Senior Information Systems Security Officer (ISSO)

AMERICAN SYSTEMS is hiring a Sr Information Systems Security Officer to support mission-critical DoD systems at Whidbey Island, Washington. This role is suited for a TS/SCI-cleared security professional with strong RMF and JSIG experience who partners closely with ISSMs and AOs to maintain a compliant, resilient security posture across complex environments.

As a Senior Information Systems Security Officer with AMERICAN SYSTEMS you will have the opportunity to:

Maintain the operational security posture of assigned information systems in close coordination with the ISSM, ISO, and AO/DAO

• Prepare, review, and update RMF authorization packages, including continuous monitoring activities

• Conduct security impact analyses for configuration changes within authorization boundaries

• Ensure compliance with DoD, NIST SP 800-series, and DoDI/D 8500-series requirements

• Review audit logs, identify anomalies, and ensure security documentation remains current and accessible

• Identify cyber security vulnerabilities and support implementation of effective countermeasures

• Support system self-inspections, assessments, and RMF activities for internal and external stakeholders

• Coordinate and approve changes to system hardware, software, and firmware prior to implementation

• Ensure approved procedures are followed for media handling, sanitization, and destruction

• Provide ISSO support to in-house and customer organizations

• Participate in required technical and security training

• Travel within CONUS up to 10-20 percent annually in support of the program

• Active TS clearance with SCI eligibility, SAP eligibility, and JSIG experience
• 5-7 years of experience in information assurance or cyber security roles, such as ISSO, system administrator, or network administrator
• Strong working knowledge of RMF, DoD security policy, and system authorization processes
• Demonstrated experience managing day-to-day security operations for DoD information systems
• DoD 8570 IAT Level II certification (e.g., Security+ CE, CySA+, GSEC, SSCP, CCNA-Security)
• IAM Level II certification preferred (e.g., CISSP or CISM)
• Solid understanding of network security principles and best practices
• Proven ability to troubleshoot security issues, automate repetitive tasks, and work independently or within a team
• Detail-oriented with a strong commitment to accuracy and compliance.

Note: Travel will be less than 10 days per year in support of occasional functions