SMX
Information Systems Security Officer (ISSO)
SMX, Saint Inigoes Shores, Maryland, United States
Overview
SMX has an opening for an Information Systems Security Officer (ISSO) to support the Radio Integration Systems (RIS) team supporting a combatant command of the United States Department of Defense. The position is in Saint Inigoes, MD, at Webster Outlying Field (WOLF). The ideal candidate will assist in the development, implementation, and maintenance of the organization’s cybersecurity program, ensuring the confidentiality, integrity, and availability of mission-critical systems and data. As an ISSO you will work closely with system administrators, security personnel, and program managers to enforce compliance with DoD cybersecurity policies, RMF standards, and NIST guidelines. Responsibilities include supporting system accreditation, conducting vulnerability assessments, managing POA&Ms, and integrating security controls during hardware refreshes and field deployments. The ISSO may require occasional travel to support fielded systems and mission requirements. This position requires a DoD secret security clearance which requires US citizenship for work on DoD contracts. Responsibilities
Review, prepare, and update RMF, JSIG and AIS accreditation packages Identify vulnerabilities and implement countermeasures Notify customer when changes occur that might affect AIS accreditation/certification Perform self-inspections, provide security coordination and review of all system test plans Conduct thorough reviews of CKL files, SCAP scans, EvalSTIG outputs, and ACAS results to validate system configurations against industry and DoD cybersecurity standards Identify and mitigate vulnerabilities to maintain compliance and reduce risk across all supported systems Utilize VRAM to document, track, and report the status of security vulnerabilities specific to NRGA, ensuring timely remediation and alignment with operational security requirements Develop and maintain POA&Ms to address identified security gaps, coordinate remediation efforts, and support ongoing RMF compliance Perform comprehensive System Impact Analyses (SIA) to assess the integration of new hardware, software, and capabilities into existing authorization boundaries, ensuring changes are evaluated for security implications and properly documented within RMF artifacts Required Skills & Experience
Clearance Required: Secret Cybersecurity certification: CASP+, CGRC/CAP, CCSP, Cloud+, SSCP, Security+, or GSEC (or equivalent) as required before applying Experience with the NIST SP800-53 Security Controls Experience with the continuous monitoring of system security controls Ability to build and maintain effective team and customer relationships Ability to manage multiple projects in a dynamic, demanding environment Knowledge of other security disciplines and how they impact and interact with information system security Strong communications, interpersonal relations, organizational, troubleshooting, and analytical skills eMASS experience Bachelor’s degree plus 3 years of relevant work experience OR Associate’s degree plus 4 years of additional work experience (7 years total) related to applicable labor categories; other substitutions as described may apply Desired Skills & Experience
Prior experience as an ISSO supporting tactical systems with mission-driven cybersecurity requirements Experience with vulnerability management and endpoint protection tools (e.g., Nessus, McAfee ePO, eSTIG automation) Experience with NISPOM and RMF processes across classified and unclassified environments Experience managing and securing classified information systems in DoD and agency-specific security protocols Ability to work independently with minimal supervision while delivering high-quality results Attention to detail and adherence to security policies and documentation standards Foundational networking knowledge and cybersecurity tooling familiarity (STIGs, SCAP, vulnerability scanners) Proficiency in Windows 10/11 administration and security hardening Experience configuring and securing Cisco switches in field/deployed environments Familiarity with stand-alone tactical systems and their security constraints Compensation & Benefits
The SMX salary determination process considers location, contract labor categories, relevant experience, skills, education, and certifications. The proposed salary for this position is $105,100 USD - $175,000 USD. SMX offers a competitive mix of compensation, learning & development opportunities, and benefits, including health insurance, paid leave, and retirement. SMX is an Equal Opportunity employer including disabilities and veterans. Selected applicant may be subject to a background investigation and/or education verification. SMX does not sponsor a new applicant for employment authorization or immigration related support for this position. Application Deadline: 11/3/2025 Other
Seniority level: Mid-Senior level Employment type: Full-time Job function: Information Technology; Industries: IT Services and IT Consulting Note: This description consolidates relevant job details and excludes extraneous postings and page elements not pertinent to the role.
#J-18808-Ljbffr
SMX has an opening for an Information Systems Security Officer (ISSO) to support the Radio Integration Systems (RIS) team supporting a combatant command of the United States Department of Defense. The position is in Saint Inigoes, MD, at Webster Outlying Field (WOLF). The ideal candidate will assist in the development, implementation, and maintenance of the organization’s cybersecurity program, ensuring the confidentiality, integrity, and availability of mission-critical systems and data. As an ISSO you will work closely with system administrators, security personnel, and program managers to enforce compliance with DoD cybersecurity policies, RMF standards, and NIST guidelines. Responsibilities include supporting system accreditation, conducting vulnerability assessments, managing POA&Ms, and integrating security controls during hardware refreshes and field deployments. The ISSO may require occasional travel to support fielded systems and mission requirements. This position requires a DoD secret security clearance which requires US citizenship for work on DoD contracts. Responsibilities
Review, prepare, and update RMF, JSIG and AIS accreditation packages Identify vulnerabilities and implement countermeasures Notify customer when changes occur that might affect AIS accreditation/certification Perform self-inspections, provide security coordination and review of all system test plans Conduct thorough reviews of CKL files, SCAP scans, EvalSTIG outputs, and ACAS results to validate system configurations against industry and DoD cybersecurity standards Identify and mitigate vulnerabilities to maintain compliance and reduce risk across all supported systems Utilize VRAM to document, track, and report the status of security vulnerabilities specific to NRGA, ensuring timely remediation and alignment with operational security requirements Develop and maintain POA&Ms to address identified security gaps, coordinate remediation efforts, and support ongoing RMF compliance Perform comprehensive System Impact Analyses (SIA) to assess the integration of new hardware, software, and capabilities into existing authorization boundaries, ensuring changes are evaluated for security implications and properly documented within RMF artifacts Required Skills & Experience
Clearance Required: Secret Cybersecurity certification: CASP+, CGRC/CAP, CCSP, Cloud+, SSCP, Security+, or GSEC (or equivalent) as required before applying Experience with the NIST SP800-53 Security Controls Experience with the continuous monitoring of system security controls Ability to build and maintain effective team and customer relationships Ability to manage multiple projects in a dynamic, demanding environment Knowledge of other security disciplines and how they impact and interact with information system security Strong communications, interpersonal relations, organizational, troubleshooting, and analytical skills eMASS experience Bachelor’s degree plus 3 years of relevant work experience OR Associate’s degree plus 4 years of additional work experience (7 years total) related to applicable labor categories; other substitutions as described may apply Desired Skills & Experience
Prior experience as an ISSO supporting tactical systems with mission-driven cybersecurity requirements Experience with vulnerability management and endpoint protection tools (e.g., Nessus, McAfee ePO, eSTIG automation) Experience with NISPOM and RMF processes across classified and unclassified environments Experience managing and securing classified information systems in DoD and agency-specific security protocols Ability to work independently with minimal supervision while delivering high-quality results Attention to detail and adherence to security policies and documentation standards Foundational networking knowledge and cybersecurity tooling familiarity (STIGs, SCAP, vulnerability scanners) Proficiency in Windows 10/11 administration and security hardening Experience configuring and securing Cisco switches in field/deployed environments Familiarity with stand-alone tactical systems and their security constraints Compensation & Benefits
The SMX salary determination process considers location, contract labor categories, relevant experience, skills, education, and certifications. The proposed salary for this position is $105,100 USD - $175,000 USD. SMX offers a competitive mix of compensation, learning & development opportunities, and benefits, including health insurance, paid leave, and retirement. SMX is an Equal Opportunity employer including disabilities and veterans. Selected applicant may be subject to a background investigation and/or education verification. SMX does not sponsor a new applicant for employment authorization or immigration related support for this position. Application Deadline: 11/3/2025 Other
Seniority level: Mid-Senior level Employment type: Full-time Job function: Information Technology; Industries: IT Services and IT Consulting Note: This description consolidates relevant job details and excludes extraneous postings and page elements not pertinent to the role.
#J-18808-Ljbffr