ISSO – Information System Security Officer

About

Soliel is seeking a highly skilled and proactive Information System Security Officer. This position will help to support and maintain the security posture of classified and unclassified information systems. The ISSO will be responsible for implementing, assessing, and enforcing cybersecurity policies and controls in accordance with DoD, NIST, and organizational requirements. This role works closely with system owners, administrators, and the Information System Security Manager (ISSM) to ensure systems remain compliant throughout their lifecycle.

Key Responsibilities:

• Support and execute Risk Management Framework (RMF) activities (Categorize through Assess, with exposure to Authorize/Monitor) for DoD systems
• Develop, maintain, and update A&A artifacts including SSPs, POA&Ms, SARs, and FIPS-199/200 documentation
• Maintain accurate and current entries in eMASS, ensuring traceability of controls, findings, and mitigation actions
• Track and manage vulnerability findings (STIGs, IAVAs, ACAS/Nessus outputs) and support POA&M development and remediation tracking
• Coordinate with system owners, engineers, and cybersecurity personnel to validate control implementation and collect supporting evidence
• Support continuous monitoring activities, including control assessments and compliance status reporting
• Participate in Configuration Control Boards (CCB) to assess and document the security impact of system changes
• Ensure all changes and findings are properly reflected in A&A documentation and system authorization status
• Prepare and deliver briefings and reports to support RMF decisions and program reviews

Requirements:

Required Skills:

• Active TS clearance
• DoD 8570 IAM Level I certification
• 3–6 years of experience in ISSO, RMF, or cybersecurity compliance roles
• Hands-on experience supporting RMF Steps 1–4 (Categorize, Select, Implement, Assess)
• Experience developing and maintaining A&A documentation (SSP, POA&M, A&A Policies, eMASS artifacts)
• Working knowledge of NIST SP 800-53, RMF, and DoD cybersecurity policies (DoDI 8510.01 / 8500 series)
• Experience with STIGs, IAVAs, and vulnerability management processes
• Familiarity with eMASS for control tracking and authorization packages
• Ability to work across technical and non-technical teams to gather inputs and drive compliance actions
• Strong written and verbal communication skills

Preferred Skills:

• DoD 8570 IAM Level II certification (e.g., CISSP, CISM, CompTIA CySA+)
• Experience supporting DoD or DISA programs, particularly in enterprise or boundary environments (e.g., NIPR/SIPR, DMZ)
• Experience independently contributing to or managing ATO packages
• Familiarity with ACAS/Nessus and continuous monitoring processes
• Experience supporting AO briefings and authorization decisions
• Understanding of change management/CCB processes from a cybersecurity or RMF perspective

COMPENSATION:

• Excellent compensation commensurate with experience in related field(s) and performance
• Major medical, dental, and vision
• 401k matching
• Paid holidays
• Paid Time Off (PTO)

EEO/ AA/ NON-DISCRIMINATION STATEMENT:

Soliel, LLC is an Equal Opportunity/ Affirmative Action/ Non-Discriminatory Employer. All qualified applicants will receive equal consideration for employment without regard to race, color, national origin, religion, sex, pregnancy, marital status, sexual orientation, gender identity, age, physical or mental disability, or covered veterans. To learn more, please visit www.solielcom.com