This position is to support The Defense Advanced Research Projects Agency.

As an ISSO, you’ll be responsible for protecting the security and integrity of operating systems, applications, and networks. You’ll identify and implement appropriate security controls, maintain compliance documentation, and lead vulnerability assessments and audits.

This role requires close collaboration with Program Management, Engineering, and Software Development teams. You’ll develop and maintain Authorization to Operate (ATO) packages, including SSPs, RARs, POA&Ms, and related documentation, while supporting secure change management processes and Change Control Boards (CCB).

Key Responsibilities:

• Apply security controls across systems, applications, and cloud environments (Azure preferred)
• Develop and maintain security documentation and bodies of evidence (BOEs)
• Conduct internal vulnerability assessments and coordinate external audits
• Create and distribute security policies and procedures
• Support ATO processes with full documentation packages
• Collaborate across departments to align security practices
• Maintain secure CI/CD practices, with familiarity in Linux, Kubernetes, and containerized environments

Qualifications:

• Strong understanding of cloud security (Azure), containerization (Kubernetes), and CI/CD pipelines
• Experience with NIST-based security frameworks and compliance documentation
• Certification required: Security+ Preferred: CISSP, CISM, or CISA
• 5+ years of experience and a Bachelor’s degree or higher required

Security Clearance Required: TS/SCI

Salary Dependent on Experience

• 5+ years of experience up to $170,000
• 12+ years of experience up to $230,000