Information System Security Specialist III (ISSO)
Apply NowCompany: Akima
Location: Suffolk, VA 23434
Description:
Overview
The Information System Security Specialist III (ISSO) is responsible for managing and securing information systems by ensuring compliance with cybersecurity standards and risk management frameworks. This full-time hybrid role is based in Portsmouth with teleworking options available. The ideal candidate will have a minimum of 5 years of experience in cybersecurity, engineering, or T&E/A&A, with expertise in RMF packages, risk mitigation strategies, and STIG scanning. Experience with VoIP, CISCO networking, and Avaya systems is a plus. The position requires an active SECRET clearance and minimal travel (up to 10%).
Responsibilities
Qualifications
The Information System Security Specialist III (ISSO) is responsible for managing and securing information systems by ensuring compliance with cybersecurity standards and risk management frameworks. This full-time hybrid role is based in Portsmouth with teleworking options available. The ideal candidate will have a minimum of 5 years of experience in cybersecurity, engineering, or T&E/A&A, with expertise in RMF packages, risk mitigation strategies, and STIG scanning. Experience with VoIP, CISCO networking, and Avaya systems is a plus. The position requires an active SECRET clearance and minimal travel (up to 10%).
Responsibilities
- Oversee the implementation and maintenance of security controls and procedures to ensure compliance with the Risk Management Framework (RMF).
- Develop and maintain RMF packages, writing risk acceptance and mitigation strategies to address identified vulnerabilities.
- Perform STIG scanning and analysis to identify system weaknesses and ensure corrective actions are taken.
- Work with Information Assurance (IA) tools to assess system security and maintain compliance with DoD and Navy cybersecurity standards.
- Collaborate with cross-functional teams to develop and implement risk management strategies for secure systems.
- Provide technical expertise in securing VoIP, CISCO networking, and Avaya systems (preferred).
- Ensure continuous monitoring of information systems and develop reports for risk management and security posture updates.
- Travel up to 10% for site visits, security assessments, and project meetings as needed.
Qualifications
- Associate's degree with 5 years of relevant experience, or a High School Diploma with 7 years of experience in cybersecurity, engineering, T&E, or A&A (formerly C&A).
- Certifications: IAT II certification required (e.g., Security+).
- Minimum of 5 years of experience in a cybersecurity or related field.
- Familiarity with Information Assurance (IA) tools and processes.
- Experience with RMF packages and writing risk acceptance and mitigation strategies.
- Proficiency with STIG scanning tools and techniques.
- VoIP, CISCO networking, and Avaya experience are a plus.
- Active SECRET clearance is required.
- Strong analytical, problem-solving, and communication skills.
- This Hybrid position requires that you live within commuting distance from Suffolk, VA.