Lead Information System Security Officer ISSO

Job Summary:

Tangent Technologies is seeking a highly skilled Lead Information System Security Officer (ISSO) to oversee and enhance cybersecurity operations in alignment with federal compliance frameworks. The selected candidate will be responsible for ensuring adherence to the Risk Management Framework (RMF), Cybersecurity Framework, and other federal security policies and procedures. This position is contingent upon contract award.  This position is an in-office position. 

Key Responsibilities:

• Serve as the primary ISSO, ensuring compliance with RMF, Cybersecurity Framework, and Authorization & Accreditation (A&A) processes.

• Develop, implement, and maintain cybersecurity policies, procedures, and guidelines in accordance with Federal Laws, Executive Orders, Office of Management and Budget (OMB) policies, Cybersecurity and Infrastructure Security Agency (CISA) directives, and National Institute of Standards and Technology (NIST) guidelines.

• Oversee the development and execution of security authorization documentation, including System Security Plans (SSPs), Security Control Assessments (SCAs), Plans of Action & Milestones (POA&Ms), and continuous monitoring activities.

• Conduct security risk assessments and implement mitigation strategies to ensure system compliance and security.

• Collaborate with internal and external stakeholders to identify, assess, and manage cybersecurity risks.

• Monitor and respond to security incidents, providing recommendations for incident response and mitigation efforts.

• Provide expert guidance and support on security-related issues to technical and non-technical teams.

• Ensure timely reporting and documentation of cybersecurity risks, vulnerabilities, and incidents.

Minimum Qualifications:

• Education: BS/BA Degree in Cybersecurity or Information Technology from a U.S. accredited college, university, or institution.

• Experience: Minimum of 3 years working with Risk Management Framework, Cybersecurity Framework, and A&A documentation development.

• Certifications: Security ; Network ; and Governance, Risk, and Compliance Certification (CGRC) or equivalent certifications.

• Technical Expertise: Strong experience in the development and implementation of information security standards and procedures.

• Knowledge of Compliance Frameworks: In-depth understanding of RMF, NIST 800-53, NIST 800-37, FISMA, and other relevant cybersecurity regulations.

• Soft Skills: Excellent oral, written, and team collaboration skills.

Preferred Qualifications:

• Advanced security certifications such as CISSP, CISM, or CISA.

• Experience working with federal agencies and government contracts.

• Familiarity with cloud security and emerging cybersecurity technologies.

Work Environment & Conditions:

• This position is an in-office position in downtown DC. 

• Must be eligible to obtain and maintain a security clearance if required by the contract.