Information Systems Security Officer (ISSO) at BROWN TECHNOLOGIES INCORPORATED – Huntsville, Alabama
Explore Related Opportunities
About This Position
Information Systems Security Officer (ISSO)
Vicksburg, MS
Brown Technologies is a rapidly growing company with a proven record of success supporting complex cutting-edge development programs. We are an employee-centric company that understands the individuals that comprise our workforce are our most important asset and are recognized as one of "The Best Place for Working Parents". Come join our team of experienced, dedicated, and committed professionals whose focus is to solve the mission-critical problems of our customers.
Brown Technologies is currently seeking a DoD Information Systems Security Officer (ISSO) who is a self-starter supporting the ERDC/OCIO.
DESCRIPTION:
We are seeking a DoD Information Systems Security Officer (ISSO) to support cybersecurity compliance,
authorization, and continuous monitoring of DoD information systems. The ISSO will execute Risk
Management Framework (RMF) activities, maintain system security documentation in eMASS, and work
closely with system owners, engineers, and the Information System Security Manager (ISSM) to ensure
systems remain compliant with DoD cybersecurity requirements.
The ISSO will assist with documenting and validating security control implementations, collecting supporting
evidence, and coordinating with system administrators and engineers to ensure required controls are
implemented and maintained. This is a hybrid position based in Vicksburg, MS, and requires employees to
live within a one-hour commute of the office.
RESPONSIBILITIES:
- Support the cybersecurity compliance and authorization of assigned information systems under the direction of the ISSM in accordance with the DoD Risk Management Framework (RMF).
- Assist with developing, updating, and maintaining RMF documentation, including System Security Plans (SSP), Security Assessment Plans (SAP), Security Assessment Reports (SAR), Plans of Action and Milestones (POA&M), Risk Assessment Reports (RAR), and associated control implementation documentation and supporting artifacts.
- Manage RMF activities within eMASS, including control implementation statements, artifact uploads, evidence tracking, POA&M management, control inheritance configuration, and package status tracking.
- Document and track NIST SP 800-53 security control implementations within eMASS and prepare controls for validation and approval by the ISSM.
- Collect, validate, and maintain control implementation evidence supporting authorization activities and continuous monitoring requirements.
- Review and analyze vulnerability and compliance scan results, including ACAS/Nessus outputs, SCAP compliance results, and DISA STIG checklists.
- Coordinate with system administrators and engineers to validate remediation actions and ensure findings are properly documented and tracked in POA&Ms.
- Support authorization activities including preparation for system assessments, coordination with assessment teams, and remediation tracking.
- Perform continuous monitoring activities such as vulnerability tracking, configuration compliance checks, periodic control validation, and coordination of audit log review activities.
- Support system change management by evaluating the security impact of system changes and updating RMF documentation accordingly.
- Ensure assigned systems comply with applicable DoD cybersecurity policies and standards, including DoDI 8510.01 (RMF), NIST SP 800-53 security controls, and DISA Security Technical Implementation Guides (STIGs).
- Provide cybersecurity guidance to system owners and technical teams regarding control implementation, RMF documentation, and compliance requirements. · Develop and maintain system-level compliance reporting, including POA&M status, remediation progress, authorization timelines, and control implementation status.
QUALIFICATIONS:
Required:
· Minimum of three (3) years of cybersecurity or information assurance experience supporting
DoD information systems.
· Hands-on experience executing RMF activities and managing authorization packages within
eMASS or similar system.
· Working knowledge of NIST SP 800-53 security controls and the DoD RMF authorization
lifecycle.
· Experience supporting vulnerability management and system compliance processes, including
ACAS/Nessus scanning, SCAP compliance tools, and DISA STIG checklists.
· Experience developing or maintaining RMF documentation such as SSPs, POA&Ms, SAPs, and
SARs.
· Strong organizational and documentation skills with the ability to manage RMF artifacts and
coordinate control evidence collection.
· Ability to communicate cybersecurity requirements effectively to system owners, engineers, and
technical teams.
· Ability to manage multiple systems and competing deadlines in a structured environment.
Preferred:
• Experience working with complex enterprise architectures and shared services environments.
• Familiarity with control inheritance, system boundary documentation, architecture diagrams, and
authorization boundary concepts
• Experience supporting security assessments conducted by internal assessment teams or SCA/SCA-
V organizations.
• Familiarity with SIEM monitoring, audit log review processes, and endpoint security tooling.
• Familiarity with Tenable ACAS.
• Understanding of FedRAMP Moderate/High or CNSSI 1253 security control baselines.
US Citizen and TS/SCI clearance preferred.
·Must possess a DoD 8140 / 8570 compliant certification such as:
CompTIA Security+ CE, CISSP, CASP
Benefits of working at Brown Technologies Incorporated
We offer significant advancement and personal career development opportunities within our dynamic high-tech company.
In addition, Brown Technologies offers a comprehensive, total rewards package that includes competitive compensation and diverse benefits that reflect our company culture of service, excellence, and a supportive work environment.
Benefits may vary based on status, but the majority of our positions include the following:
- Competitive Wages*
- Medical, Rx, Dental & Vision Insurance
- Medical plan with Health Savings Account eligibility
- Company-funded Life, Short-Term & Long-Term Disability Insurance
- Personal Time Off and Paid Holidays
- 401(k) Retirement Plan
- Flexible Spending Accounts
- Tuition Reimbursement
*Final compensation for this position is determined by factors such as responsibilities of the job, education, experience, certifications, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
Brown Technologies Incorporation is an Equal Opportunity Employer
Employment opportunities at Brown Technologies are based upon a candidate’s qualifications and capabilities to perform the essential functions of a particular job and are free from discrimination based on race, color, religion, national origin, sex, sexual orientation, gender identity, age, disability, protected veteran status, genetic information, or any other characteristic protected by law. For our complete EEO/AA and Pay Transparency statement, please visit (browntechnologies.net) U.S. citizenship is required for most positions.
Scan to Apply
Job Location
Job Location
This job is located in the Huntsville, Alabama, 35806, United States region.