We are seeking an Information System Security Officer (ISSO) who will maintain all aspects of Mobius corporate Information Technology security operations, including maintaining compliance, accreditation status, and continuous monitoring of multiple secure IT systems. The candidate will be responsible for the execution of the Information Assurance program as stipulated by various USG requirements documents including (but not limited to): NISPOM, DAAPM, JSIG, ICD 503, DAAPM, and associated NIST standards. The selected candidate will be responsible for day-to-day effective execution of the Information Assurance program, including configuration management, inspection, auditing, and remediation of systems for risks and vulnerabilities. The candidate will develop, document, and execute policies and procedures to maintain the security and stability of Mobius IT systems. The candidate will cooperate with the government Information Systems Security Manager (ISSM) to execute security requirements for DoD accredited systems. Absolute integrity and confidentiality are a critical component of this role. This full-time salaried position operates from our corporate headquarters in Alexandria, VA. The role also requires the candidate to operate in the capacity of IT support. The candidate will be responsible for daily IT operations of our Microsoft Office 365 cloud based including user account management, device management, application distribution and patching, policy deployment, auditing and maintaining corporate IT policies to ensure system security plans are DFARS and NIST compliant. Maintain multiple standalone classified computer systems. This is a high visibility position that will require frequent interaction with senior leadership and reports to the Director of Information Technology and Cyber Security. Job Tasks and Responsibilities: Develop policy and procedures to obtain and maintain compliance status of multiple security level programs Create and maintain system configuration baselines to JSIG, NISPOM, and DFARS standards Conduct systems reviews and audits Develop Assessment and Authorization (A&A) bodies of evidence of assigned systems (SSP, RAR, SCTM, CMP, RMP, CTP, etc.) Execute tasks on Plan of Actions and Milestones (POA&M) Work closely with the Corporate Program Security Officer (CPSO) to implement technical requirements for maintaining a secure operating facility Identify and recommend solutions to meet or exceed security requirements or standards Assist IA and IT leadership with the integration of emerging security technologies and proposals Conduct various actions related to cyber incident response, investigation, and resolution Operate and monitor systems using Microsoft Office 365, Intune MDM, Microsoft Defender ATP Maintain infrastructure components including network switches, wireless controllers, printers, VOIP phones, and facility security equipment (cameras, access control equipment) Diagnose hardware and software problems and replace defective components Maintain and administer computer networks including computer hardware, systems software, applications software and all configurations Recommend changes to improve systems and network configurations and determine hardware or software requirements related to such changes Gather data pertaining to user needs and problems and use the information to identify, predict, interpret, an evaluate system and network requirements Coordinate with vendors and with company personnel to facilitate purchases Education and Experience: Current Top Secret Clearance with SCI Eligibility required Eligibility for access to Special Access Program Information Bachelor s Degree in Computer Science, Information Systems, Information Assurance, Cyber Security, or related field of study; or 6 years of experience in lieu of education 2+ years of experience in information systems security/information assurance, security engineering. Demonstrated ability to act independently, prioritize tasks, and manage to schedule Strong written and verbal communication skills required Demonstrated ability to work on multiple projects simultaneously with a commitment to completion of project on a timely basis Must have strong problem-solving skills with an ability to diagnose and resolve complex issues Professional demeanor, good interpersonal skills, and ability to excel in a high-paced multi-tasked environment Experience executing the RMF process and performing risk assessments to NISPOM Chapter 8, DAAPM, JSIG, ICD 503, NIST SPs, and other government doctrine Familiarity with various information system security assessment/hardening tools - SCAP Compliance Checker, STIG Viewer, ACAS, Nessus, SECSCN, DISA SRR, Retina, HBSS, etc. Preferred experience with SIMS, XACTA, Emass Experience with Microsoft Windows administration Working knowledge of Wide Area and Local Area Networks (WAN/LAN), to include Cisco-based routers, switches, firewalls Experience working in a cloud-based distributed endpoint environment is preferred Proficient in Microsoft Applications (Word, Excel, Power Point, Outlook, Visio, etc.), including troubleshooting Experience with Microsoft Office365, Azure AD, Intune MDM, Defender ATP is strongly preferred Experience with computer forensic tools and investigation methodologies Prior ISSO/ISSM or alternate ISSO/ISSM experience This position will require the candidate maintain a DoD 8570.1 IA certification (Security+, CISSP, etc.) or the ability to obtain within 6 months upon being hired. IAM Level III certification is preferred - provided by Dice Intune, Active Directory, Risk management framework, Compliance management, System security, Cyber security, Information assurance