tools and interpreting scan results.
- Demonstrated expertise in developing and maintaining security authorization packages and compliance documentation.
- Experience implementing and sustaining information assurance (IA) controls in federal environments.
- Strong understanding of continuous monitoring practices and reporting requirements.
Must have's:
- Bachelor's degree or additional 4+ years of relevant experience or years of relevant experience in lieu of degree.
- 8+ years of experience maintaining the operational security posture for an information system or program as an ISSO or ISSM.
- Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
- Must be a U.S. citizen in compliance with federal contract.
Beneficial to have the following:
- Industry recognized certifications.
Where it's done:
- Onsite (Washington, DC).
group id: 91085370
