Information System Security Officer

Job Type

Full-time

Description

Position Details:

Job Title: Information System Security Officer (ISSO)

Job Type: Full-time

Salary Range: $150,000 - $175,000

Location: Ashburn, VA (Onsite)

Dynanet Corporation Overview:

Dynanet started with a focus on IT infrastructure and operations, helping organizations enhance their networks and overcome the limitations of 1990s technology. From strengthening communication channels to introducing innovative ways to collaborate and share information, Dynanet played a crucial role in shaping the early stages of digital transformation. The company's efforts helped organizations build the very fabric of connectivity that now powers our modern world. Over the last three decades, Dynanet has grown into a trusted partner for organizations looking to innovate boldly and transform seamlessly. While technology continues to evolve and unlock new opportunities, for nearly 30 years, Dynanet remains committed to delivering cutting-edge solutions that drive lasting change for its customers. Through agility, foresight, and an unwavering dedication to excellence, Dynanet continues to empower organizations to thrive in a rapidly changing digital landscape. Our story is more than just a story of technology - it's a story of vision, growth, and transformation that has shaped the past and continues to pave the way for the future.

About the Role:

The Information System Security Officer (ISSO) is responsible for ensuring the security and compliance of organizational information systems by implementing, monitoring, and managing cybersecurity policies, procedures, and controls. The ISSO serves as a key resource for system security, compliance, and risk management, working to protect systems and sensitive information from cybersecurity threats.

Roles & Responsibilities:

• Compliance and Risk Management: Ensure systems comply with security frameworks (e.g., RMF, NIST 800-53, FISMA) and manage ongoing system risk through assessments and reviews.
• Security Documentation: Develop, maintain, and update System Security Plans (SSPs), security assessments, and Plans of Action and Milestones (POA&Ms).
• Monitoring and Incident Response: Monitor information systems for vulnerabilities and security events, and coordinate incident response efforts where needed.
• Assessment and Authorization (A&A): Support the A&A process and ensure systems meet necessary requirements for Authority to Test (ATT) and Authority to Operate (ATO) or meet other regulatory accreditations.
• Vulnerability and Configuration Management: Perform regular vulnerability scans, monitor patch management, and ensure secure system configurations.
• Security Training and Awareness: Provide cybersecurity training and foster awareness among users to promote adherence to security policies.
• Collaboration with Stakeholders: Work with IT teams, management, and external authorities to maintain alignment on security goals and address identified risks.

• Must have an existing CBP Full BI
• Certifications: CISSP, CAP, Security+, CISM, or other applicable certifications

• Possess Strong written and verbal communication skills.
• Highly organized with an ability to prioritize, balance, and effectively advance multiple competing priorities in a high-volume, fast-paced environment.
• Ability to interact in a professional and collaborative manner with fellow Dynanet Teammates and the clients, and business partners that we work with.
• Ability and desire to challenge and educate yourself to support and advance IT services delivery in the Federal agencies we serve.
• Excellent judgment and creative problem-solving skills.
• Respond to team member and client requests via email, MS teams, or other communication means during core business hours.
• Active listening skills to understand clients' needs, and collaboration skills to work with other developers and designers.

• Bachelor's degree in Cybersecurity, IT, or related field (or equivalent experience)
• Must have an existing CBP Full BI
• Education: Bachelor's degree in IT, Cybersecurity, or related field (or equivalent experience).
• Certifications: CISSP, CAP, Security+, CISM, or other applicable certifications
• Experience: Eight (8) years of experience in information security, risk management, or related fields.
• Skills: Knowledge of RMF, NIST standards, vulnerability management, incident response, and security tools (e.g., Nessus, SIEM).

• Industry Competitive Compensation
• Medical and Dental Insurance
• Paid Time Off/Holidays
• 401(k) Retirement Plans with Matching
• Remote Work* (Contract dependent)
• Paid Training
• Employee Referral Program
• Employee Development Program