CACI International Inc · 10 hours ago
Information System Security Officer (ISSO)
Offutt Air Force Base, NE
Full-time
Onsite
Senior Level, Lead/Staff
$68K/yr - $142K/yr
10+ years expCACI International Inc is seeking an Information System Security Officer (ISSO) to support their DoD customer in implementing an enterprise IT service delivery model. The role involves ensuring security compliance, managing information assurance programs, and providing support for continuous monitoring and risk assessment processes.
SoftwareInformation TechnologyService Industry
No H1B
Security Clearance RequiredU.S. Citizen Only
Responsibilities
Verify that all requirements for system access to an Information System are met and that there is a signed Acceptable Use Agreement on file
Assist in the preparation, distribution, coordination and maintenance of plans, instructions, policies, guidance, and standard operating procedures necessary for implementation of the Organization’s IA program and serve as the subject matter focal point for the Organization’s IA program
The ISSM in ensuring that a Certification and Accreditation package is prepared and maintained in accordance with (IAW) the DoD Information Assurance Certification and Accreditation Process (DIACAP), or the DoD Risk Management Framework (RMF)
Overseeing System Owners to ensure they follow established IS policies and procedures
Reviews weekly bulletins and advisories that impact security of site information systems to include, RCERT, ACERT, IAVA, and DISA ASSIST bulletins
Provide clear and accurate reporting of current IAVA’s and statuses of implementation to ensure the security and health of our environment
Provide support for the Department of the Air Force (DAF) Continuous Monitoring and Risk Assessment (CORA) process, ensuring alignment with security controls, risk management frameworks, and compliance requirements for cybersecurity assessments. Assist in the development, review, and management of CORA documentation, supporting ongoing evaluation and mitigation of security risks within DAF systems
Implementing and enforcing IS security policies
Ensuring approved policies and procedures are in place capturing the organization’s requirements regarding all of the NIST 800-53r5 families. The ISSO will assist in updating policies and procedures when changes occur or periodically
Ensuring development and implementation of procedures in accordance with configuration management (CM) policies and practices for authorizing the use of hardware/software on an IS. Any changes or modifications to hardware, software, or firmware of a system must be coordinated with the ISSM/ISSO and appropriate approving authority prior to the change
Responding to security incidents, and for investigating and reporting (to the IAM and ISSO and to local management) security violations and incidents, as appropriate
Serving as a member of the Change Advisory Board and Demand Approval Board
Working knowledge of system functions, security policies, technical security safeguards, and operational security measures
Attending required technical (e.g., operating system, networking, security management, SysAdmin) and security training relative to assigned duties
Ensuring that proper decisions are made concerning levels of concern for confidentiality, integrity, and availability of the data, and the protection level for confidentiality for the system
Reporting all security-related incidents to the ISSM and Security Incident Response Team
Initiating protective and corrective measures when a security incident or vulnerability is discovered, with the approval of the ISSM or System Owner
Developing and maintaining an accreditation/certification and assessment/authorization support documentation package for system(s) for which they are responsible
Conducting Continuous Monitoring in line with the DAF’s cATO methodology
Ensuring all IS security-related documentation is current and accessible to properly authorized individuals
Ensuring system security requirements are addressed during all phases of the system life cycle
Provide status updates on IA and system security health to the government in a formal setting. The ISSO will need to provide updates for all of the systems when the ISSM is unavailable
Qualification
Required
10+ Years of relevant experience (Bachelor's Degree in applicable field may be substituted for 5 years of experience)
DoD 8570 IAT or IAT level II Certified
Familiarity with DoD Risk Management Framework (RMF) or DIACAP processes
Experience with classified environments and information systems
Active DoD Secret Clearance
Strong technical written and verbal communication skills
Ability to work and lead other team members, with little oversight, to accomplish Sprints and organizational tasks
Preferred
Knowledge of eMASS
Knowledge of VDI
Knowledge of the CORAs requirements and process
ITIL Foundation
Cloud Experience
DEVSECOPS Experience
Benefits
Healthcare
Wellness
Financial
Retirement
Family support
Continuing education
Time off benefits
Company
CACI International Inc
At CACI International Inc (NYSE: CACI), our 25,000 talented and dynamic employees are ever vigilant in delivering distinctive expertise and technology to meet our customers’ greatest challenges in national security.
10001+ employees
Funding
Current Stage
Public CompanyTotal Funding
$1B2025-05-21Post Ipo Debt· $1B
2003-01-10IPO
Leadership Team
John Mengucci
President & CEO
Darryl W Burke
Senior Vice President / Air Force Client Executive
Recent News
Washington Technology
2026-01-25
2026-01-22
Company data provided by crunchbase