[Hiring] Cyber Security Engineer - Information System Security Officer @Illumination Works LLC

Role Description

The key responsibilities of the Information System Security Officer (ISSO) include:

• Support implementation and enforcement of cybersecurity policies and controls in accordance with DoD RMF, NIST 800-53, and Air Force guidance.
• Maintain and monitor the security posture of assigned systems/enclaves, including cloud, on-premises, and hybrid environments.
• Develop, update, and maintain RMF documentation, including System Security Plans (SSPs), POA&Ms, security controls, and assessment artifacts.
• Support ATO lifecycle activities, including control implementation, validation, and continuous monitoring.
• Develop and maintain ATO/RMF documentation in accordance with specified policies.
• Evaluate and validate security controls for systems, applications, and integrations, including cloud and API-based architectures.
• Support incident response activities, including detection, reporting, and coordination with cybersecurity teams.
• Maintain records on systems, applications, hardware, etc. to include system upgrades.
• Provide support to the Information System Security Manager (ISSM) for maintaining the appropriate operational IA posture for a system/program/enclave.

Do you have what it takes? Are you driven to implement creative solutions that unravel complex and ever-changing challenges? We value passion, curiosity, and perseverance with an ability to communicate ideas and results to diverse audiences. We look for people who thrive in collaborative and independent assignments, have the aptitude to learn new data quickly, and who are willing to mentor junior team members.

Qualifications

• 5+ years of experience in information system security, cybersecurity, or related roles.
• Bachelor’s degree in Computer Science, Cybersecurity, or comparable academic discipline.
• Must have or be willing to obtain Secret Clearance (this requires US Citizenship).
• Ability to pass required background screening and drug testing.
• Experience with DoD RMF processes, including SSP development, control implementation, POA&M management, and ATO support.
• Knowledge of NIST 800-53 security controls and continuous monitoring practices.
• Experience performing security assessments and validating system compliance.
• Experience preparing and maintaining SSPs and other security related documentation.
• Familiarity with vulnerability management tools (e.g., ACAS, Tenable, or similar).
• Understanding of cloud security principles (AWS/Azure, GovCloud, or similar environments).
• Experience with system security in hybrid environments (cloud + on-premises).
• Knowledge of networking and system integration security.
• Demonstrated experience performing day-to-day security operations of large, complicated information and information processing systems.
• Experience proposing, coordinating, implementing, and enforcing information systems security policies, standards, and methodologies, preferably on a large software or IT program.
• Understanding of Zero Trust concepts and identity/access management principles.
• Strong documentation skills, particularly for RMF artifacts and compliance reporting.
• Strong analytical, problem-solving, and organizational skills.
• Ability to work collaboratively across engineering, architecture, and cybersecurity teams.
• Must have excellent interpersonal skills.
• Security+ certification required (or higher DoD 8570/8140 equivalent).
• Additional certifications (e.g., CySA+, CASP+, CISSP) are a plus.
• Experience supporting DoD or U.S. Air Force systems preferred.

Benefits

• Market competitive salary.
• Generous PTO package.
• Comprehensive medical, dental, vision, and life insurance plans.
• 401K.
• Short/long-term disability insurance.
• Fun and engaging culture.
• Training opportunities to keep you up to speed on the latest technologies.