The Information System Security Officer (ISSO) is responsible for supporting the implementation, assessment, and continuous monitoring of cybersecurity requirements across multiple Electric Boat (EB) Information Systems (IS) in support of the U.S. Navy. This role operates in a fast‑paced, mission‑critical environment and plays a key part in ensuring system confidentiality, integrity, and availability. This position reports directly to the Chief of Cybersecurity.
The ideal candidate possesses a strong foundation in cybersecurity principles, and the experience to ensure EB ISs are operated and maintained in compliance with all policies and procedures required by the National Institute of Standards and Technology [NIST] Special Publications [SP] 800-53 (NIST SP 800-53) or 800-171 (NIST SP 800-171).
This position requires a balance of technical knowledge and experience, with strong documentation and reporting skills. Responsibilities include:
- Develop and maintain security plan documents (hardware and software baselines, diagrams, user lists)
- Review, track, and process configuration management changes and associated risk assessments
- Process user agreement forms, ensuring users complete necessary training and meet requirements for access
- Develop and maintain system specific policies and procedures
- Collaborate with system and network administrators to validate configurations and ensure compliance with technical security requirements
- Monitor and analyze system and user activity for indications of security concerns
- Monitoring compliance with vulnerability management requirements
- Identify, document, and report non‑compliance and security gaps, and support corrective action planning
- Supporting incident response activities
- Work closely with the Information System Security Manager (ISSM) and system stakeholders to maintain system accreditation and overall security posture
- Offer guidance and subject matter expertise on implementing and maintaining security controls
- Supporting internal and external inspections and assessments
- Assist with assessment, authorization, and continuous monitoring activities throughout the system lifecycle
NOTE: This is NOT a remote position.