Information Security Systems Officer (ISSO) Support Specialist (VACA)

Must have an active Secret Clearanceto be considered

Must be within 1 hour of Alexandria VA or Seaside CA

Company Information

NexGen Technologies Inc. is a leading IT services firm specializing in delivering innovative highquality solutions to our federal government clients. Our core competencies include IT professional support services software development cloud services IT Operations Agile project management and GIS services.

Job Summary

NexGen is seeking a detailoriented Information Security Systems Officer (ISSO) Support Specialist to provide comprehensive RMF and cybersecurity compliance support to the Defense Manpower Data Center (DMDC). The role supports enterprisewide authorization activities by maintaining eMASS packages monitoring RMF status coordinating with Program and Product Owners and ensuring alignment with DoD cybersecurity requirements. The specialist works closely with CSD stakeholders system owners and federal partners to maintain accurate RMF documentation support governance processes and ensure timely execution of cybersecurity tasks across all accreditation boundaries.

Supervisory Responsibilities

There are no supervisory responsibilities.

Essential Duties and Responsibilities (as assigned)

Monitor RMF authorization status in eMASS and track required actions to obtain and sustain system/application authorization.

Advise stakeholders on DoD cybersecurity and ATO requirements; identify missing or incomplete information in eMASS.

Create and maintain eMASS entries ensuring artifacts are properly associated with applicable CCI security controls.

Develop STIG/control crosswalks to map controls to system functionality and determine control impact.

Update eMASS controls and POA&Ms using supporting documentation; ensure POA&M entries remain current and submit closure/extension workflows.

Explain noncompliant controls and recommend remediation strategies; coordinate updates and communication within CSD.

Serve as liaison between Program/Product Owners and CSD stakeholders to coordinate eMASS activities and information flow.

Provide subject matter expertise on RMF policy eMASS usage and DoD cybersecurity requirements.

Identify efficiencies and apply approved templates or repeatable methods for shared requirements across applications.

Support Program/Product Owners during assessments validations and audits including eMASS access and clarifications.

Organize and manage RMF meetings including scheduling agendas meeting notes and artifact storage.

Conduct quality assurance reviews of RMF submissions (e.g. ACAS scans network diagrams PPSM documentation HW/SW lists STIGs POA&Ms).

Participate in Cyber Compliance Meetings as required.

Provide expertise on cATO PPSM documentation network traffic diagrams and RMF control remediation.

Conduct risk analysis of ATO packages and provide prioritized remediation recommendations; contribute to ISSO Reports with recommended ATO conditions.

Conduct quarterly sampling of documentation against applicable security controls and evaluate risk to the DODIN; coordinate reviews with Program/Product Owners and the ISSM.

Develop Security Assessment Plans (SAPs) and Security Assessment Reports (SARs) in collaboration with Program/Product Owners and the ISSM.

Other duties may be assigned.

Technical Skills

6 years of experience supporting RMF programs within DoD or federal environments.

Handson experience with eMASS (package maintenance workflows artifact association).

Familiarity with POA&M management ATO Terms and Conditions and RMF governance processes.

Understanding of DoD cybersecurity requirements NIST SP 80053 controls STIGs and DHA/DHRA RMF processes.

Ability to interpret compliance documentation assess system boundary requirements and evaluate risk.

Experience with Microsoft Project SharePoint MS Teams and ServiceNow.

Desired Skills

Experience supporting DMDC DHRA DHA or similar DoD components.

Familiarity with DHA ATC workflows and cloudhosted system RMF requirements.

Experience developing process documentation governance artifacts or compliance KPIs.

Knowledge of central logging requirements and boundarylevel cybersecurity controls.

Education

Bachelors degree in Cybersecurity Information Technology Computer Science or related field.

Additional Requirements

Strong analytical organizational and documentation skills.

Ability to work collaboratively with interdisciplinary teams and federal stakeholders.

Must be able to pass background screening prior to employment.

US Citizenship legal permanent residence or US work authorization with a minimum of 3 years of US presence is required due to federal contract requirements.

Ability to work onsite at Seaside or Mark Center for SIPRrelated activities.

Active Secret clearance required; ability to obtain TS/SCI preferred.

Place of Performance

Minimum 25% onsite at the Mark Center (Alexandria VA) or DoD Center Monterey Bay (Seaside CA).

Work hours: 8 a.m. Eastern to 5 p.m. Pacific MondayFriday excluding federal holidays or government closures.

RMF and eMASS activities may occasionally require afterhours support with onehour recall.

Physical Requirements

Reliable internet (50 Mbps down / 25 Mbps up) and a secure remote work environment.

Reasonable accommodations will be provided as needed. (We provide reasonable accommodations to individuals with disabilities to enable them to perform the essential functions.)

Compensation: $55 per hour to $75 per hour W2

(The successful candidates starting pay will fall within the salary range provided and is determined based on jobrelated factors including but not limited to experience qualifications knowledge skills geographic work location and market conditions.)

NexGen Technologies Inc. is an equal opportunity employer. All qualified applicants will receive consideration without regard to race color religion sex national origin age disability genetic information or veteran status.

(Last Revision: )