Information System Security Officer

Job Description

Seeking a highly skilled Information System Security Officer to deliver expert technical guidance and analysis for cybersecurity and risk assessment, especially in supply chain risk management. Responsibilities include developing and maintaining standard operating procedures (SOPs) for assessment execution, conducting security assessments and hands-on testing, identifying system vulnerabilities, and providing actionable insights to technical and non-technical audiences. Additional tasks involve reviewing program-level documentation, ensuring compliance with frameworks like FISMA and NIST, and collaborating with cross-functional teams to support security testing and program objectives.

Qualifications

1. Master’s degree (MS/MA) in Cybersecurity, Information Technology, Computer Science, or a related field. 2. Minimum of 8+ years of relevant experience in cybersecurity, risk management, or assessment operations. 3. Experience supporting federal or highly regulated environments preferred. 4. Strong knowledge of cybersecurity frameworks and standards (FISMA, NIST, OMB, etc.). 5. Experience with risk assessments, vulnerability analysis, and security testing methodologies. 6. Ability to translate complex technical concepts into clear documentation and briefings. 7. Familiarity with security documentation development, including risk assessments, contingency plans, and test reports. 8. Strong analytical, problem-solving, and communication skills. 9. Ability to work independently and collaboratively in a fast-paced environment.