Senior Information Systems Security Officer (ISSO)

AMERICAN SYSTEMS is hiring a Sr Information Systems Security Officer to support mission-critical DoD systems at Whidbey Island, Washington. This role is suited for a TS/SCI-cleared security professional with strong RMF and JSIG experience who partners closely with ISSMs and AOs to maintain a compliant, resilient security posture across complex environments.

As a Sr Information Systems Security Officer with AMERICAN SYSTEMS, you will have the opportunity to:

Maintain the operational security posture of assigned information systems in close coordination with the ISSM, ISO, and AO/DAO

• Prepare, review, and update RMF authorization packages, including continuous monitoring activities

• Conduct security impact analyses for configuration changes within authorization boundaries

• Ensure compliance with DoD, NIST SP 800-series, and DoDI/D 8500-series requirements

• Review audit logs, identify anomalies, and ensure security documentation remains current and accessible

• Identify cyber security vulnerabilities and support implementation of effective countermeasures

• Support system self-inspections, assessments, and RMF activities for internal and external stakeholders

• Coordinate and approve changes to system hardware, software, and firmware prior to implementation

• Ensure approved procedures are followed for media handling, sanitization, and destruction

• Provide ISSO support to in-house and customer organizations

• Participate in required technical and security training

• Travel within CONUS up to 10-20 percent annually in support of the program

• Active TS clearance with SCI eligibility, SAP eligibility, and JSIG experience
• 5-7 years of experience in information assurance or cyber security roles, such as ISSO, system administrator, or network administrator
• DoD
• DoD 8570/8140 IAM III-level certification (CGRC, CISM, CISSP (or Associate), or CCISO) or ability to successfully obtain IAM III level certification within 6 months of hire.
• Strong working knowledge of RMF, DoD security policy, and system authorization processes
• Demonstrated experience managing day-to-day security operations for DoD information systems
• Solid understanding of network security principles and best practices
• Proven ability to troubleshoot security issues, automate repetitive tasks, and work independently or within a team
• Detail-oriented with a strong commitment to accuracy and compliance.
• Ability to travel within CONUS to support occasional program functions