SOSi
Join to apply for the
Information Security Analyst (SME)
role at
SOSi 1 day ago Be among the first 25 applicants Join to apply for the
Information Security Analyst (SME)
role at
SOSi SOSi is seeking a highly qualified Information Security Analyst (SME) to support the U.S. Courts under the Information Security & Validation Staff (ISVS) Governance, Risk, and Compliance (GRC) program. This role delivers expert-level support for governance, risk management, and compliance across the judiciary’s IT systems lifecycle. Serve as a subject matter expert (SME) on federal GRC frameworks, particularly the Risk Management Framework (RMF), NIST 800-53 Rev 5, and Judiciary Information Security Framework (JISF). Lead and perform activities across all RMF phases: Prepare, Categorize, Select, Implement, Assess, Authorize, and Monitor. Develop, review, and update System Security Plans (SSPs), POA&Ms, Risk Assessments, Privacy Impact Assessments, and Continuous Monitoring Strategies using tools like CSAM. Manage Nessus scanning (agent and non-agent based), vulnerability assessments, and remediation tracking. Conduct asset inventory, stakeholder engagement, information lifecycle mapping, and risk categorization. Ensure compliance documentation and authorization packages are complete, accurate, and aligned with agency standards. Collaborate with federal stakeholders to ensure governance, risk management, and compliance activities are integrated and operationalized. Support audit response, corrective action plans, and continuous improvement of ISVS processes. Qualifications: 7-10 years of relevant experience in federal information security and GRC. Expert knowledge of NIST RMF, FISMA, FedRAMP, and continuous monitoring practices. Hands-on experience with CSAM, Nessus, and vulnerability management in a federal environment. Proven ability to develop SSPs, POA&Ms, Risk Assessments, and system categorization artifacts. Preferred qualifications: Relevant certifications (e.g., CISSP, CISM, CAP, CRISC) strongly preferred. Experience supporting federal judiciary or DOJ environments is a plus. Working Conditions Normal office conditions with potential to perform duties in deployed locations. Core hours of operation are Monday through Friday, 0600 – 1700. May be requested to work evenings and weekends to meet program and contract needs. All interested individuals will receive consideration and will not be discriminated against for any reason. Seniority level
Seniority level Director Employment type
Employment type Full-time Job function
Job function Information Technology Industries Defense and Space Manufacturing, Government Administration, and IT Services and IT Consulting Referrals increase your chances of interviewing at SOSi by 2x Inferred from the description for this job
Medical insurance Vision insurance 401(k) Tuition assistance Get notified when a new job is posted. Sign in to set job alerts for “Information Security Analyst” roles.
Information Systems Security Officer (ISSO)
Information Systems Security Officer Level 1
Information Systems Security Officer (ISSO)
Information Systems Security Officer (ISSO)
Information Systems Security Officer (ISSO)
Fort Meade, MD $70,000.00-$74,000.00 2 weeks ago District of Columbia, United States $144,500.00-$195,500.00 2 weeks ago Information Systems Security Officer (ISSO)
Information Systems Security Officer (ISSO)
Information Systems Security Officer (ISSO)
Information Assurance Analyst II - Crystal City, VA
Arlington, VA $130,000.00-$155,000.00 3 days ago Gaithersburg, MD $115,000.00-$125,000.00 1 week ago Information Systems Security Officer (ISSO)
Arlington, VA $80,000.00-$94,000.00 3 days ago Security Control Assessor -SCA - Greater Washington DC Area
Washington, DC $85,000.00-$127,000.00 4 days ago Information Systems Security Engineer - 2 (ISSO Duties)
Arlington, VA $112,000.00-$179,000.00 2 days ago Senior Information Security Analyst/ISSO (TS/SCI with Poly)
We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr
Information Security Analyst (SME)
role at
SOSi 1 day ago Be among the first 25 applicants Join to apply for the
Information Security Analyst (SME)
role at
SOSi SOSi is seeking a highly qualified Information Security Analyst (SME) to support the U.S. Courts under the Information Security & Validation Staff (ISVS) Governance, Risk, and Compliance (GRC) program. This role delivers expert-level support for governance, risk management, and compliance across the judiciary’s IT systems lifecycle. Serve as a subject matter expert (SME) on federal GRC frameworks, particularly the Risk Management Framework (RMF), NIST 800-53 Rev 5, and Judiciary Information Security Framework (JISF). Lead and perform activities across all RMF phases: Prepare, Categorize, Select, Implement, Assess, Authorize, and Monitor. Develop, review, and update System Security Plans (SSPs), POA&Ms, Risk Assessments, Privacy Impact Assessments, and Continuous Monitoring Strategies using tools like CSAM. Manage Nessus scanning (agent and non-agent based), vulnerability assessments, and remediation tracking. Conduct asset inventory, stakeholder engagement, information lifecycle mapping, and risk categorization. Ensure compliance documentation and authorization packages are complete, accurate, and aligned with agency standards. Collaborate with federal stakeholders to ensure governance, risk management, and compliance activities are integrated and operationalized. Support audit response, corrective action plans, and continuous improvement of ISVS processes. Qualifications: 7-10 years of relevant experience in federal information security and GRC. Expert knowledge of NIST RMF, FISMA, FedRAMP, and continuous monitoring practices. Hands-on experience with CSAM, Nessus, and vulnerability management in a federal environment. Proven ability to develop SSPs, POA&Ms, Risk Assessments, and system categorization artifacts. Preferred qualifications: Relevant certifications (e.g., CISSP, CISM, CAP, CRISC) strongly preferred. Experience supporting federal judiciary or DOJ environments is a plus. Working Conditions Normal office conditions with potential to perform duties in deployed locations. Core hours of operation are Monday through Friday, 0600 – 1700. May be requested to work evenings and weekends to meet program and contract needs. All interested individuals will receive consideration and will not be discriminated against for any reason. Seniority level
Seniority level Director Employment type
Employment type Full-time Job function
Job function Information Technology Industries Defense and Space Manufacturing, Government Administration, and IT Services and IT Consulting Referrals increase your chances of interviewing at SOSi by 2x Inferred from the description for this job
Medical insurance Vision insurance 401(k) Tuition assistance Get notified when a new job is posted. Sign in to set job alerts for “Information Security Analyst” roles.
Information Systems Security Officer (ISSO)
Information Systems Security Officer Level 1
Information Systems Security Officer (ISSO)
Information Systems Security Officer (ISSO)
Information Systems Security Officer (ISSO)
Fort Meade, MD $70,000.00-$74,000.00 2 weeks ago District of Columbia, United States $144,500.00-$195,500.00 2 weeks ago Information Systems Security Officer (ISSO)
Information Systems Security Officer (ISSO)
Information Systems Security Officer (ISSO)
Information Assurance Analyst II - Crystal City, VA
Arlington, VA $130,000.00-$155,000.00 3 days ago Gaithersburg, MD $115,000.00-$125,000.00 1 week ago Information Systems Security Officer (ISSO)
Arlington, VA $80,000.00-$94,000.00 3 days ago Security Control Assessor -SCA - Greater Washington DC Area
Washington, DC $85,000.00-$127,000.00 4 days ago Information Systems Security Engineer - 2 (ISSO Duties)
Arlington, VA $112,000.00-$179,000.00 2 days ago Senior Information Security Analyst/ISSO (TS/SCI with Poly)
We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr