Information Security System Officer (ISSO) – CMMC

Information Systems Security Officer (ISSO)

A growing aerospace technology company is looking for an Information Systems Security Officer (ISSO) to lead and maintain its information security program. This role is responsible for ensuring compliance with NIST SP 800-171, supporting CMMC 2.0 accreditation, and protecting systems that process, store, or transmit Controlled Unclassified Information (CUI).

Working closely with technical teams and leadership, you will play a key role in maintaining a strong security posture across the organisation.

Key Responsibilities

  • Maintain and enforce information security policies, standards, and procedures.

  • Support compliance with NIST SP 800-171 and CMMC 2.0 requirements.

  • Conduct risk and vulnerability assessments and implement mitigation strategies.

  • Perform continuous monitoring, including audit log reviews, vulnerability reporting, malware protection, and access reviews.

  • Lead security incident response activities, including investigation, containment, remediation, and SIEM event analysis.

  • Maintain System Security Plans (SSPs) and supporting compliance documentation.

  • Prepare for internal and external security assessments.

  • Deliver user onboarding, security awareness training, and guidance on security best practices.

  • Collaborate with system administrators and stakeholders to improve security across the business.

  • Stay up to date with evolving cybersecurity threats, technologies, and regulatory requirements.

Requirements

  • Bachelor’s degree in Information Security, Computer Science, or a related discipline.

  • 2+ years of experience in information security within a regulated or government environment.

  • Experience managing or supporting an information security programme.

  • Strong knowledge of NIST SP 800-171 and security best practices.

  • Experience with security technologies such as SIEM, IDS/IPS, STIG hardening, and vulnerability management tools.

  • Exposure to DevSecOps environments, Kubernetes, AWS GovCloud, CI/CD pipelines, and secure network architecture is advantageous.

  • Excellent communication, analytical, and problem-solving skills.

  • Ability to manage multiple priorities in a fast-paced environment.

Eligibility

  • U.S. Citizenship required.

  • Must be eligible to obtain a U.S. Government Security Clearance.

ITAR Requirements

To comply with U.S. Government export control regulations, applicants must be one of the following:

  • A U.S. citizen or U.S. national.

  • A U.S. lawful permanent resident (Green Card holder).

  • A refugee under 8 U.S.C. § 1157.

  • An asylee under 8 U.S.C. § 1158.

  • Or otherwise eligible to obtain the necessary authorisations from the U.S. Department of State under ITAR regulations.

Information Systems Security Officer (ISSO)

A growing aerospace technology company is looking for an Information Systems Security Officer (ISSO) to lead and maintain its information security program. This role is responsible for ensuring compliance with NIST SP 800-171, supporting CMMC 2.0 accreditation, and protecting systems that process, store, or transmit Controlled Unclassified Information (CUI).

Working closely with technical teams and leadership, you will play a key role in maintaining a strong security posture across the organisation.

Key Responsibilities

  • Maintain and enforce information security policies, standards, and procedures.

  • Support compliance with NIST SP 800-171 and CMMC 2.0 requirements.

  • Conduct risk and vulnerability assessments and implement mitigation strategies.

  • Perform continuous monitoring, including audit log reviews, vulnerability reporting, malware protection, and access reviews.

  • Lead security incident response activities, including investigation, containment, remediation, and SIEM event analysis.

  • Maintain System Security Plans (SSPs) and supporting compliance documentation.

  • Prepare for internal and external security assessments.

  • Deliver user onboarding, security awareness training, and guidance on security best practices.

  • Collaborate with system administrators and stakeholders to improve security across the business.

  • Stay up to date with evolving cybersecurity threats, technologies, and regulatory requirements.

Requirements

  • Bachelor’s degree in Information Security, Computer Science, or a related discipline.

  • 2+ years of experience in information security within a regulated or government environment.

  • Experience managing or supporting an information security programme.

  • Strong knowledge of NIST SP 800-171 and security best practices.

  • Experience with security technologies such as SIEM, IDS/IPS, STIG hardening, and vulnerability management tools.

  • Exposure to DevSecOps environments, Kubernetes, AWS GovCloud, CI/CD pipelines, and secure network architecture is advantageous.

  • Excellent communication, analytical, and problem-solving skills.

  • Ability to manage multiple priorities in a fast-paced environment.

Eligibility

  • U.S. Citizenship required.

  • Must be eligible to obtain a U.S. Government Security Clearance.

Excellent Benefits!

  • Unlimited PTO (minimum 15 days/year). Great work/life balance isn’t just encouraged, its mandated!
  • 4% 401k match
  • 100% employee health care is covered with great family plans