Information Systems Security Officer - ISSO Assessor OR A&A Assessor

ISSO Assessor OR A&A Assessor – Federal Cybersecurity (Hybrid – Rockville, MD)

Location:  Hybrid –
Bethesda/Rockville, MD (3 days per week onsite

Public Trust Clearance

We are seeking ISSO Assessor OR A&A Assessormultiple experienced ISSO Assessors to support a major federal cybersecurity program.  This is a high-visibility A&A (Assessment & Authorization) role supporting the client’s transition to a more streamlined security model.

In this role, you will perform security control assessments, support the ATO lifecycle, identify vulnerabilities and control gaps, and work closely with system owners and ISSOs to ensure timely remediation. You will play a key part in helping the program reduce its significant backlog of ATOs and strengthen its overall security posture.

This is a hybrid position based in Rockville, MD (3 days in office / 2 days remote) with a Public Trust clearance requirement.

Key Responsibilities:

• Conduct security control assessments in accordance with NIST RMF, NIST SP 800-53, and FedRAMP requirements
• Perform vulnerability testing, control validation, and security assessments across federal systems
• Document assessment findings, develop POA&Ms, and track remediation efforts
• Collaborate with system owners and ISSOs to ensure controls are properly implemented and maintained
• Support ATO package development, continuous monitoring activities, and authorization boundary definition
• Utilize ServiceNow for ticketing, workflow, and A&A documentation (integration experience highly valued)
• Provide recommendations to improve the client’s security posture and streamline assessment processes

Required Qualifications:

• 3+ years of experience performing security assessments or A&A work in a federal environment
• Strong working knowledge of NIST SP 800-53, NIST RMF (800-37), and federal authorization processes
• Experience with vulnerability scanning, control testing, and POA&M management
• Ability to obtain and maintain a Public Trust clearance (U.S. Citizenship required)
• Strong written and verbal communication skills with the ability to produce clear, professional assessment documentation
• Willingness to work hybrid schedule (3 days onsite in Rockville, MD)

Preferred Qualifications:

• Prior experience supporting Federal/Government, or other health-related federal agencies
• Hands-on experience with ServiceNow GRC / ITSM modules for A&A workflows
• Familiarity with Tenable, Microsoft Defender for Endpoint, or similar security tools
• Experience supporting large portfolios of systems and managing multiple ATOs simultaneously
• CISSP, CISM, CAP, or similar security certification

Benefits:

SES hires W2 benefitted and non-benefitted consultants. Our contract employee benefits include group medical dental vision life LT and ST disability insurance, 21 days of accrued paid time off, 401k, tuition reimbursement, performance bonuses, paid overtime, and more.

Please contact me to discuss the details of this position further.

*Please forward resume directly to for immediate consideration - rstarinieri at sesc .com

I look forward to speaking with you soon!

Robin Starinieri

Director of Recruiting

Systems Engineering Services