Information System Security Officer (ISSO)

Applied Research Solutions has a new role for an Information System Security Officer (ISSO) to support the Aerospace Dominance Enabler Division (AFLCMC\C3BM) at Hill AFB in Ogden Utah.

This role supports the protection, accreditation, and ongoing security posture of Air Force information systems. In this role, you will work closely with the Information System Security Manager (ISSM) to ensure systems meet all DoD and Air Force cybersecurity requirements, align with the Risk Management Framework (RMF), and maintain the confidentiality, integrity, and availability of critical networks and data.
You will conduct risk assessments, support accreditation activities, evaluate system security controls, and help enforce policies, configurations, and user access standards.

Additional responsibilities include monitoring for vulnerabilities, assisting with incident response actions, maintaining compliance artifacts, and supporting secure system design efforts.

This position requires strong attention to detail, a commitment to cybersecurity excellence, and the ability to collaborate across technical and leadership teams.

• Ensure all systems and applications meet DoD and Air Force cybersecurity requirements as directed by the Information System Security Manager (ISSM).
• Protect the confidentiality, integrity, and availability of systems, networks, and data by developing, implementing, and maintaining cybersecurity programs, policies, procedures, and security tools.
• Support all Risk Management Framework (RMF) authorization and accreditation activities, including configuration, artifact creation, documentation, and compliance reviews.
• Assist the ISSM in performing risk and vulnerability assessments on planned and operational information systems, identifying security gaps and recommending mitigation actions.
• Conduct security evaluations, audits, and reviews; support development of system contingency and disaster recovery plans; and promote user compliance with cybersecurity policies and training requirements.
• Participate in system and network design efforts to ensure appropriate security controls and RMF activities are incorporated from the start.
• Assist in the collection, analysis, and preservation of digital evidence related to cybersecurity incidents or policy violations.
• Maintain the operational security posture of assigned IT systems, monitor situational awareness, and implement actions to improve or restore cybersecurity resilience.
• Enforce Air Force cybersecurity policies, procedures, configuration guidelines (e.g., STIGs/SRGs), and change management processes.
• Maintain and audit authorized user access documentation and ensure users meet clearance, need‑to‑know, and annual training requirements.
• Report security incidents or vulnerabilities to the ISSM and support implementation of corrective or protective measures.
• Initiate and track exceptions, deviations, or waivers to cybersecurity requirements as needed.
• Other duties as assigned.

• Experience supporting Risk Management Framework (RMF) activities and cybersecurity compliance
• Experience using eMASS for authorization packages, artifact management, and accreditation support
• Vulnerability assessment and risk mitigation analysis
• STIG/SRG implementation and configuration management
• Security audits, assessments, and incident response support
• Information system security and operational security posture management
• Secure system and network design support in DoD environments

• Ability to develop innovative approaches to complex test problems
• Strong attention to quality, adequacy, and completeness of test results and conclusions
• Ability to deliver thorough, timely, and efficient task execution
• Ability to provide clear analysis and recommendations to program test leadership

Location: Hill AFB, UT (onsite)

Travel: Travel may be required at the customer's discretion