Senior Information Systems Security Officer

Dexian Government Solutions is recruiting for a Senior Information Systems Security Officer to support our proposal effort for the DHS CIETS in DC Metro area.

Position Overview:

Serves as DHS I&A's senior offensive security and technical assessment specialist. This position is responsible for identifying vulnerabilities, assessing system security posture, validating security control effectiveness, conducting penetration testing activities, evaluating software assurance risks, and providing actionable remediation recommendations across classified and unclassified environments.

Position Overview:

The Senior ISSO serves as the day-to-day cybersecurity lead for assigned systems and acts as the principal interface between:

• System Owners
• Program Managers
• System Administrators
• Security Engineers
• ISSMs
• Security Control Assessors (SCAs)
• Authorizing Officials
• The position ensures systems remain compliant, authorized, and secure throughout their operational lifecycle.

Job Duties:

System Security Management, the Senior ISSO shall:

• Manage cybersecurity activities for assigned systems.
• Ensure systems maintain compliance with DHS and Intelligence Community requirements.
• Monitor system security posture.
• Coordinate implementation of cybersecurity requirements.
• Provide ongoing security oversight throughout the system lifecycle.

RMF and Authorization Support, the Senior ISSO shall:

• Develop and maintain RMF documentation.
• Support Assessment & Authorization (A&A) activities.
• Maintain System Security Plans (SSPs).
• Assist with Security Assessment Reports (SARs).
• Manage Plan of Action and Milestones (POA&M) documentation.
• Support ATO and ongoing authorization efforts.
• Coordinate authorization package updates.
• The ISSO is typically the individual most directly responsible for maintaining authorization artifacts on a day-to-day basis.

Continuous Monitoring, the Senior ISSO shall:

• Execute continuous monitoring activities.
• Review vulnerability scan results.
• Track remediation actions.
• Monitor control effectiveness.
• Support recurring security assessments.
• Ensure systems remain compliant between authorization cycles.
• Report security posture changes to leadership.

Vulnerability Management, the Senior ISSO shall:

• Track identified vulnerabilities.
• Coordinate remediation efforts with system administrators and engineers.
• Validate corrective actions.
• Maintain POA&M records.
• Monitor remediation timelines.
• Escalate unresolved cybersecurity risks.

Audit and Compliance Support, the Senior ISSO shall:

• Support cybersecurity audits and inspections.
• Provide evidence supporting compliance assessments.
• Respond to auditor requests.
• Assist during FISMA reviews.
• Support OIG and Intelligence Community inspections.
• Maintain audit readiness documentation.

Security Control Management, the Senior ISSO shall:

• Verify implementation of required security controls.
• Coordinate control testing activities.
• Support Security Control Assessors during assessments.
• Validate remediation of identified findings.
• Assist in maintaining compliance with NIST and Intelligence Community control requirements.

Risk Management Support, the Senior ISSO shall:

• Identify and document cybersecurity risks.
• Participate in risk assessments.
• Support risk mitigation planning.
• Monitor residual risk.
• Coordinate with ISSMs and risk management personnel.
• Assist in preparing risk recommendations for Government review.

Stakeholder Coordination, the Senior ISSO shall:

• Coordinate with system owners regarding cybersecurity requirements.
• Support engineering and architecture reviews.
• Participate in change control activities.
• Support implementation of new technologies.
• Facilitate communication between technical and cybersecurity stakeholders.

Stakeholder Interaction, the Senior ISSO routinely interfaces with:

• Information Systems Security Managers (ISSMs)
• Security Control Assessors (SCAs)
• Security Risk Management Engineers
• Cybersecurity Engineers
• System Owners
• Program Managers
• System Administrators
• Enterprise Architects
• Authorizing Officials and their representatives

Required Qualifications:

The Senior Information Systems Security Officer must have at least two (2) years of recent experience in each of the following areas:

• A&A, FISMA compliance, IC cybersecurity policy and standards, continuous monitoring, CDS, and secure cloud and hybrid engineering, with a total of at least 10 years of total related experience.
• This individual shall also have experience in emerging and evolving security risk management practices including automating A&A and continuous monitoring activities.
• The individual should be experienced in applying NIST 800 series and CNSSI 1253 security controls and risk management framework principles and guidance.

Certification Requirements:

• CISM + CAP or GRC.

Clearance Requirements:

• TS/SCI with CI Polygraph

Company Description

Dexian Government Solutions is an award-winning, ISO 9001:2015 certified, business and GSA contract holder providing diversified Information Technology services to both Civilian and Defense agencies. Services include Software Development, Systems Integration, Data Management, Project Management, Operations & Maintenance, Cybersecurity, and Training and Audio/Visual (AV) Solutions. Dexian Government Solutions has received several recognitions, including rankings on "Top 50 Companies to Watch", Washington Technology's Annual "FAST 50", and Inc. 500's List of "Fastest Growing Private Companies". The Dexian Government Solutions team is comprised of individuals who are dedicated to the success and sustainability of our customers and their missions. Our combination of technical expertise, big business experience, and small business agility allows us to promptly provide our customers with exceptional IT and engineering solutions.

Benefits

Our robust benefits package includes Open Paid Time Off, 11 Federal Paid Holidays & 5 Paid Sick Days, Company-paid Life/AD&D, Company-paid Short Term and Long-Term Disability, Health Insurance with Company Contribution, 401k Plan with Company Match, Employee Recognition Program, opportunity for Employee Referral Bonus, opportunity for annual Performance Bonus and much more!

EEO Statement

Dexian Government Solutions is proud to be an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. All employment is decided based on qualifications, merit, and business need.

All applicants will be considered for employment without attention to race, religion, color, national origin, ancestry, physical or mental disability, medical condition, pregnancy (including childbirth, lactation and related medical conditions), marital status, genetic information (including characteristics and testing), gender, sexual orientation, gender identity or expression, military and veteran status, or any other status protected under federal, state, or local law in the locations where we operate.

If you are an individual with a disability and would like to request a reasonable accommodation as part of the employment selection process, please contact Human Resources. The Company invites any applicant and/or employee to review the Company's written Affirmative Action Plan. This plan is available for inspection upon request.

_screen_reader_optimized.pdf

#DICE

#LI-LM1

This role requires an active Top Secret Security Clearance, customer approval, and successful completion of a pre-employment background screening.