Information Systems Security Officer (ISSO)

United States

Suitability/Public Trust

Fully remote

Cyber Security Services

Overview

GovCIO is currently hiring for an Information Systems Security Officer (ISSO) to support our client’s contract needs. The ISSO ensures the confidentiality, integrity, and availability of HUD information systems by executing the NIST Risk Management Framework (RMF), supporting system authorization activities, conducting continuous monitoring, and coordinating remediation efforts with system owners and technical teams. Key responsibilities include maintaining system security posture, supporting FISMA and OMB A-130 compliance, responding to audits, validating controls, analyzing vulnerabilities, and ensuring security documentation is accurate and audit-ready.

This position is based in the United States and is a full remote work.

Responsibilities

• Support and execute all phases of the NIST SP 800-37 RMF lifecycle including categorization, control selection, implementation, assessment, authorization, and continuous monitoring.

• Develop, maintain, and update RMF documentation in JCAM including System Security Plans, Security Assessment Plans, Security Assessment Reports, POA&Ms, Configuration Management Plans, Contingency Plans, Incident Response Plans, Risk Assessment documentation, and interconnection documents.

• Establish system impact levels following FIPS 199 for confidentiality, integrity, and availability.

• Ensure systems comply with FISMA, NIST SP 800-53 Rev 5, OMB A-130, and applicable agency cybersecurity policies.

• Prepare and maintain Body of Evidence materials and control traceability documentation in JCAM

• Support Authorization to Operate (ATO), Authority to Connect (ATC), and ongoing authorization activities; maintain associated documentation in JCAM.

• Review and analyze vulnerability scan results using Tenable Security Center.

• Validate asset inventories and correlate system information.

• Validate secure configuration baselines and system hardening standards.

• Track remediation activities and ensure POA&M items and milestones are created, updated, and closed on schedule.

• Review endpoint security posture and support investigations by correlating endpoint findings with vulnerability, configuration, and CDM data.

• Provide security reporting, dashboards, and status updates to system owners and leadership.

• Support configuration management processes by reviewing and assessing change requests for security impact.

• Ensure security controls are implemented correctly during system changes, upgrades, or new deployments.

• Stay informed on emerging cybersecurity policies, standards, and threat landscapes; provide recommendations for improving security posture

• Collaborate with technical and non-technical personnel to review systems, gather evidence, and communicate security requirements.

Qualifications

Bachelor’s degree in IT, Cybersecurity, Computer Science, or related field (or equivalent experience) with 5-8+ years or (commensurate experience)

Required Skills and Experience

• 2–3 years in an ISSO or cybersecurity compliance role supporting RMF process.

• Strong understanding of NIST 800-53 controls and assessment procedures.

• Experience collecting, developing and maintaining RMF artifacts.

• Experience managing POA&Ms and documenting remediation efforts.

• Experience reviewing, interpreting, or validating vulnerability and configuration findings.

Clearance Required: Ability to obtain and maintain a HUD Public Trust clearance.

Preferred Qualifications

• CISSP, CISM, or similar advanced certification.

• Experience supporting federal authorization packages.

• Familiarity with CDM reporting and continuous monitoring processes.

• Experience supporting secure development or cloud system reviews.

Posted Salary Range

USD $90,000.00 - USD $110,000.00 /Yr.

Company Overview

GovCIO is a team of transformers--people who are passionate about transforming government IT. Every day, we make a positive impact by delivering innovative IT services and solutions that improve how government agencies operate and serve our citizens.

But we can't do it alone. We need great people to help us do great things - for our customers, our culture, and our ability to attract other great people. We are changing the face of government IT and building a workforce that fuels this mission. Are you ready to be a transformer?

What You Can Expect

Interview & Hiring Process

If you are selected to move forward through the process, here’s what you can expect:

• During the Interview Process

• Virtual video interview conducted via video with the hiring manager and/or team

• Camera must be on

• A valid photo ID must be presented during each interview

• During the Hiring Process

• Enhanced Biometrics ID verification screening

• Background check, to include:

• Criminal history (past 7 years)

• Verification of your highest level of education

• Verification of your employment history (past 7 years), based on information provided in your application

Employee Perks

At GovCIO, we consistently hear that meaningful work and a collaborative team environment are two of the top reasons our employees enjoy working here. In addition, our employees have access to a range of perks and benefits to support their personal and professional well-being, beyond the standard company offered health benefits, including:

• Employee Assistance Program (EAP)

• Corporate Discounts

• Learning & Development platform, to include certification preparation content

• Training, Education and Certification Assistance*

• Referral Bonus Program

• Internal Mobility Program

• Pet Insurance

• Flexible Work Environment

*Available to full-time employees

Our employees’ unique talents and contributions are the driving force behind our success in supporting our customers, which ultimately fuels the success of our company. Join us and be a part of a culture that invests in its people and prioritizes continuous enhancement of the employee experience.

We are an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, disability, or status as a protected veteran. EOE, including disability/vets.

Posted Pay Range

The posted pay range, if referenced, reflects the range expected for this position at the commencement of employment, however, base pay offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, education, experience, and internal equity. The total compensation package for this position may also include other compensation elements, to be discussed during the hiring process. If hired, employee will be in an “at-will position” and the GovCIO reserves the right to modify base salary (as well as any other discretionary payment or compensation program) at any time, including for reasons related to individual performance, GovCIO or individual department/team performance, and market factors.