Harmonia Holdings Group LLC
Information System Security Officer (ISSO)
Harmonia Holdings Group LLC, Washington, District of Columbia, us, 20022
Harmonia Holdings Group, LLC is an award-winning, rapidly growing federal government contractor committed to providing innovative, high-performing solutions to our government clients and focused on fostering a workplace that encourages growth, initiative, creativity, and employee satisfaction.
We are seeking a highly skilled
Information System Security Officer (ISSO)
to support the implementation of security controls within a secure SCIF environment. The ISSO will be responsible for ensuring compliance with government security policies and standards while providing oversight of system security, assessing risks, and implementing necessary security controls to safeguard classified systems and data.
Key Responsibilities:
Implement and maintain security controls in accordance with government regulations, such as
NIST 800-53 ,
FISMA , and
DoD Risk Management Framework (RMF) .
Monitor, evaluate, and maintain the security posture of systems, ensuring compliance with
Security Technical Implementation Guides (STIGs)
and other relevant security requirements.
Develop and update
System Security Plans (SSPs) ,
Risk Assessments ,
Plan of Action and Milestones (POA&Ms) , and other documentation to reflect the current system security state.
Collaborate with system administrators, network engineers, and other IT staff to identify, mitigate, and document risks associated with system vulnerabilities and security threats.
Ensure continuous monitoring of systems by reviewing audit logs, conducting vulnerability scans, and assessing the effectiveness of existing security controls.
Provide support for
security assessments
and
accreditation
processes, ensuring that security controls are properly implemented and verified.
Lead
security control assessments
and assist with audits and inspections from internal and external agencies.
Serve as the point of contact for all system security-related matters and provide guidance to system owners on maintaining compliance with security regulations.
Conduct regular security briefings and training to staff on the importance of maintaining security best practices within the SCIF environment.
Respond to and manage security incidents, coordinating with relevant stakeholders to perform root cause analysis and remediation.
Ensure that systems and networks comply with the
Continuous Monitoring Program (CMP)
and
Incident Response Plan (IRP)
for rapid detection and response to security events.
Required Qualifications:
Top Secret clearance with SCI eligibility
is required.
Strong experience as an
Information System Security Officer (ISSO)
or similar role within a
SCIF
or other highly secure government environments.
Knowledge of
Risk Management Framework (RMF) ,
NIST 800-53 ,
FISMA , and other relevant government security regulations.
Experience developing and maintaining
System Security Plans (SSPs) ,
POA&Ms , and other security documentation.
Strong understanding of
Security Technical Implementation Guides (STIGs)
and hardening of systems.
Proven ability to implement, manage, and monitor security controls, assess vulnerabilities, and mitigate security risks.
Hands-on experience with
vulnerability management tools ,
SIEM solutions , and
continuous monitoring
technologies.
Familiarity with security incident response procedures, including root cause analysis and remediation.
Strong analytical and problem-solving skills with attention to detail.
Excellent communication and collaboration skills to work effectively with technical teams and senior leadership.
Preferred Qualifications:
Relevant certifications such as
Certified Information Systems Security Professional (CISSP) ,
Certified Information Security Manager (CISM) , or
Certified Information Systems Auditor (CISA) .
Experience with classified systems accreditation processes and
Continuous Diagnostics and Mitigation (CDM) .
Familiarity with security automation tools and processes.
Work Environment:
This position is
100% onsite
in a
SCIF
environment, ensuring the secure handling of classified information.
Occasional after-hours work may be required to address security incidents or system updates.
#LI
___________________________________________________________________________________________________________
Here at Harmonia we are pleased to have been repeatedly recognized for our outstanding work culture, the innovative work we do, and the employees on our team who make a difference each day. Some of these recognitions include:
Recognized as a Top 20 "Best Place to Work in Virginia"
Recipient of Department of Labor's HireVets Gold Medallion
Great Place to Work Certification for five years running
A Virginia Chamber of Commerce Fantastic 50 company
A Northern Virginia Technology Council Tech 100 company
Inc. 5000 list of fastest growing companies for eleven years
Two-time SBA SBIR Tibbett's Award winner
Virginia Values Veterans (V3) Certification
We recognize that every bit of our success is the result of our teams of hard-working, motivated, and innovative professionals who are proud to call themselves part of the Harmonia family! In addition to competitive compensation, a family-focused culture, and a dynamic, productive work environment, we offer all full-time employees a variety of benefits including, but not limited to
Traditional and HSA- eligible medical insurance plans w/ Wellness Incentives for employees and family
100% employer-paid dental and vision insurance options
100% employer-sponsored STD, LTD, and life insurance
Veterans Cohort
Gym membership reimbursement
401(k) matching
Dollar-for-dollar 501(c)(3) donation matching
Flexible-schedules and teleworking options
Paid holidays and Flexible Paid Time Off
Adoption Expense Reimbursement
Paid Parental Leave
Professional development and career growth opportunities and paid training days
Employer-sponsored Employee Assistance Program for employee and family
Team and company-wide events, recognition, and appreciation-- and so much more!
Check out ourLinkedIn,Facebook, andInstagramto find out a little more about who we are and if we are the right next step for your career!
Harmonia is an Equal Opportunity Employer providing equal employment opportunity to all employees and applicants for employment without regard to race, color, religion, national origin, age, gender, gender identity, sexual orientation, disability, or genetics.
Harmonia does and will take affirmative action to employ and advance in employment individuals with disabilities and protected veterans.To perform the above job successfully, an individual must possess the knowledge, skills, and abilities listed; meet the education and work experience required; and must be able to perform each essential duty and responsibility satisfactorily. Other duties in addition to those listed may be assigned as necessary to meet business needs. Reasonable accommodation will be made to enable an applicant with a disability to successfully apply for and/or perform the essential duties of the job. If you are in need of an accommodation, please contactHR@harmonia.com.
#J-18808-Ljbffr
Information System Security Officer (ISSO)
to support the implementation of security controls within a secure SCIF environment. The ISSO will be responsible for ensuring compliance with government security policies and standards while providing oversight of system security, assessing risks, and implementing necessary security controls to safeguard classified systems and data.
Key Responsibilities:
Implement and maintain security controls in accordance with government regulations, such as
NIST 800-53 ,
FISMA , and
DoD Risk Management Framework (RMF) .
Monitor, evaluate, and maintain the security posture of systems, ensuring compliance with
Security Technical Implementation Guides (STIGs)
and other relevant security requirements.
Develop and update
System Security Plans (SSPs) ,
Risk Assessments ,
Plan of Action and Milestones (POA&Ms) , and other documentation to reflect the current system security state.
Collaborate with system administrators, network engineers, and other IT staff to identify, mitigate, and document risks associated with system vulnerabilities and security threats.
Ensure continuous monitoring of systems by reviewing audit logs, conducting vulnerability scans, and assessing the effectiveness of existing security controls.
Provide support for
security assessments
and
accreditation
processes, ensuring that security controls are properly implemented and verified.
Lead
security control assessments
and assist with audits and inspections from internal and external agencies.
Serve as the point of contact for all system security-related matters and provide guidance to system owners on maintaining compliance with security regulations.
Conduct regular security briefings and training to staff on the importance of maintaining security best practices within the SCIF environment.
Respond to and manage security incidents, coordinating with relevant stakeholders to perform root cause analysis and remediation.
Ensure that systems and networks comply with the
Continuous Monitoring Program (CMP)
and
Incident Response Plan (IRP)
for rapid detection and response to security events.
Required Qualifications:
Top Secret clearance with SCI eligibility
is required.
Strong experience as an
Information System Security Officer (ISSO)
or similar role within a
SCIF
or other highly secure government environments.
Knowledge of
Risk Management Framework (RMF) ,
NIST 800-53 ,
FISMA , and other relevant government security regulations.
Experience developing and maintaining
System Security Plans (SSPs) ,
POA&Ms , and other security documentation.
Strong understanding of
Security Technical Implementation Guides (STIGs)
and hardening of systems.
Proven ability to implement, manage, and monitor security controls, assess vulnerabilities, and mitigate security risks.
Hands-on experience with
vulnerability management tools ,
SIEM solutions , and
continuous monitoring
technologies.
Familiarity with security incident response procedures, including root cause analysis and remediation.
Strong analytical and problem-solving skills with attention to detail.
Excellent communication and collaboration skills to work effectively with technical teams and senior leadership.
Preferred Qualifications:
Relevant certifications such as
Certified Information Systems Security Professional (CISSP) ,
Certified Information Security Manager (CISM) , or
Certified Information Systems Auditor (CISA) .
Experience with classified systems accreditation processes and
Continuous Diagnostics and Mitigation (CDM) .
Familiarity with security automation tools and processes.
Work Environment:
This position is
100% onsite
in a
SCIF
environment, ensuring the secure handling of classified information.
Occasional after-hours work may be required to address security incidents or system updates.
#LI
___________________________________________________________________________________________________________
Here at Harmonia we are pleased to have been repeatedly recognized for our outstanding work culture, the innovative work we do, and the employees on our team who make a difference each day. Some of these recognitions include:
Recognized as a Top 20 "Best Place to Work in Virginia"
Recipient of Department of Labor's HireVets Gold Medallion
Great Place to Work Certification for five years running
A Virginia Chamber of Commerce Fantastic 50 company
A Northern Virginia Technology Council Tech 100 company
Inc. 5000 list of fastest growing companies for eleven years
Two-time SBA SBIR Tibbett's Award winner
Virginia Values Veterans (V3) Certification
We recognize that every bit of our success is the result of our teams of hard-working, motivated, and innovative professionals who are proud to call themselves part of the Harmonia family! In addition to competitive compensation, a family-focused culture, and a dynamic, productive work environment, we offer all full-time employees a variety of benefits including, but not limited to
Traditional and HSA- eligible medical insurance plans w/ Wellness Incentives for employees and family
100% employer-paid dental and vision insurance options
100% employer-sponsored STD, LTD, and life insurance
Veterans Cohort
Gym membership reimbursement
401(k) matching
Dollar-for-dollar 501(c)(3) donation matching
Flexible-schedules and teleworking options
Paid holidays and Flexible Paid Time Off
Adoption Expense Reimbursement
Paid Parental Leave
Professional development and career growth opportunities and paid training days
Employer-sponsored Employee Assistance Program for employee and family
Team and company-wide events, recognition, and appreciation-- and so much more!
Check out ourLinkedIn,Facebook, andInstagramto find out a little more about who we are and if we are the right next step for your career!
Harmonia is an Equal Opportunity Employer providing equal employment opportunity to all employees and applicants for employment without regard to race, color, religion, national origin, age, gender, gender identity, sexual orientation, disability, or genetics.
Harmonia does and will take affirmative action to employ and advance in employment individuals with disabilities and protected veterans.To perform the above job successfully, an individual must possess the knowledge, skills, and abilities listed; meet the education and work experience required; and must be able to perform each essential duty and responsibility satisfactorily. Other duties in addition to those listed may be assigned as necessary to meet business needs. Reasonable accommodation will be made to enable an applicant with a disability to successfully apply for and/or perform the essential duties of the job. If you are in need of an accommodation, please contactHR@harmonia.com.
#J-18808-Ljbffr