Today
Top Secret
Unspecified
Unspecified
IT - Security
McLean, VA (On-Site/Office)
Why choose between doing meaningful work and having a fulfilling life? At MITRE, you can have both. That's because MITRE people are committed to tackling our nation's toughest challenges-and we're committed to the long-term well-being of our employees. MITRE is different from most technology companies. We are a not-for-profit corporation chartered to work for the public interest, with no commercial conflicts to influence what we do. The R&D centers we operate for the government create lasting impact in fields as diverse as cybersecurity, healthcare, aviation, defense, and enterprise transformation. We're making a difference every day-working for a safer, healthier, and more secure nation and world. Our workplace reflects our values. We offer competitive benefits, exceptional professional development opportunities for career growth, and a culture of innovation that embraces adaptability, collaboration, technical excellence, and people in partnership. If this sounds like the choice you want to make, then choose MITRE - and make a difference with us.
Department Summary:
The Cybersecurity Risk Management Department (R311) within the Global Security Services Division (R300) is looking to fill a Senior Information Systems Security Officer position, with a focus on classified environments. The selected candidate will support multiple sponsors by providing Information Assurance and Cybersecurity services specifically for classified systems.
The ideal candidate will thrive in a fast-paced, collaborative environment, working with cutting-edge technology and contributing to advanced security concepts in classified settings. We seek a proactive individual to lead efforts in integrating security into large engineering projects and acquisition initiatives.
Success in this role requires expertise in a wide range of cybersecurity topics, including strategy, planning, policies, procedures, governance, management, protection, detection, mitigation, and cyber and military operations. Strong verbal and written communication skills are essential for presenting findings, making actionable recommendations, and sharing innovative ideas with Senior Government Sponsors.
Roles & Responsibilities:
The selected candidate will be responsible for protecting information systems, networks, and computers from security threats. The candidate will perform tasks such as ensuring cyber security is baked into the design of new/existing operational environments; perform security authorization activities in compliance with Risk Management Framework (RMF) policies and procedures to include System Security Plans (SSPs), Risk Assessment Reports, A&A packages, and Security Controls Traceability Matrix (SCTM). As the ISSM/ISSO, maintain operational security posture to ensure information systems (IS), security policies, standards, and procedures are established and followed. Performs vulnerability/risk assessment analysis to support Assessment & Authorization (A&A). Provides configuration management (CM) expertise for information system security software, hardware, and firmware and coordinates with Systems & Networks engineers, and other stakeholders to ensure fully developed requests are vetted prior to Change Control Board (CCB) meetings. Mentor and train Jr. ISSOs, consult with other MITRE Departments on cybersecurity concerns.
Role & Responsibilities
Basic Qualifications
Preferred Qualifications
This requisition requires the candidate to have a minimum of the following clearance(s):
Top Secret
This requisition requires the hired candidate to have or obtain, within one year from the date of hire, the following clearance(s):
Top Secret
Work Location Type:
Onsite
Commitment to Non-Discrimination
All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, local or international law.
MITRE intends to maintain a website that is fully accessible to all individuals. If you are unable to search or apply for jobs and would like to request a reasonable accommodation for any part of MITRE's employment process, please email recruitinghelp@mitre.org for general support and collegerecruiting@mitre.org for intern positions. This service is for individuals requiring reasonable accommodation requests. Please note that vendor solicitations will not receive a reply.
Benefits information may be found here .
Copyright © 1997-2025, The MITRE Corporation. All rights reserved. MITRE is a registered trademark of The MITRE Corporation. Material on this site may be copied and distributed with permission only.
Department Summary:
The Cybersecurity Risk Management Department (R311) within the Global Security Services Division (R300) is looking to fill a Senior Information Systems Security Officer position, with a focus on classified environments. The selected candidate will support multiple sponsors by providing Information Assurance and Cybersecurity services specifically for classified systems.
The ideal candidate will thrive in a fast-paced, collaborative environment, working with cutting-edge technology and contributing to advanced security concepts in classified settings. We seek a proactive individual to lead efforts in integrating security into large engineering projects and acquisition initiatives.
Success in this role requires expertise in a wide range of cybersecurity topics, including strategy, planning, policies, procedures, governance, management, protection, detection, mitigation, and cyber and military operations. Strong verbal and written communication skills are essential for presenting findings, making actionable recommendations, and sharing innovative ideas with Senior Government Sponsors.
Roles & Responsibilities:
The selected candidate will be responsible for protecting information systems, networks, and computers from security threats. The candidate will perform tasks such as ensuring cyber security is baked into the design of new/existing operational environments; perform security authorization activities in compliance with Risk Management Framework (RMF) policies and procedures to include System Security Plans (SSPs), Risk Assessment Reports, A&A packages, and Security Controls Traceability Matrix (SCTM). As the ISSM/ISSO, maintain operational security posture to ensure information systems (IS), security policies, standards, and procedures are established and followed. Performs vulnerability/risk assessment analysis to support Assessment & Authorization (A&A). Provides configuration management (CM) expertise for information system security software, hardware, and firmware and coordinates with Systems & Networks engineers, and other stakeholders to ensure fully developed requests are vetted prior to Change Control Board (CCB) meetings. Mentor and train Jr. ISSOs, consult with other MITRE Departments on cybersecurity concerns.
Role & Responsibilities
- Lead the design and implementation of cybersecurity measures for classified systems, ensuring security is embedded throughout the system lifecycle.
- Manage the Risk Management Framework (RMF) process, including creating and maintaining System Security Plans (SSPs), Risk Assessment Reports, and other security documentation.
- Serve as the Information Systems Security Manager (ISSM) or Information Systems Security Officer (ISSO), maintaining operational security posture and ensuring compliance with policies, standards, and procedures.
- Conduct vulnerability assessments, risk analysis, and continuous monitoring to strengthen the cybersecurity posture of classified environments.
- Collaborate with system administrators, engineers, and stakeholders to mitigate risks and implement best practices.
- Mentor and develop junior cybersecurity staff, fostering a culture of excellence and innovation.
- Provide subject matter expertise to internal and external partners, supporting the security of advanced technologies.
- Respond to cybersecurity assessments, improve risk ratings, and develop strategic plans for compliance.
Basic Qualifications
- Typically requires a minimum of 5 years of related experience with a B.S. in Computer Science; or 3 years and a Master's degree; or a PhD; or equivalent combination of related education and work experience.
- Active Top Secret clearance.
- Experience implementing RMF, NIST SP 800-53, STIGs, and SCAP Compliance Checker.
- Hands-on experience with tools like eMASS and XACTA.
- Knowledge of classified infrastructure and the A&A process.
- Ability to communicate complex technical concepts clearly to both technical and non-technical audiences.
- Must meet DoD 8570.01M IAM Level III requirements.
- This position has an on-site requirement of 5 days a week on-site.
Preferred Qualifications
- Experience leading cybersecurity initiatives in classified environments.
- Knowledge of emerging IT and cybersecurity technologies.
- Proven ability to advise senior leadership on risk levels, security posture, and policy changes.
- Strong analytical and problem-solving skills, with the ability to develop innovative solutions.
- Experience mentoring junior staff and fostering a collaborative team environment.
- Familiarity with insider threat programs and strategies for mitigating insider risks.
- Expertise in conducting cybersecurity inspections, audits, and self-assessments.
This requisition requires the candidate to have a minimum of the following clearance(s):
Top Secret
This requisition requires the hired candidate to have or obtain, within one year from the date of hire, the following clearance(s):
Top Secret
Work Location Type:
Onsite
Commitment to Non-Discrimination
All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, local or international law.
MITRE intends to maintain a website that is fully accessible to all individuals. If you are unable to search or apply for jobs and would like to request a reasonable accommodation for any part of MITRE's employment process, please email recruitinghelp@mitre.org for general support and collegerecruiting@mitre.org for intern positions. This service is for individuals requiring reasonable accommodation requests. Please note that vendor solicitations will not receive a reply.
Benefits information may be found here .
Copyright © 1997-2025, The MITRE Corporation. All rights reserved. MITRE is a registered trademark of The MITRE Corporation. Material on this site may be copied and distributed with permission only.
group id: 90688979
MITRE | Solving Problems for a Safer World
