Job Requirements
Washington, DC
Top Secret/SCI Polygraph not specified
Career Level not specified
$145,000 - $190,000
Job Description
Role: Information Systems Security Officer (ISSO)
Clearance Requirement: TS/SCI
Work Location: Onsite, Washington, DC metro area (primary location with occasional travel to nearby locations as required)
Role Overview
We are seeking a hands‑on Information Systems Security Officer (ISSO) to support the accreditation, operation, and continuous security of mission‑critical information systems in a government environment. This role is well suited for individuals with backgrounds in systems administration, software engineering, or systems engineering who have transitioned into cybersecurity and compliance.
The ISSO will work closely with engineering and operational teams to ensure security controls are properly implemented, documented, and maintained. This position serves as the primary onsite security representative for one or more government stakeholders, providing guidance on compliance requirements, security posture, and authorization activities across diverse environments.
Systems operated under this role span cloud, on‑prem, and hybrid deployments, and operate at multiple classification levels. Responsibilities are dynamic, and the successful candidate must be comfortable adapting to varying security requirements while maintaining consistent compliance and documentation standards.
Key Responsibilities
Support system authorization efforts by developing, maintaining, and assembling ATO packages and compliance artifacts
Perform and manage continuous monitoring activities for assigned systems
Partner with engineers to analyze system implementations, interpret security requirements, and plan effective control implementations
Independently review vulnerability scan results (e.g., ACAS/Nessus, STIG benchmarks) and manage POA&Ms through remediation
Develop and maintain clear, well‑organized security documentation and evidence repositories
Serve as the primary onsite point of contact for cybersecurity and compliance questions from government stakeholders
Provide policy expertise, audit support, and high‑quality deliverables throughout the system lifecycle
Required Qualifications
Background in systems administration, software development, systems engineering, or strong Linux experience
Demonstrated experience accrediting IT systems against U.S. Government security standards
Hands‑on experience applying DoD security standards, including NIST SP 800‑53, CNSSI 1253, and DISA STIGs
Experience using RMF‑based frameworks such as DoD RMF, ICD 503, or DIACAP
Familiarity with ATO documentation, including SSPs, POA&Ms, and supporting artifacts
Practical experience using eMASS or Xacta accreditation management tools
Active DoD 8570 / 8140 IAT Level II certification (e.g., Security+, CISSP)
Desired Skills & Experience
Ability to analyze software and infrastructure implementations against security requirements
Working knowledge of configuration management and automation tools (e.g., Ansible, Terraform, Puppet, Chef, or CloudFormation)
Comfort using version control systems such as Git
Experience operating in cloud and on‑prem environments, including commercial cloud platforms
Familiarity with vulnerability scanning tools such as Nessus and OpenSCAP
Strong attention to detail with the ability to produce clear, concise technical documentation
Work Environment & Expectations
Full‑time onsite presence in the DC metropolitan area (5 days per week)
Willingness to travel domestically and internationally up to approximately 25% as mission needs require
Operate independently while coordinating closely with distributed engineering and security teams
Clearance Requirement
Active TS/SCI clearance required
Clearance Requirement: TS/SCI
Work Location: Onsite, Washington, DC metro area (primary location with occasional travel to nearby locations as required)
Role Overview
We are seeking a hands‑on Information Systems Security Officer (ISSO) to support the accreditation, operation, and continuous security of mission‑critical information systems in a government environment. This role is well suited for individuals with backgrounds in systems administration, software engineering, or systems engineering who have transitioned into cybersecurity and compliance.
The ISSO will work closely with engineering and operational teams to ensure security controls are properly implemented, documented, and maintained. This position serves as the primary onsite security representative for one or more government stakeholders, providing guidance on compliance requirements, security posture, and authorization activities across diverse environments.
Systems operated under this role span cloud, on‑prem, and hybrid deployments, and operate at multiple classification levels. Responsibilities are dynamic, and the successful candidate must be comfortable adapting to varying security requirements while maintaining consistent compliance and documentation standards.
Key Responsibilities
Support system authorization efforts by developing, maintaining, and assembling ATO packages and compliance artifacts
Perform and manage continuous monitoring activities for assigned systems
Partner with engineers to analyze system implementations, interpret security requirements, and plan effective control implementations
Independently review vulnerability scan results (e.g., ACAS/Nessus, STIG benchmarks) and manage POA&Ms through remediation
Develop and maintain clear, well‑organized security documentation and evidence repositories
Serve as the primary onsite point of contact for cybersecurity and compliance questions from government stakeholders
Provide policy expertise, audit support, and high‑quality deliverables throughout the system lifecycle
Required Qualifications
Background in systems administration, software development, systems engineering, or strong Linux experience
Demonstrated experience accrediting IT systems against U.S. Government security standards
Hands‑on experience applying DoD security standards, including NIST SP 800‑53, CNSSI 1253, and DISA STIGs
Experience using RMF‑based frameworks such as DoD RMF, ICD 503, or DIACAP
Familiarity with ATO documentation, including SSPs, POA&Ms, and supporting artifacts
Practical experience using eMASS or Xacta accreditation management tools
Active DoD 8570 / 8140 IAT Level II certification (e.g., Security+, CISSP)
Desired Skills & Experience
Ability to analyze software and infrastructure implementations against security requirements
Working knowledge of configuration management and automation tools (e.g., Ansible, Terraform, Puppet, Chef, or CloudFormation)
Comfort using version control systems such as Git
Experience operating in cloud and on‑prem environments, including commercial cloud platforms
Familiarity with vulnerability scanning tools such as Nessus and OpenSCAP
Strong attention to detail with the ability to produce clear, concise technical documentation
Work Environment & Expectations
Full‑time onsite presence in the DC metropolitan area (5 days per week)
Willingness to travel domestically and internationally up to approximately 25% as mission needs require
Operate independently while coordinating closely with distributed engineering and security teams
Clearance Requirement
Active TS/SCI clearance required
group id: kforcecx
We offer roles across all three clearance levels: Confidential, Secret and Top Secret. With a Top Secret Facilities clearance, a proven subcontractor track record and a deep understanding of agencies across Defense, Intelligence, Homeland, Justice and Federal Civilian Sectors, Kforce brings more than 20 years of experience to supporting critical missions at federal, state and local levels.
