Today
Secret
IT - Security
Position: Information System Security Manager/Officer (ISSM / ISSO)
Location: Remote
Clearance Level: Secret or higher
Summary:
3 Reasons Consulting is seeking a highly skilled and mission-driven Information System Security Manager/Officer (ISSM / ISSO) to support cybersecurity operations and compliance across Defense Health Agency (DHA) networks and systems. The ideal candidate will have deep expertise in the Risk Management Framework (RMF), continuous monitoring, and federal cybersecurity mandates, with hands-on experience using core DoD cybersecurity tools.
Key Responsibilities:
Implement and manage the Risk Management Framework (RMF) lifecycle for Defense Health Agency (DHA) networks and systems.
Conduct continuous monitoring activities to ensure ongoing security posture and compliance.
Develop, maintain, and enforce cybersecurity policies, procedures, and standards.
Ensure systems adhere to NIST SP 800-series guidelines and FISMA requirements.
Prepare and maintain security documentation including System Security Plans (SSPs), POA&Ms, and Security Assessments.
Collaborate with system owners, developers, and stakeholders to identify and mitigate security risks.
Support security control assessments and vulnerability remediation efforts.
Manage and update cybersecurity artifacts in eMASS.
Perform vulnerability scans and analysis using ACAS.
Monitor compliance metrics and reporting via CMRS.
Configure and manage endpoint security using ESS.
Required Qualifications:
U.S. Citizenship and active DoD security clearance (Secret or higher).
10+ years of experience in cybersecurity or information assurance roles.
Proven experience with RMF implementation and continuous monitoring strategies.
Strong understanding of NIST SP 800-53, NIST SP 800-37, and FISMA compliance.
Hands-on experience with the following DoD cybersecurity tools:
eMASS (Enterprise Mission Assurance Support Service)
ACAS (Assured Compliance Assessment Solution)
CMRS (Cybersecurity Metrics Reporting System)
ESS (Endpoint Security Solutions)
Familiarity with DoD cybersecurity policies, STIGs, and IAVAs.
Excellent communication and documentation skills.
Benefits at 3 Reasons Consulting
Company-Paid Benefits:
Short/Long Term Disability
Basic Life Insurance
Direct Payroll Deposit
Leave Accrual
Holidays
401(k) Match
Employee / Company Shared Benefits:
Additional (Voluntary) Life Insurance
401(k)
Medical Coverage
Dental Coverage
Vision Care Plan
Flexible Spending Account Plan
Equal Opportunity Employer Statement
3 Reasons Consulting is an Equal Opportunity Employer. We are committed to providing a workplace free from discrimination and harassment and hold all employees accountable to protect this mission. We do not discriminate based on race, color, gender, religion, national origin, sexual orientation, age, marital status, veteran status, military status, disability status, or any other characteristic protected by federal, state, or local law. All applicants receive consideration for employment without regard to protected bases.
Location: Remote
Clearance Level: Secret or higher
Summary:
3 Reasons Consulting is seeking a highly skilled and mission-driven Information System Security Manager/Officer (ISSM / ISSO) to support cybersecurity operations and compliance across Defense Health Agency (DHA) networks and systems. The ideal candidate will have deep expertise in the Risk Management Framework (RMF), continuous monitoring, and federal cybersecurity mandates, with hands-on experience using core DoD cybersecurity tools.
Key Responsibilities:
Implement and manage the Risk Management Framework (RMF) lifecycle for Defense Health Agency (DHA) networks and systems.
Conduct continuous monitoring activities to ensure ongoing security posture and compliance.
Develop, maintain, and enforce cybersecurity policies, procedures, and standards.
Ensure systems adhere to NIST SP 800-series guidelines and FISMA requirements.
Prepare and maintain security documentation including System Security Plans (SSPs), POA&Ms, and Security Assessments.
Collaborate with system owners, developers, and stakeholders to identify and mitigate security risks.
Support security control assessments and vulnerability remediation efforts.
Manage and update cybersecurity artifacts in eMASS.
Perform vulnerability scans and analysis using ACAS.
Monitor compliance metrics and reporting via CMRS.
Configure and manage endpoint security using ESS.
Required Qualifications:
U.S. Citizenship and active DoD security clearance (Secret or higher).
10+ years of experience in cybersecurity or information assurance roles.
Proven experience with RMF implementation and continuous monitoring strategies.
Strong understanding of NIST SP 800-53, NIST SP 800-37, and FISMA compliance.
Hands-on experience with the following DoD cybersecurity tools:
eMASS (Enterprise Mission Assurance Support Service)
ACAS (Assured Compliance Assessment Solution)
CMRS (Cybersecurity Metrics Reporting System)
ESS (Endpoint Security Solutions)
Familiarity with DoD cybersecurity policies, STIGs, and IAVAs.
Excellent communication and documentation skills.
Benefits at 3 Reasons Consulting
Company-Paid Benefits:
Short/Long Term Disability
Basic Life Insurance
Direct Payroll Deposit
Leave Accrual
Holidays
401(k) Match
Employee / Company Shared Benefits:
Additional (Voluntary) Life Insurance
401(k)
Medical Coverage
Dental Coverage
Vision Care Plan
Flexible Spending Account Plan
Equal Opportunity Employer Statement
3 Reasons Consulting is an Equal Opportunity Employer. We are committed to providing a workplace free from discrimination and harassment and hold all employees accountable to protect this mission. We do not discriminate based on race, color, gender, religion, national origin, sexual orientation, age, marital status, veteran status, military status, disability status, or any other characteristic protected by federal, state, or local law. All applicants receive consideration for employment without regard to protected bases.
group id: 91091531
