Open app
Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

ISSO Vulnerability Management

Leidos

Bethesda, MD

Description Leidos has a career opportunity for a ISSO Vulnerability Management to support the Air Force National Capital Region IT Services program. The AFNCR IT Services program provides support services for information systems for Headquarters Air Force (HAF), Air Force District of Washington (AFDW), Office of the Secretary of Defense (OSD), Joint Chiefs of Staff, and other Air Force activities within the AFNCR, missions to include the Pentagon, Joint Base Andrews (JBA), Joint Base Anacostia‑Bolling (JBAB), and other locations, leased spaces, and alternate sites. The major support areas required are IT Operations and Maintenance; Plans, Projects, and Engineering (PP&E); and National Military Command Center (NMCC). The senior leaders and national defense missions that are supported require that the AFNCR operations never fail, resulting in a fast‑paced, challenging, but also rewarding environment. Primary Responsibilities Manage the POAM process for Vulnerabilities and STIG violations Analyze scan results to identify CAT I/II/III findings, false positives, and configuration errors. Track and document remediation actions, POA&Ms, and exceptions in alignment with RMF guidance. Validate and interpret DISA STIG checklists, collaborate with system admins and engineers to ensure secure configurations. Prepare and deliver vulnerability reports, compliance dashboards, and metrics for leadership and inspection readiness (e.g., CCRI/CORA). Support the development and maintenance of asset groupings, scan zones, credentialed scanning, and scan tuning strategies. Work closely with Queue Managers, ISSOs, and Engineering teams to prioritize and close critical vulnerabilities. Maintain data hygiene within ACAS, ensuring consistent tagging, grouping, and reporting structures. Basic Qualifications Active DoD Secret clearance required. CompTIA Security+ CE or higher DoD 8570 IAT Level II certification must meet 8140 ISSM role qualification. Bachelor's Degree and 2-4 years of experience. Additional years of experience or certifications may be considered in lieu of a degree. 3+ years of cybersecurity or system administration experience, with at least 1 year of direct ACAS or Tenable experience. Working knowledge of DISA STIGs, vulnerability risk levels, and POA&Ms remediation strategies. Familiarity with NIST SP 800-53, RMF compliance, and Air Force cybersecurity policy (AFMAN 17-130). Strong attention to detail, documentation skills, and the ability to interpret technical vulnerability data. Preferred Qualifications Experience supporting USAF, DISA, or other DoD mission systems. Familiarity with ACAS, DISPATCH EaluateSTIG, STIGManager, Involvement in CCRI/CORA preparation or vulnerability remediation campaigns. Ability to communicate risk-based recommendations to both technical and non‑technical stakeholders. Understanding of automation tools/scripts (e.g., PowerShell, Nessus APIs) to support scan or report optimization. Commitment to Non‑Discrimination All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws. #J-18808-Ljbffr Leidos

Apply
Vacancy posted 5 days ago
Similar jobs that could be interesting for youBased on the ISSO Vulnerability Management in Bethesda, MD vacancy
  • ISSO - Vulnerability Management Leader (Secret Clearance)
    Leidos has a career opportunity for an ISSO Vulnerability Management in Bethesda, Maryland. The role involves managing the vulnerability management process and analyzing scan results to ensure cybersecurity compliance. Candidates must have an active DoD Secret clearance... 
    Suggested

    Leidos

    Bethesda, MD
    5 days ago
  • Project Lead / Senior ISSO (Hybrid)
     ...seeking an experienced Project Lead /Senior ISSO to support our team in Washington, D.C (...  ...System Officer (CISO) and IT Program Manager/System Owner. Collaborate with Chief...  ...Provide technical expertise in the areas of vulnerability assessment, risk assessment, network... 
    Suggested
    Full time
    Work at office
    Flexible hours
    3 days per week

    Coalfire

    Washington DC
    1 day ago
  • Lead ISSO: RMF & Mission-Critical Security Leader

    $77.6k - $176k

     ...Technology is looking for an Information Systems Security Officer (ISSO) to support national security programs in Arlington,...  ...involves leading the RMF authorization activities, overseeing vulnerability management, and ensuring compliance with security standards. Candidates... 
    Suggested

    Phase2 Technology

    Arlington, VA
    5 days ago
  • Lead ISSO Manager

    $130k - $162k

     ...upon contract win. SkyePoint Decisions is seeking a Lead ISSO Manager to join our team supporting the Department of Education's (DoED...  ...diagnostics and mitigation (CDM) program integration, vulnerability management program, and endpoint detection & extended detection... 
    Suggested
    Contract work
    For contractors
    For subcontractor
    Remote work

    SkyePoint Decisions

    Washington DC
    4 days ago
  • Customer Success Program Manager - ISSO Services
     ...AnaVation is seeking a Customer Success Program Manager to support a cabinet-level client in...  ...of hands-on GRC experience, e.g., as an ISSO/ISSE/ISSM, SCA. At least two (2) active,...  ...RMF, FedRAMP, SA&A, IT security audits, vulnerability andPOA&M remediation, executive orders... 
    Suggested
    Temporary work
    Immediate start
    Remote work

    Nava

    Washington DC
    4 days ago
  • Information Systems Security Officer (ISSO)
     ...Cloud Information System Security Officer (ISSO) - Senior Level (TS Required, eligible...  ...provides support in Cybersecurity and Management to improve a federal customer's Information...  ..., Assessment and Authorization (A&A), Vulnerability Management, and Cyber Defense support.... 
    Contract work

    Macpower Digital Assets Edge

    Washington DC
    1 day ago
  • ISSO: Federal Cybersecurity Leader (Top Secret, Onsite)
     ...firm in Washington, DC is seeking an Information Systems Security Officer (ISSO) to provide support in cybersecurity and risk management. The role requires onsite presence and involves vulnerability assessments and technical support in securing information systems. A... 

    IntelliDyne LLC

    Washington DC
    1 day ago
  • ISSO / Control Evaluator - Sr
     ...ISSO / Control Evaluator – Senior Position Title: ISSO / Control Evaluator – Senior...  ...provide cybersecurity governance, Risk Management Framework (RMF), continuous monitoring,...  ...remediation recommendations. Coordinate vulnerability management activities including... 

    cFocus Software Incorporated

    Washington DC
    1 day ago
  • Vulnerability Management Lead
     ...Computer Technologies Consultants (CTC) is seeking a Vulnerability Management Lead to support the Universal Service Administrative Company (USAC...  ...vulnerability data into RMF / POA&M and ISCM workflows (with ISSO/ISCM Lead) Severity prioritization and risk-based remediation... 
    Full time
    Contract work
    Local area
    Flexible hours

    Computer Technologies Consultants

    Washington DC
    5 days ago
  • Senior ISSO Project Lead (Hybrid)
    Coalfire is seeking an experienced Project Lead/Senior ISSO to support its cybersecurity initiatives in Washington, D.C. This full-time role involves leading a team and providing expertise in information assurance. The candidate should have over 10 years of experience... 
    Full time
    Flexible hours

    Coalfire

    Washington DC
    4 days ago
  • Vulnerability Management Lead - CONTINGENT
     ...ROGERCO, Inc. (RCI) is seeking an experienced Vulnerability Management Lead to join a team supporting the administration of programs on behalf of a Federal agency. In this role, you will direct vulnerability lifecycle coordination, including tracking and reporting. This... 
    Contract work
    Temporary work
    Remote work

    ROGERCO, Inc.

    Washington DC
    1 day ago
  • Vulnerability Management Team Lead
     ...Vulnerability Management Team Lead Cherokee-Federal Systems, LLC is seeking an experienced cybersecurity professional to lead a risk-driven vulnerability management program across hybrid on-prem and cloud environments. The ideal candidate will possess deep expertise... 
    Remote work

    Cherokee Federal

    Alexandria, VA
    2 days ago
  • FCC - Vulnerability Management Lead
     ...cFocus Software seeks a Vulnerability Management Lead to join our program supporting the Federal Communications Commission (FCC). This position is remote. This position requires the ability a Public Trust clearance. Qualifications Bachelor’s degree in Cybersecurity, Computer... 
    Remote work

    cFocus Software Incorporated

    Washington DC
    10 days ago
  • Vulnerability Management Engineer

    $40 per hour

     ...UK, Ireland, Australia, and New ZealandResponsibilitiesEvaluate AI-generated cybersecurity content, including threat analysis, vulnerability assessments, and offensive security techniquesDesign and solve security-focused technical problems used to train AI systemsWrite... 
    Hourly pay
    Full time
    Part time
    Remote work

    DataAnnotation

    Washington DC
    5 days ago
  • Vulnerability Lifecycle Lead | Metrics & Remediation
    ROGERCO, Inc. is looking for a Vulnerability Management Lead to direct vulnerability lifecycle coordination. This hybrid role based in Washington, DC involves ensuring integration of outputs into compliance and risk management. The ideal candidate should have ten years... 

    ROGERCO, Inc.

    Washington DC
    3 days ago
  • ISSO/ISCM Lead — RMF & A&A Program Lead
    Ampcus, Inc is seeking an ISSO/ISCM Lead in Washington, DC, responsible for overseeing the Information Security Continuous Monitoring...  .... The role involves strategic coordination of compliance, risk management, and documentation oversight. Candidates should have a CISSP or... 
    Work at office

    Ampcus, Inc

    Washington DC
    3 days ago
  • Arlington ISSO: DoD RMF & InfoSec Lead
     ...Research, LLC is hiring an Information Systems Security Officer (ISSO) in Arlington, VA. This full-time role demands an active DoD...  ...security policies, interpret security plans, and develop risk management frameworks among cross-discipline teams. We seek a motivated individual... 
    Full time

    Apogee Research, LLC

    Arlington, VA
    4 days ago
  • ISSO/ISCM Lead (RFP)
     ...highly motivated candidate to join our talented Team. Job Title: ISSO/ISCM Lead (RFP) Job Location: Washington, DC Job...  ...Continuous Monitoring (ISCM) program. This role leads the Risk Management Framework (RMF) and A&A lifecycle, ensuring that all security artifacts... 
    For contractors
    Work at office

    Ampcus

    Washington DC
    1 day ago
  • ISSO/ISCM Lead - CONTINGENT
     ...RCI) is seeking a skilled Information System Security Officer (ISSO)/ Information Security Continuous Monitoring (ISCM) Lead to join...  ...execution of the ISCM program Oversee the Risk Management Framework (RMF) and Assessment and Authorization (A&A) lifecycle... 
    Contract work
    Temporary work
    Work at office
    Remote work

    ROGERCO, Inc.

    Washington DC
    1 day ago
  • Product Owner- Vulnerability Management
     ...cybersecurity products. Serves as a PO or, Scram team member. Manages clients’ priorities of features and requests. Works with multiple...  ...to identify and communicate how to automate Cyber hygiene and Vulnerability Management. Functions Take the lead of scrum teams as... 
    Work experience placement
    Work at office

    Samprasoft

    Washington DC
    3 days ago
  • 4381 ISSO Team Lead
    4381 ISSO Team Lead 4381 | Top Secret Job Description: OVERVIEW: We...  ...and training, mentorship, performance management, and day-to-day work assignments Develop...  ..., networks, and databases; identify vulnerabilities REQUIRED QUALIFICATIONS: Minimum... 

    Procession Systems

    Washington DC
    5 days ago
  • Vulnerability Management Team Lead
     ...Vulnerability Management Team Lead Bethesda, MD Require employee(s) performing vulnerability management functions possess demonstrable credentials to reflect knowledge, skills, and experience: • Coordinating teams, utilizing vulnerability scanning tools, and developing... 

    Merit 321

    Bethesda, MD
    2 days ago
  • ISSO II: Top Secret/SCI Security Lead for DoD Systems
    Redtracetech is looking for an Information System Security Officer (ISSO) II based in Washington, D.C. The successful candidate will...  ..., a Top Secret Clearance with SCI eligibility, and strong knowledge of the Risk Management Framework. #J-18808-Ljbffr Redtracetech

    Redtracetech

    Washington DC
    3 days ago
  • Senior ISSO - RMF Lead (TS/SCI) for eMASS
    Insight Global is seeking an ISSO in Washington, D.C. to support a large government customer. This role involves leading the creation...  ...Security Plans, conducting RMF process, and overseeing risk management. Ideal candidates will have 5+ years of relevant experience in... 

    Insight Global

    Washington DC
    5 days ago
  • Senior Cloud ISSO - RMF & Cloud Security Lead
     ...looking for a Senior Cloud Information Systems Security Officer (ISSO) in Washington, DC. This role involves overseeing cybersecurity...  ...candidate has extensive experience in cloud security, risk management, and knowledge of frameworks like RMF and NIST. Required qualifications... 

    Bart & Associates, LLC

    Washington DC
    3 days ago
  • Remote Threat & Vulnerability Program Manager
    Georgetown University seeks a Security Threat and Vulnerability Program Manager responsible for the Threat and Vulnerability Program. This role involves monitoring security threats, conducting risk analysis, and managing third-party risks while collaborating with IT teams... 
    Remote job

    Georgetown University

    Washington DC
    5 days ago
  • Vulnerability Management Engineer
     ...: GEICO is seeking an enthusiastic and experienced Principal Engineer to provide support for vulnerability management. This individual will play a pivotal role in advancing our vulnerability management program, ensuring the security of our information systems and networks... 
    Full time
    Work experience placement
    Local area

    GEICO

    Chevy Chase, MD
    7 hours ago
  • ISSO/ISCM Lead
     ...Job Description Job Description Salary: ISSO/ISCM Lead Position Overview The ISSO/ISCM Lead is responsible for strategic...  ...artifacts, including System Security Plans, Configuration Management Plans, and Disaster Recovery Plans. Execute and coordinate Information... 
    Work at office

    R3 Management Services

    Washington DC
    4 days ago
  • VMDR Expert (Vulnerability Management, Detection & Response)
     ...Expert will be a senior technical authority responsible for the design, automation, and continuous improvement of Armis’ vulnerability management and detection capabilities. This role bridges traditional vulnerability management with real-time detection and response... 

    Armis

    Arlington, VA
    17 days ago
  • Senior Vulnerability Engineer
     ...2 only Clearance: Public Trust eligibility required Job Description Vulnerability Engineer Seeking a Senior Vulnerability Engineer to support enterprise vulnerability management, exposure management, compliance auditing, and web application scanning operations... 
    Remote work
    Worldwide

    Dexian

    Washington DC
    3 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to ISSO Vulnerability Management. Be the first to apply!

Related searches