Information System Security Specialist III (ISSO) (Hybrid) with Security Clearance

---

Job description

The Information System Security Specialist III (ISSO) is responsible for managing and securing information systems by ensuring compliance with cybersecurity standards and risk management frameworks. This full-time hybrid role is based in Portsmouth with teleworking options available. The ideal candidate will have a minimum of 5 years of experience in cybersecurity, engineering, or T&E/A&A, with expertise in RMF packages, risk mitigation strategies, and STIG scanning. Experience with VoIP, CISCO networking, and Avaya systems is a plus. The position requires an active SECRET clearance and minimal travel (up to 10%). Responsibilities Oversee the implementation and maintenance of security controls and procedures to ensure compliance with the Risk Management Framework (RMF).
Develop and maintain RMF packages, writing risk acceptance and mitigation strategies to address identified vulnerabilities.
Perform STIG scanning and analysis to identify system weaknesses and ensure corrective actions are taken.
Work with Information Assurance (IA) tools to assess system security and maintain compliance with DoD and Navy cybersecurity standards.
Collaborate with cross-functional teams to develop and implement risk management strategies for secure systems.
Provide technical expertise in securing VoIP, CISCO networking, and Avaya systems (preferred).
Ensure continuous monitoring of information systems and develop reports for risk management and security posture updates.
Travel up to 10% for site visits, security assessments, and project meetings as needed. Qualifications Associate's degree with 5 years of relevant experience, or a High School Diploma with 7 years of experience in cybersecurity, engineering, T&E, or A&A (formerly C&A).
Certifications: IAT II certification required (e.g., Security+).
Minimum of 5 years of experience in a cybersecurity or related field.
Familiarity with Information Assurance (IA) tools and processes.
Experience with RMF packages and writing risk acceptance and mitigation strategies.
Proficiency with STIG scanning tools and techniques.
VoIP, CISCO networking, and Avaya experience are a plus.
Active SECRET clearance is required.
Strong analytical, problem-solving, and communication skills.
This Hybrid position requires that you live within commuting distance from Suffolk, VA.

<!– job description page –>