AnaVation
Senior Information System Security Officer (ISSO)
AnaVation, Clarksburg, West Virginia, United States, 26301
Senior Information System Security Officer (ISSO)
Come join our growing team and make a difference every day! AnaVation is seeking an experienced Senior Information System Security Officer (ISSO) to support a mission-critical cybersecurity. This senior-level role is ideal for candidates with expert knowledge of RMF and NIST frameworks who are ready to lead complex ATO efforts, manage high-value systems, and mentor junior security staff. The selected candidate will play a key role in safeguarding cloud-based, high-impact, and classified systems across the federal enterprise. Key responsibilities include: Serves as the principal advisor to the Information System Owner (SO), Business Process Owner, and the Chief Information Security Officer (CISO) / Information System Security Manager (ISSM) Support the maintenance of security documentation and support system ATO and ATT efforts. Conduct security control assessments and provide recommendations for remediation. Perform biweekly audit log and vulnerability scan reviews and track POA&M items. Collaborate with system owners and technical teams to manage risk and respond to incident. Support Ongoing Authorization (OA) and continuous monitoring activities. Prepare and brief senior leadership on system security posture and compliance metric. Ensure alignment with cybersecurity policies and NIST SP 800-53, 800-37, and 800-137. This position is hybrid, but will require regular trips to our customer location in Clarksburg, WV. Staff performing on the contract should live within commuting distance and reimbursement for travel will not be provided. Required Qualifications:
Experience: 6 years Required Skills/Certs: Minimum of six (6) years of hands-on experience in cybersecurity. Demonstrated knowledge and practical application of information security frameworks and standards, including: National Institute for Standards and Technology (NIST) (e.g., NIST 800-53, NIST CSF) Open Web Application Security Project (OWASP) Common Criteria for IT product certification Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIGs) and Secure Host Baseline (SHB) compliance SANS Institute security methodologies and incident response guidelines Experience managing ATO/ATT processes, security control assessments, POA&M lifecycle, vulnerability management, and audit response. Experience working within Scaled Agile Framework (SAFe). Experience in information security practices within the federal and/or state governments. Hands-on technical experience demonstrated in networking, system administration, and development. Working knowledge of Continuous Integration/Continuous Delivery (CI/CD) Pipelines Virtualization. Software-defined infrastructure and working knowledge of cloud computing technologies. Strong leadership experience mentoring junior and mid-level ISSOs and interfacing with senior government leadership. Proficiency in tools such as JCAM, Tenable Nessus, and Splunk. Required Clearance: Top Secret Preferred Qualifications:
Education: Bachelor's degree in Cybersecurity, Information Technology, or a related field. In lieu of a degree, a minimum of ten (10) years of hands-on relevant experience is required. Highly Desired - Certified Information Systems Security Professional (CISSP) Cloud Certification
Come join our growing team and make a difference every day! AnaVation is seeking an experienced Senior Information System Security Officer (ISSO) to support a mission-critical cybersecurity. This senior-level role is ideal for candidates with expert knowledge of RMF and NIST frameworks who are ready to lead complex ATO efforts, manage high-value systems, and mentor junior security staff. The selected candidate will play a key role in safeguarding cloud-based, high-impact, and classified systems across the federal enterprise. Key responsibilities include: Serves as the principal advisor to the Information System Owner (SO), Business Process Owner, and the Chief Information Security Officer (CISO) / Information System Security Manager (ISSM) Support the maintenance of security documentation and support system ATO and ATT efforts. Conduct security control assessments and provide recommendations for remediation. Perform biweekly audit log and vulnerability scan reviews and track POA&M items. Collaborate with system owners and technical teams to manage risk and respond to incident. Support Ongoing Authorization (OA) and continuous monitoring activities. Prepare and brief senior leadership on system security posture and compliance metric. Ensure alignment with cybersecurity policies and NIST SP 800-53, 800-37, and 800-137. This position is hybrid, but will require regular trips to our customer location in Clarksburg, WV. Staff performing on the contract should live within commuting distance and reimbursement for travel will not be provided. Required Qualifications:
Experience: 6 years Required Skills/Certs: Minimum of six (6) years of hands-on experience in cybersecurity. Demonstrated knowledge and practical application of information security frameworks and standards, including: National Institute for Standards and Technology (NIST) (e.g., NIST 800-53, NIST CSF) Open Web Application Security Project (OWASP) Common Criteria for IT product certification Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIGs) and Secure Host Baseline (SHB) compliance SANS Institute security methodologies and incident response guidelines Experience managing ATO/ATT processes, security control assessments, POA&M lifecycle, vulnerability management, and audit response. Experience working within Scaled Agile Framework (SAFe). Experience in information security practices within the federal and/or state governments. Hands-on technical experience demonstrated in networking, system administration, and development. Working knowledge of Continuous Integration/Continuous Delivery (CI/CD) Pipelines Virtualization. Software-defined infrastructure and working knowledge of cloud computing technologies. Strong leadership experience mentoring junior and mid-level ISSOs and interfacing with senior government leadership. Proficiency in tools such as JCAM, Tenable Nessus, and Splunk. Required Clearance: Top Secret Preferred Qualifications:
Education: Bachelor's degree in Cybersecurity, Information Technology, or a related field. In lieu of a degree, a minimum of ten (10) years of hands-on relevant experience is required. Highly Desired - Certified Information Systems Security Professional (CISSP) Cloud Certification