At 38North, we're not your typical federal contractor. We're building a federal contracting division that shatters industry norms. We believe in innovation, agility, and a fearless approach to government work. Our mission? To lead with cutting-edge cybersecurity solutions while maintaining a culture that's anything but conventional. If you're ready to be part of a trailblazing team rewriting the rules, read on.
About the Role:
We're looking for an Information System Security Officer (ISSO) to be the cybersecurity linchpin for our federal contracts. You'll need in-depth expertise in federal information system security policy, industry best practices, security control assessments, and all things RMF. Expect to be our go-to expert for system authorizations, POA&M management, and vulnerability assessments.
What You'll Do:
Design and Implement: Develop robust solutions to secure sensitive information, ensuring confidentiality, integrity, and availability.
Evaluate and Advise: Assess customer systems, identify security improvements, and support risk assessments and contingency planning.
Collaborate and Influence: Work closely with developers, engineers, and managers, translating technical requirements into actionable security strategies.
Lead with Expertise: Provide top-notch technical guidance on network security, configuration management, and system analysis. You'll be key in recommending and implementing new products and technologies to elevate our clients' security posture.
What You Bring:
Experience: 8+ years in federal information systems security, with a solid background supporting financial and information security audits.
Education: BS in a relevant IT Security field.
FISMA Knowledge: At least 2 years of experience navigating FISMA requirements.
Certifications: Hold one or more of these industry-respected certifications: CISM, CISSO, FITSP-M, GCIA, GCSA, GCIH, GSLC, GICSP, CISSP-ISSMP, or CISSP.
Technical Mastery:
RMF and NIST Framework: You know your way around the Risk Management Framework and can apply the NIST Cybersecurity Framework with precision.
Federal Policy Savvy: Familiar with federal info system security policies and adept at POA&M management, configuration management, and security control assessments.
Hands-On Expertise: You're a pro at designing solutions to protect sensitive data and have deep experience in risk and vulnerability assessments.
NIST and FISMA Knowledge: Comprehensive understanding of relevant NIST Special Publications (800-53, 800-137, 800-171, 800-37) and FISMA requirements.
Tool Proficiency: Experience with CSAM and a working knowledge of today's (and yesterday's) cybersecurity threats and vulnerabilities.
Why 38North?
Because we're redefining what a federal contractor can be. We value expertise, foster a culture of innovation, and thrive on delivering unmatched solutions for our clients. If you're a cybersecurity expert who's ready to break free from the ordinary and join a forward-thinking team, we want to hear from you.