ISSO

Information System Security Officer (ISSO) – TS/SCI Full Scope Poly – Annapolis Junction, MD

Information System Security Officer (ISSO) – TS/SCI Full Scope Poly

📍 Location: Annapolis Junction, MD
🏢 Work Arrangement: 100% Onsite
💼 Employment Type: Full-Time
🔒 Security Clearance Required: Active TS/SCI with Full Scope Polygraph (NSA Preferred)
🇺🇸 Citizenship: U.S. Citizen Required
🚫 Visa Sponsorship: Not Available
🚚 Relocation Assistance: Available
💰 Compensation: $100,000 – $200,000 Base Salary

Overview

A leading government technology contractor is seeking Information System Security Officers (ISSOs) to support mission-critical classified programs within highly secure government environments.

This role is responsible for maintaining cybersecurity compliance throughout the Risk Management Framework (RMF) lifecycle, supporting system accreditation, continuous monitoring, vulnerability management, and ongoing cybersecurity operations.

The ideal candidate will possess strong RMF expertise, experience supporting classified environments, and the ability to work closely with System Administrators, System Owners, Information System Security Managers (ISSMs), Security Control Assessors, and Government stakeholders.

Key Responsibilities

Risk Management Framework (RMF)

  • Support the full RMF lifecycle for classified systems.

  • Develop and maintain RMF documentation and accreditation packages.

  • Coordinate Authority to Operate (ATO) activities.

  • Support security authorization and reauthorization efforts.

  • Ensure systems maintain compliance with cybersecurity requirements.

Security Compliance & Assessments

  • Conduct security control reviews and assessments.

  • Validate implementation of required security controls.

  • Monitor compliance against NIST and government standards.

  • Support internal and external cybersecurity audits.

Continuous Monitoring (ConMon)

  • Support ongoing Continuous Monitoring activities.

  • Review system configurations and compliance posture.

  • Analyze vulnerability findings and remediation efforts.

  • Track compliance status and corrective actions.

Vulnerability & Risk Management

  • Monitor vulnerabilities and security findings.

  • Coordinate remediation efforts with technical teams.

  • Assess risk and recommend mitigation strategies.

  • Support vulnerability management programs.

Stakeholder Collaboration

  • Work closely with:

    • System Administrators

    • System Owners

    • ISSMs

    • Security Control Assessors

    • Government Security Teams

  • Provide security guidance and compliance recommendations.

  • Support cybersecurity reviews and inspections.

Required Qualifications

Security Requirements

✔ Active TS/SCI Clearance

✔ Active Full Scope Polygraph (NSA Preferred)

✔ U.S. Citizenship Required

Cybersecurity & RMF Experience

Experience supporting:

  • Information Assurance (IA)

  • Cybersecurity Compliance

  • ISSO Functions

  • Classified Information Systems

Strong understanding of:

  • Risk Management Framework (RMF)

  • Authority to Operate (ATO)

  • Security Control Assessments

  • Continuous Monitoring (ConMon)

  • Risk Assessment Methodologies

RMF & Compliance Tools

Experience with one or more of:

  • LATTEART

  • XACTA

  • BISCOTTI

  • WATCHCAT

  • STE

Experience with:

  • Compliance scanning tools

  • Configuration assessment tools

  • Vulnerability management platforms

NIST Framework Knowledge

Strong familiarity with:

  • NIST SP 800-53 Rev. 3 and/or Rev. 5

  • NIST SP 800-37

  • Security Controls

  • RMF Documentation Requirements

Required Documentation Experience

Candidates should have experience creating, reviewing, or maintaining:

Security Documentation

  • System Security Plans (SSP)

  • Plans of Action & Milestones (POA&M)

  • Security Plan Findings (SPF)

  • Exception Documentation

Risk & Compliance Documentation

  • Risk Assessment Reports (RAR)

  • Security Assessment Reports (SAR)

  • Business Impact Assessments (BIA)

  • Configuration Management Plans (CMP)

  • Contingency Plans (CP)

  • After Action Reports (AAR)

Preferred Qualifications

Government & Classified Environment Experience

  • Classified Government systems

  • Security audits and inspections

  • Compliance reviews

  • Vulnerability remediation programs

Stakeholder Coordination

Experience coordinating with:

  • Authorizing Officials (AO)

  • Security Control Assessors (SCA)

  • ISSMs

  • System Owners

Technical Knowledge

  • Operating System Security

  • System Administration Concepts

  • Vulnerability Management

  • Configuration Management

Preferred Certifications

Highly desired certifications include:

  • CompTIA Security+

  • CISSP

  • CAP

  • CASP+

  • CISM

Must-Have Requirements

Clearance

✅ Active TS/SCI Clearance

✅ Active Full Scope Polygraph

Cybersecurity

✅ RMF Experience

✅ ATO Experience

✅ Continuous Monitoring (ConMon)

✅ Security Control Assessments

Documentation

✅ SSP Development

✅ POA&M Management

✅ Security Compliance Documentation

Soft Skills

✅ Strong Written Communication

✅ Strong Organizational Skills

✅ Risk-Based Decision Making

✅ Collaboration & Stakeholder Management

Screening Questions

  1. Do you currently hold an active TS/SCI clearance with a Full Scope Polygraph?

  2. Was your Full Scope Polygraph issued by NSA?

  3. When was your most recent Full Scope Polygraph completed?

  4. How many years of ISSO, Information Assurance, or Cybersecurity compliance experience do you have?

  5. Have you supported the full RMF lifecycle, including ATO activities?

  6. Which RMF compliance tools have you used (XACTA, LATTEART, BISCOTTI, WATCHCAT, STE)?

  7. Have you developed or maintained SSPs, POA&Ms, SARs, or RARs?

  8. What experience do you have with NIST 800-53 and NIST 800-37?

  9. Do you have experience supporting classified Government systems?

  10. Do you hold any cybersecurity certifications such as Security+, CISSP, CAP, CASP+, or CISM?

Ideal Candidate Profile

The ideal candidate will:

  • Hold an active TS/SCI Full Scope Polygraph.

  • Have strong ISSO or Information Assurance experience within classified environments.

  • Possess deep knowledge of RMF, ATO, and Continuous Monitoring processes.

  • Be highly detail-oriented and documentation-focused.

  • Have experience working with government cybersecurity compliance tools.

  • Understand vulnerability management and risk mitigation practices.

  • Effectively collaborate with technical and non-technical stakeholders.

  • Balance mission requirements with cybersecurity compliance obligations.

Candidate Snapshot

Requirement

Details

Clearance

Active TS/SCI + Full Scope Poly

Citizenship

U.S. Citizen

Experience Level

Mid-Level to Senior

Frameworks

RMF, NIST 800-53, NIST 800-37

Compliance

ATO, ConMon, Security Controls

Documentation

SSP, POA&M, SAR, RAR, CMP, CP

Tools

XACTA, LATTEART, BISCOTTI, WATCHCAT, STE

Certifications

Security+, CISSP, CAP, CASP+, CISM (Preferred)

Location

Annapolis Junction, MD

Work Arrangement

100% Onsite

Travel

None

Compensation

$100K – $200K

Relocation

Available

Why This Opportunity?

Mission Impact

Support highly classified national security programs and critical government systems.

Cybersecurity Leadership

Play a key role in accreditation, compliance, risk management, and cybersecurity governance activities.

Career Growth

Work alongside highly skilled cybersecurity professionals supporting some of the nation's most sensitive environments.

Excellent Benefits

  • 3 Weeks PTO

  • 11 Federal Holidays

  • Medical & Dental Coverage

  • Life Insurance

  • STD & LTD Coverage

  • 401(k) with Company Match

  • Long-Term Career Development

This opportunity is ideal for an ISSO, Information Assurance Analyst, Cybersecurity Compliance Analyst, RMF Analyst, Information Security Specialist, Security Control Assessor Support Specialist, or Cybersecurity Governance Professional with an active TS/SCI Full Scope Polygraph seeking to support mission-critical government programs.

 

Information Systems Security Engineer (ISSE) & Information Systems Security Officer (ISSO) | TS/SCI FS Poly | Annapolis Junction, MD | $220K–$260K

Job Title: Information Systems Security Engineer (ISSE) & Information Systems Security Officer (ISSO)
Location: Annapolis Junction, Maryland (100% Onsite)
Clearance Required: TS/SCI with Full Scope Polygraph (FS Poly)
Compensation: $220,000 – $260,000 base salary
Employment Type: Full-time
Relocation Assistance: Possible for ideal candidate
Benefits: Full benefits offered
Visa Candidates: Not considered

Overview:

We are hiring two experienced cybersecurity professionals for an exciting and mission-critical government program based in Annapolis Junction, MD. Both roles require active TS/SCI with Full Scope Poly (poly must be within the past 5 years and from a Maryland Intelligence Customer). While both positions are integral to the security posture of the program, each requires a different focus, background, and certification path.

1. Information Systems Security Engineer (ISSE)

Role ID: 727
Seniority Level: Mid to Senior
Clearance: TS/SCI w/ FS Poly (mandatory)
Certifications Required:

  • CISSP (Required)

  • ISSEP (Preferred or willing to obtain during crossover if CISSP has been held for 2+ years)

Key Responsibilities:

  • Develop and implement system security designs and architectures for complex, large-scale systems.

  • Lead security risk assessment and mitigation throughout the system development lifecycle.

  • Conduct system security planning, vulnerability testing, and compliance verification.

  • Analyze and implement secure communication protocols, encryption tools, and secure OS configurations.

  • Collaborate with engineers across integration, testing, and development teams to ensure compliance with classified information handling.

  • Use tools such as Nessus, NMAP, Wireshark for threat identification and remediation.

  • Support RMF, risk management activities, and IA (Information Assurance) processes.

Preferred Experience:

  • Bachelor’s or Master’s in Cybersecurity, Information Assurance, or related field.

  • Experience with Defense-in-Depth principles, secure software architecture, and penetration testing tools.

  • Proficient in scripting languages and secure configuration management.

2. Information Systems Security Officer (ISSO)

Role ID: 643
Seniority Level: Mid to Senior
Clearance: TS/SCI w/ FS Poly (mandatory)
Certifications Required:

  • IAT Level II or IAM Level II certification (Required)

    • Examples: Security+ CE, CASP+, CISSP, CISM, or similar

Key Responsibilities:

  • Act as ISSO for a large-scale software development and IT operations program.

  • Enforce security policies and maintain operational security posture of systems.

  • Manage documentation for system Certification & Accreditation (C&A) and Security Plans (SSPs).

  • Conduct vulnerability remediation, IAVA compliance, and configuration management for system security.

  • Support day-to-day information system operations, network security, and audit readiness.

  • Coordinate with ISSM and other security stakeholders to ensure secure system integration and lifecycle support.

Preferred Experience:

  • 10+ years as an ISSO in complex, standalone, or connected environments.

  • Experience maintaining SSPs, performing incident response, and managing vulnerability scans.

  • Familiarity with tools supporting IAVA management, CM, and system auditing.

  • Bachelor’s degree in a related field and 12+ years of overall security experience preferred.

Ideal Candidate Profile (Both Roles):

  • Must hold a current FS Poly with the Maryland Intelligence Customer (within the past 5 years).

  • No prior CCAs (Counterintelligence Concerns).

  • Excellent verbal/written communication skills and team collaboration.

  • Strong commitment to best practices and high-integrity security operations.

Additional Notes:

  • Both roles are 100% onsite in Annapolis Junction, MD.

  • Do not repost these positions.

  • Candidates must be U.S. Citizens with an active TS/SCI with Full Scope Polygraph.

 

Information Systems Security Engineer (ISSE) & Information Systems Security Officer (ISSO) | TS/SCI FS Poly | $220K–$260K | Annapolis Junction, MD

Job Title: Information Systems Security Engineer (ISSE) & Information Systems Security Officer (ISSO)
Location: Annapolis Junction, Maryland (100% Onsite)
Clearance Required: TS/SCI with Full Scope Polygraph (FS Poly)
Compensation: $220,000 – $260,000 base salary
Employment Type: Full-time
Relocation Assistance: Possible for ideal candidate
Benefits: Full benefits offered
Visa Candidates: Not considered

Overview:

We are hiring two experienced cybersecurity professionals for an exciting and mission-critical government program based in Annapolis Junction, MD. Both roles require active TS/SCI with Full Scope Poly (poly must be within the past 5 years and from a Maryland Intelligence Customer). While both positions are integral to the security posture of the program, each requires a different focus, background, and certification path.

1. Information Systems Security Engineer (ISSE)

Role ID: 727
Seniority Level: Mid to Senior
Clearance: TS/SCI w/ FS Poly (mandatory)
Certifications Required:

  • CISSP (Required)

  • ISSEP (Preferred or willing to obtain during crossover if CISSP has been held for 2+ years)

Key Responsibilities:

  • Develop and implement system security designs and architectures for complex, large-scale systems.

  • Lead security risk assessment and mitigation throughout the system development lifecycle.

  • Conduct system security planning, vulnerability testing, and compliance verification.

  • Analyze and implement secure communication protocols, encryption tools, and secure OS configurations.

  • Collaborate with engineers across integration, testing, and development teams to ensure compliance with classified information handling.

  • Use tools such as Nessus, NMAP, Wireshark for threat identification and remediation.

  • Support RMF, risk management activities, and IA (Information Assurance) processes.

Preferred Experience:

  • Bachelor’s or Master’s in Cybersecurity, Information Assurance, or related field.

  • Experience with Defense-in-Depth principles, secure software architecture, and penetration testing tools.

  • Proficient in scripting languages and secure configuration management.

2. Information Systems Security Officer (ISSO)

Role ID: 643
Seniority Level: Mid to Senior
Clearance: TS/SCI w/ FS Poly (mandatory)
Certifications Required:

  • IAT Level II or IAM Level II certification (Required)

    • Examples: Security+ CE, CASP+, CISSP, CISM, or similar

Key Responsibilities:

  • Act as ISSO for a large-scale software development and IT operations program.

  • Enforce security policies and maintain operational security posture of systems.

  • Manage documentation for system Certification & Accreditation (C&A) and Security Plans (SSPs).

  • Conduct vulnerability remediation, IAVA compliance, and configuration management for system security.

  • Support day-to-day information system operations, network security, and audit readiness.

  • Coordinate with ISSM and other security stakeholders to ensure secure system integration and lifecycle support.

Preferred Experience:

  • 10+ years as an ISSO in complex, standalone, or connected environments.

  • Experience maintaining SSPs, performing incident response, and managing vulnerability scans.

  • Familiarity with tools supporting IAVA management, CM, and system auditing.

  • Bachelor’s degree in a related field and 12+ years of overall security experience preferred.

Ideal Candidate Profile (Both Roles):

  • Must hold a current FS Poly with the Maryland Intelligence Customer (within the past 5 years).

  • No prior CCAs (Counterintelligence Concerns).

  • Excellent verbal/written communication skills and team collaboration.

  • Strong commitment to best practices and high-integrity security operations.

Additional Notes:

  • Both roles are 100% onsite in Annapolis Junction, MD.

  • Do not repost these positions.

  • Candidates must be U.S. Citizens with an active TS/SCI with Full Scope Polygraph.