ApplyLogic is a fast-paced Service-Disabled Veteran-Owned Small-Business, headquartered in Vienna, VA. Our people are our greatest asset, and our company culture is grounded on that belief. We offer challenging and interesting work in a friendly and supportive environment. Through prime and subcontracts, we deliver best-in-class expertise to solve complex technical problems. 

We're looking for a talented Information System Security Officer (ISSO) to join our team. This position will support a complex government client and will serve as the principal security advisor to the Information System Owner (ISO) and Information System Security Manager (ISSM). The ISSO is responsible for overseeing and maintaining the security posture of assigned information systems, ensuring compliance with NIST 800-53 controls, EOUSA policies, and other applicable federal security requirements.

Work Location:
Onsite – Work can be performed from either location:

• Columbia, SC 
• Washington, DC

Clearance: 
Must be US citizen with the ability to obtain a government issued security clearance.

Primary Roles and Responsibilities: 

• Serve as the primary security advisor to the ISO and ISSM on all technical and non-technical information system security matters.
• Ensure implementation, documentation, and ongoing maintenance of security controls in accordance with NIST SP 800-53 and EOUSA policies.
• Prepare, review, update, and manage system authorization packages within Cyber Security Assessment and Management (CSAM).
• Conduct continuous monitoring activities for agency systems, including internal systems and FedRAMP-authorized systems.
• Perform and document system security procedures, control implementation statements, and system security documentation.
• Conduct annual self-assessments of security controls and support authorization and assessment activities.
• Develop, review, and track Plans of Action and Milestones (POA&Ms).
• Review audit logs, vulnerability scans, and remediation activities in accordance with NIST requirements.
• Conduct Security Impact Analyses (SIA), risk assessments, risk-based acceptance documentation, and STIG reviews when system changes occur.
• Coordinate all security-related changes or modifications to system hardware, software, or firmware with Project Managers, Security Officers, and System Owners prior to implementation.
• Support patch management, vulnerability management, auditing, and assessment activities as required.
• Provide security assessment and authorization (A&A) support throughout the system lifecycle.

Required Knowledge and Experience:

• Bachelor’s degree in Computer Science, Information Technology, Business, or a related discipline
• OR eight (8) years of relevant professional experience may be substituted in lieu of a degree.
• Demonstrated experience working with NIST SP 800-53 and federal information security frameworks.
• Experience preparing and maintaining system authorization packages (ATO) within CSAM or similar GRC tools.
• Experience with continuous monitoring, vulnerability management, and POA&M tracking.
• Strong understanding of federal risk management and compliance processes, including RMF.

Preferred Education, Experience, & Skills:

• Experience supporting EOUSA or other federal law enforcement or justice systems.
• Familiarity with FedRAMP requirements and cloud security controls.
• Knowledge of DISA STIGs and security configuration baselines.
• Relevant certifications (e.g., CISSP, CISM, Security+, CAP) are a plus.

The Perks of Being on Our Team
ApplyLogic offers competitive salaries with a robust Fortune-500 type benefits package. Some of the benefits you will receive when you join us are: 

• Employee Assistance Program
• 401K
• Medical/Dental/Vision Insurance
• Life/Short-Term Disability/Critical Illness/Accident Insurance
• 15 PTO Days 
• 11 Federal Holidays
• Up to $5K towards continuing education and/or professional development