Title: Information Systems Security Officer (ISSO)

Location: Remote to start, must be local to D.C. for anticipated hybrid return schedule

Job Type: 6-month contract with strong intent to convert to salary + benefits after 6-months

Compensation: 50-55/hour

Role Overview:

You’ll be joining a collaborative, high-performing security group that’s been embedded in this federal program for nearly a decade. The culture is direct, collaborative, and all-in on delivery. You’ll work alongside others who know the mission and have your back, even when the pace is demanding. You won’t just write policy—you’ll help shape how federal systems stay secure in real-world conditions.

Qualifications:

• REQUIRED: Strong working knowledge of Assessment and Authroization A&A package lifecycle.
• 7+ years of experience in cybersecurity or infosec (ideally as an ISSO, or information Assurance Analyst)
• Strong federal standard and information security framework experience especially NIST 800-53 and NIST SP 800-37
• Comfort working across multiple stakeholders including other vendors, system owners, and federal leadership
• Ability to push past blockers, escalate when needed, and stay proactive in complex environments
• Bachelor’s degree in cybersecurity, IT, or a related field
• Must be local to the DC metro area—role is remote now but may return to hybrid later
• Must be clearable for Public Trust
• Familiarity with tools like Tanium, Qualys, or ServiceNow is helpful but not required
• Certifications such as CISSP, CISA, CISM, or CCSP are preferred but not required

What you will be doing:

• Own the end-to-end development and maintenance of A&A packages for assigned systems
• Draft and update key artifacts such as System Security Plans (SSPs), POA&Ms, Risk Assessments, Privacy Impact Assessments.
• Interface with system owners, developers, and external contractors to collect security-related documentation and clarify technical inputs
• Track and escalate findings through remediation pipelines, partnering with operational teams and pushing for results when necessary
• Analyze scan data from tools like Qualys and maintain an accurate security inventory using systems such as Tanium
• Provide regular briefings to leadership and collaborate closely with peers, the ISO lead, and program managers
• Support implementation of the Risk Management Framework (RMF) aligned to NIST SP 800-37 and SP 800-53
• Help the team refine templates, improve documentation workflows, and continuously enhance compliance operation

HireCapital and our clients are equal-opportunity employers. We celebrate diversity and are committed to creating an inclusive environment for all employees.