AI summary
MANTECH is hiring an Information Systems Security Officer (ISSO) onsite in Winchester, VA to run day-to-day security oversight, continuous monitoring, and documentation for FBI information systems. You'll manage vulnerability scanning, POA&Ms, ATO sustainment, and evidence uploads in a GRC tool across the system lifecycle. Standout requirement/perk: active Top Secret clearance with SCI eligibility (and polygraph) for a high-security mission environment.
Key skills
ISSO (Information Systems Security Officer) experienceTop Secret security clearance (SCI eligible)ATO / continuous monitoringPOA&M development and trackingVulnerability scanningTenable Nessus / Tenable Security CenterGRC application evidence managementNmap (Network Mapper)Security documentation and control validationCISSP / GISP / CASP / CISM (IAM Level II)
Salary not listed — comparable onsite cleared ISSO roles in the Winchester, VA/DC-area market often pay roughly $120k–$170k depending on clearance, certifications, and experience.
You'll thrive here if you enjoy owning security compliance and continuous monitoring end-to-end in a cleared environment and coordinating fixes with system owners to keep systems authorized.
Why apply
- Top Secret/SCI mission work
- Onsite role in Winchester, VA
- Work with enterprise security tools
MANTECH seeks a motivated, career and customer-oriented Information System Security Officer (ISSO) to join our team in Winchester, VA.
Responsibilities include, but are not limited to:
- Ensure the day-to-day implementation, oversight, continuous monitoring, and maintenance of the security configuration, practices, and procedures for each IS. Ensure that selected security controls are implemented and operating as intended during all phases of the IS lifecycle. Ensure that system security documentation is developed, maintained, reviewed, and updated on a continuous basis
- Provide liaison support between the system owner and other IS security personnel. Conduct required IS vulnerability scans according to risk assessment parameters.
- Develop Plan of Action and Milestones (POAMs) in response to reported security vulnerabilities
- Manage the risks to ISs and other FBI assets by coordinating appropriate correction or mitigation actions and oversee and track the timely completion of (POAMs). Coordinate system owner concurrence for correction or mitigation actions. Monitor security controls for FBI ISs to maintain security Authorized to Operate (ATO)
- Upload all security control evidence to the Governance, Risk, and Compliance (GRC) application to support security control implementation during the monitoring phase
- Ensure that changes to an FBI IS, its environment, and/or operational needs that may affect the authorization status are reported to the system owner and IS Security Manager (ISSM). Ensure the removal and retirement of ISs being decommissioned in coordination with the system owner, ISSM, and ISSR
Minimum Qualifications:
- 5 years' experience performing duties of an Information Systems Security Officer (ISSO) at a cleared facility
- Minimum of 7 years’ experience in a computer science or Cybersecurity related field
- Hold at least one of the following certifications: Certified Information Systems Security Professional (CISSP), Global Information Security Professional (GISP), or the CompTIA Advanced Security Practitioner (CASP), Certified Information System Manager (CISM), or Information Assurance Management (IAM) Level II proficiency
- Familiarity with the use and operation of security tools including Tenable Nessus and/or Security Center, IBM Guardium, HP Weblnspect, Network Mapper (NMAP), and/or similar applications
Preferred Qualifications:
- A bachelor's or advanced degree in Computer Science, Cybersecurity, or other cyber discipline
Clearance Requirements:
- Must have a current/active Top Secret security clearance and be willing and able to obtain SCI eligibility prior to start.
- Selected candidate must be willing to undergo a Polygraph.
Physical Requirements:
- Must be able to remain in a stationary position 50%
- Needs to occasionally move about inside the office to access file cabinets, office machinery, etc.
- Constantly operates a computer and other office productivity machinery, such as a calculator, copy machine and computer printer