Information System Security Officer (ISSO)

Job Title: Senior Information System Security Officer (ISSO) Location: Columbia, SC - Onsite
About the Role
We re looking for a highly experienced and detail-oriented Senior Information System Security Officer (ISSO) to join our client s Cybersecurity team. In this role, you ll lead day-to-day security and compliance operations within a complex, high-impact IT environment. If you're passionate about system security, regulatory frameworks like FISMA and HIPAA, and thrive on ensuring critical data is protected you ll fit right in.

This role requires hands-on leadership in developing, enhancing, and maintaining security controls, policies, and procedures to support compliance with federal and state requirements. You ll also work closely with agency leadership, vendors, and cross-functional teams to support security operations and risk management strategies.
Key Responsibilities
Lead and contribute to the development of security and compliance efforts based on FISMA, NIST, CMS MARS-E, HIPAA, and agency-specific standards.
Oversee and manage security artifacts including SSPs, PIAs, ISAs, CMAs, and other RMF documentation.
Conduct architectural reviews and risk assessments related to system access, firewall configurations, and vulnerability management.
Support audits and assessments of internal and partner systems to ensure compliance and security readiness.
Collaborate with stakeholders to provide risk mitigation strategies and recommendations.
Maintain and utilize tools such as RSA Archer, eGRC systems, Microsoft Office Suite, Bizagi, and SIEM platforms.
Coordinate third-party audit activities and act as a point of contact for vendor compliance questions.
Guide and mentor junior staff and team members across projects and assessments.
Technical Skill Requirements
Deep understanding of security frameworks including FISMA, NIST, CMS MARS-E, and HIPAA Security/Privacy.
Proven experience with eGRC platforms such as RSA Archer.
Familiarity with IBM System 390/zSeries, NoSQL databases, Windows/Linux systems, firewalls, and SIEM solutions.
Competency in reviewing firewall rules, system access models, and configuration baselines.
Strong documentation and communication skills to translate technical concepts to non-technical stakeholders.
Intermediate to advanced proficiency in Microsoft Word, Excel, Visio, PowerPoint.
Minimum Qualifications
8 10 years of progressive experience in information security roles with a focus on regulatory compliance.
Proven leadership experience in FISMA-compliant environments and handling high-stakes audits or assessments.
Prior experience in the health IT space, preferably supporting government systems or Medicaid programs.
Strong interpersonal and analytical skills; able to handle multiple tasks and changing priorities.
Required Certifications One or more of the following:

ISC CISSP
ISACA CISM or CISA
SANS GIAC (GSEC, GCIH, etc.)
Preferred Skills
Bachelor s degree in Computer Science, Information Systems, Cybersecurity, or a related field.
Prior experience with ITIL frameworks and information security management.
Familiarity with risk scoring, control assessments, and identity & access management best practices.
What You ll Need to Succeed
Strong leadership and communication across technical and executive levels.
Keen attention to detail while still seeing the big picture.
Flexibility and adaptability to shifting priorities and regulatory changes.
A collaborative mindset and ability to work with diverse teams and stakeholders.
If you re a seasoned ISSO with deep experience in federal compliance and enterprise security and you re ready to take on a mission-critical role that directly supports the protection of public health systems this opportunity is for you.