ISSE

Description

ISSE

At B&A, we foster and embrace a distinct set of values that we live by and instill in all aspects of our organization: dedication, commitment, partnership, trust, and recognition. We have incorporated these values into successful delivery for our customers since 1988. B&A believes in ensuring its employees feel deeply connected to B&A, recognizing successes and hard work, and providing continuous opportunities to learn and grow. Our people are entrepreneurial thinkers that combine mindset, vision, and experience to drive value - not only to us as an organization, but to the clients we support. We promote a collaborative culture with our clients, and with each other, as one team working towards a common vision. We'd love for you to join our team!

Job Summary

B&A is looking for an ISSE who is responsible for directing and overseeing the full Risk Management Framework (RMF) lifecycle for FBI information systems. This role provides technical leadership to security teams, ensures compliance with NIST and FBI security requirements, and serves as a principal cybersecurity advisor to government stakeholders. The position emphasizes risk-based decision-making, high-quality RMF execution, continuous monitoring, and executive-level communication to maintain secure and compliant IT systems.

Responsibilities

• Lead, mentor, and supervise a team of security professionals supporting FBI IT systems
• Direct end-to-end implementation of the RMF lifecycle across systems and applications
• Oversee RMF Prepare activities, ensuring defined roles, responsibilities, and risk strategies
• Guide system categorization based on mission impact and regulatory requirements
• Direct selection, tailoring, and documentation of security controls aligned with Bureau risk tolerance
• Oversee implementation of technical, operational, and management controls throughout system lifecycles
• Ensure quality, accuracy, and completeness of RMF deliverables and artifacts
• Plan, execute, and document security control assessments to validate control effectiveness
• Prepare authorization and risk management documentation for executive decision-making
• Direct continuous monitoring and ongoing assessment activities, including metrics collection
• Adjust security strategies based on monitoring results to maintain compliance
• Serve as principal technical advisor for cybersecurity risk analysis, incident response, and remediation
• Support audit preparation, execution, and remediation activities
• Provide security guidance, training, and awareness to technical teams and stakeholders
• Track, report, and communicate security posture, risks, and improvement opportunities to leadership
• Maintain current knowledge of RMF, NIST guidance, and cybersecurity best practices

Education and Experience

• Bachelor's degree in Cybersecurity, Information Technology, Computer Science, Engineering, or a related discipline
• Master's degree in a related field preferred
• Extensive experience implementing and managing the RMF lifecycle for federal information systems
• Demonstrated leadership experience supervising cybersecurity or security engineering teams
• Hands-on experience with system categorization, control selection, assessment, and authorization
• Experience supporting federal law enforcement, intelligence, or high-security environments
• Proven experience with continuous monitoring, risk assessment, and compliance reporting
• Experience supporting audits, inspections, and executive authorization decisions

Required Skills

• Risk Management Framework (RMF) lifecycle expertise
• NIST standards and guidance (SP 800-series)
• System categorization and impact analysis
• Security control selection, tailoring, and implementation
• Security control assessment and authorization (A&A)
• Continuous monitoring and metrics-driven security management
• Cybersecurity risk analysis and mitigation
• Incident response and system remediation support
• Technical leadership and team supervision
• Security engineering across system and application lifecycles
• Audit support and compliance management
• RMF documentation and artifact development
• Executive-level communication and reporting
• Training, mentoring, and security awareness development

Security Clearance

• Active Top Secret Clearance

More About B&A:

Notable Clients
B&A has grown to be a company that is trusted by our clients for exceptional service, innovative solutions, and inspired employees. Our service extends through federal, state, and local Government, the private sector, and higher education. Some of our notable clients include Department of Homeland Security, U.S. Customs and Border Protection, U.S. Senate, U.S. Courts, U.S. Census Bureau, U.S. Navy, and more.

Benefits and Programs

B&A is proud to offer three robust individual and family medical plans to full time employees, including a Health Savings Account (HSA) option as well as two tiers of dental coverage, vision, life & AD&D, disability, accident, hospital indemnity, and critical illness insurance. In addition to these benefits, B&A employees enjoy paid time off, B&A sponsored trainings and certifications, pet insurance benefits, commuter transit benefits and a free subscription to a virtual exercise platform (NEOU). B&A's 401(k) plan is available to all employees and includes a company matching contribution.

B&A has launched several programs to focus on employee engagement, wellness, and assistance. These include:

• The B&A Cares program: 30/60/90-day wellness check ins, personal development, financial management, and stress management seminars, and more
• A formal mentorship program
• Job shadowing and cross training opportunities
• Brand Ambassador program
• Employee Assistance Program (EAP) - Access to various support resources to include counseling, legal guidance, financial planning, and more
• Monthly teambuilding events
• B&A Annual Wellness Challenges: #StepWithB&A, #WalkDuringLunchWithB&A, #VolunteeringWithB&A, #ExerciseDuringLunchWithB&A, and more

At B&A, we place significant importance on improving the communities and lives of citizens across the nation through our involvement, technology expertise, and employees. B&A puts an emphasis on charitable efforts in the Northern Virginia area, including Capital Area Food Bank pantry drives, book donations, Hope for Henry Foundation events, and many more. In recognition of all these efforts, B&A has been named a Companies as Responsive Employers (CARE) award recipient by Northern Virginia Family Services and nominated by the Northern Virginia Chamber of Commerce for Outstanding Corporate Citizenship Award.

EEO

B&A provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status, amnesty, or status as a covered veteran in accordance with applicable federal, state and local laws. B&A complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities. This policy covers conduct occurring at B&A's offices, and other workplaces (including client sites) and all other locations where B&A is providing services, and to all work-related activities.

B&A participates in e-Verify. We provide the Social Security Administration (SSA) and, if necessary, the Department of Homeland Security (DHS) with information from each new employee's I-9 Form to confirm work authorization.