Information System Security Officer (ISSO)
MicroHealth is seeking an experienced Information System Security Officer (ISSO) to join our cybersecurity team in a remote capacity. The successful candidate will be responsible for ensuring the security and compliance of information systems while working in an Agile environment.Location: RemoteSalary: $130,000-$150,000Required Qualifications:
- Minimum 12+ years of experience in Cybersecurity
- Proven experience with Authorization to Operate (ATO) processes
- Demonstrated experience working in Agile development environments
Education
- Minimum: Bachelor’s degree in computer science, Cybersecurity, Information Technology, or related field
- Preferred: Master's degree
Certifications
- Required: IAT Level III certification
- Required: CISSP (Certified Information Systems Security Professional) or CISA (Certified Information Systems Auditor)
Additional Preferred Certifications
- CISM (Certified Information Security Manager)
- CRISC (Certified in Risk and Information Systems Control)
Security Clearance
- Must be able to obtain and maintain a background investigation clearance (e.g., Public Trust)
- Note: We cannot sponsor or hold existing clearances; Public Trust requirements are agency-specific
Key Responsibilities
- Develop, implement, and maintain information system security policies and procedures
- Conduct security assessments and risk analyses for information systems
- Manage and oversee ATO processes and documentation
- Ensure compliance with federal security standards and regulations (NIST, FISMA, etc.)
- Collaborate with development teams in Agile environments to integrate security practices
- Monitor and respond to security incidents and vulnerabilities
- Prepare and maintain security documentation, including System Security Plans (SSP)
- Coordinate with auditors and regulatory bodies during compliance reviews
- Provide security guidance and training to technical teams
- Implement and maintain continuous monitoring programs
- Assess and approve security controls for information systems
- Support incident response and forensic activities as needed
Additional ISSO Responsibilities
- Perform security control assessments and validation testing
- Develop and maintain security metrics and reporting dashboards
- Coordinate vulnerability management and remediation efforts
- Review and approve system interconnection agreements
- Conduct security awareness training and briefings
- Participate in change control boards and security architecture reviews
- Maintain relationships with external security vendors and service providers
- Support business continuity and disaster recovery planning
- Ensure proper handling and protection of sensitive data
- Stay current with emerging cybersecurity threats and technologies
Physical Demands:
While performing the duties of this job, the employee is regularly required to sit. The employee frequently is required to walk; use hands to finger, handle or feel; reach with hands and arms; and talk or hear. The employee is occasionally required to stand. The employee may lift or move objects up to 5 pounds. Specific vision abilities required by this job include close vision, distance vision, color vision, and the ability to adjust focus.MicroHealth will recruit, hire, train, and promote persons in all job titles, and ensure that all other personnel actions are administered without regard to race, color, religion, sex, sexual orientation, gender identity, genetic information, national origin, disability, or status as a protected veteran and ensure that all employment decisions are based only on valid job requirements.All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.If you need reasonable accommodation due to a disability for any part of the employment process, please send an e-mail to [email protected] with your request and contact information.
