Information System Security Officer (ISSO)

Cepeda Systems & Software Analysis is seeking a motivated and detail-oriented Information System Security Officer (ISSO) to support cybersecurity, Risk Management Framework (RMF), and Information Assurance activities within the U.S. Army Aviation and Missile ecosystem at Software, Simulation, Systems Integration & Engineering (S3I) and Foreign Military Sales Division (FMS-D) activities located on Redstone Arsenal, Alabama.

The ISSO will support secure software development, systems integration laboratories, engineering networks, and operational mission systems across classified and unclassified environments. The selected candidate will work alongside government cybersecurity personnel, ISSMs, system administrators, software developers, and engineering teams to help maintain secure and compliant mission systems supporting Army Aviation and partner nation requirements.

Clearance Requirements:

• Active SECRET clearance required.
• Ability to obtain and maintain TOP SECRET clearance preferred.
• S. Citizenship required.

Responsibilities:

• Support implementation and maintenance of cybersecurity controls for mission systems, development environments, servers, and laboratory networks.
• Assist with development, review, and maintenance of RMF documentation including System Security Plans (SSPs), POA&Ms, Security Control Traceability Matrices (SCTMs), and supporting cybersecurity artifacts.
• Support compliance with DoD cybersecurity policies, NIST SP 800-53 controls, STIG requirements, and Army cybersecurity guidance.
• Assist with maintaining systems in compliance with Authorization to Operate (ATO) requirements.
• Conduct vulnerability scans, configuration reviews, and security assessments utilizing tools such as ACAS/Nessus, HBSS, SCAP, or similar cybersecurity tools.
• Track, document, and assist with remediation of cybersecurity findings and vulnerabilities.
• Support continuous monitoring activities and maintain cybersecurity status reporting for supported systems.
• Review audit logs, scan results, and system reports to identify security concerns and compliance gaps.
• Work with software developers, systems administrators, network engineers, and integration lab personnel to support secure system configurations and cybersecurity best practices.
• Assist with implementation of cybersecurity requirements within software development, virtualization, and systems integration environments.
• Support configuration management and cybersecurity change management activities for system updates and modifications.
• Assist with cybersecurity incident response activities including reporting, documentation, and remediation support.
• Support investigations related to cybersecurity events, vulnerabilities, and policy compliance issues.
• Maintain cybersecurity documentation, records, and supporting artifacts required for audits and inspections.
• Coordinate with ISSMs, government cybersecurity personnel, and engineering teams to ensure cybersecurity objectives and compliance requirements are met.
• Participate in technical meetings, cybersecurity reviews, and program status briefings as required.
• Support cybersecurity awareness efforts and assist users with cybersecurity-related procedures and compliance practices.

Required Qualifications:

• Bachelor’s degree in Cybersecurity, Information Assurance, Computer Science, Information Systems, Engineering, or related technical field.
• Minimum 5 years of experience supporting cybersecurity, RMF, or Information Assurance activities within DoD or Federal environments.
• Working knowledge of RMF processes, NIST SP 800-53 controls, STIG implementation, and DoD cybersecurity requirements.
• Experience supporting Windows and/or Linux-based systems and enterprise network environments.
• Familiarity with vulnerability management and cybersecurity tools such as ACAS/Nessus, HBSS, Splunk, or related technologies.
• Strong analytical, troubleshooting, organizational, and documentation skills.
• Effective verbal and written communication skills with the ability to work in integrated government-contractor teams.

Desired Qualifications:

• Current DoD 8570/8140 compliant certification such as Security+, CySA+, CASP+, CEH, or equivalent.
• Experience supporting Army Aviation, S3I, AvMC, HWIL/JSIL, mission planning systems, or systems integration laboratory environments.
• Familiarity with DevSecOps concepts, software assurance, and secure development practices.
• Experience supporting both classified and unclassified systems.
• Knowledge of Army cybersecurity policies including AR 25-2 and RMF implementation guidance.

What We Offer:

Our industry-leading benefits package goes above and beyond competitive salary commensuration for those just beginning their career and seasoned professionals alike. Our comprehensive benefits package includes full coverage medical insurance, paid leave and paid holidays, multiple retirement plan options, short-term and long-term disability, life insurance, and work/life benefits including career development and recognition programs. Other perks we offer are flexible work schedules, company-sponsored events, and educational assistance.

Disability Accommodation for Applicants:

Cepeda is an Equal Employment Opportunity employer and provides reasonable accommodation for qualified individuals with disabilities and disabled veterans in its job application procedures.  If you have any difficulty using our online systems and need accommodation due to a disability, you may use the following alternative email address or phone number to contact us about your interest in employment at hrsupport@sgi-hq.us. Our process is to respond and work with the requestor to identify a workable accommodation to the application process. 

Company Overview:

Formed as a corporation in 2001, we are a HUBZone, veteran-owned, woman-owned small business. We focus on serving DoD, NASA, and the commercial sector, our services span the complete product life cycle from concept to software development to product release. Our services include software engineering, systems engineering, and process improvement.

We are passionate about meeting customer requirements while minimizing costs and maximizing performance. We have achieved a rating of Capability Maturity Model Integration (CMMI) Level 3 for services and development. We have a 100% customer satisfaction rating and have won numerous awards at the local and national level. We are also extensively involved in the community and make generous charitable contributions.

Cepeda provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, gender identity, sexual orientation, pregnancy, status as a parent, national origin, disability (physical or mental), family medical history or genetic information, political affiliation, military service, or other non-merit, based factors