ISSO -Sys Admin

About the Role

Redhorse transforms the way government uses data and technology. To support this mission, we are seeking an Information System Security Officer (ISSO) to ensure the integrity, availability, and confidentiality of our most critical information systems. In this role, you will be the frontline defender of our security posture, navigating complex DCSA requirements and supporting enterprise-wide compliance for both classified and unclassified environments. Your work ensures that Redhorse continues to deliver innovative technology solutions within a secure and trusted framework.

• Compliance & Monitoring: Perform periodic self-inspections, tests, and reviews to ensure all workstations and systems operate within authorized/accredited parameters.
• A&A Management: Lead Assessment and Authorization (A&A) activities, including certification testing and the development of System Security Plans (SSP), Risk Assessment Reports (RAR), and Security Controls Traceability Matrices (SCTM).
• Continuous Monitoring: Maintain the day-to-day security posture of classified systems through event log analysis and the management of Continuous Monitoring (ConMon) and Plan of Action and Milestones (POA&M) reports.
• Security Sustainment: Execute hardware and software change management, account management, media protection, and secure file transfers.
• Stakeholder Coordination: Act as a key liaison between project stakeholders, the Facility Security Officer (FSO), and IT teams to maintain an acceptable information system security posture.
• Corporate Support: Assist in certifications and audits (ISO/IEC 27001, CMMC) for unclassified IT systems and provide service desk support for general corporate IT incidents.

• Must be a U.S. Citizen with an active Department of Defense (DoD) Top Secret (TS) security clearance.
• 3+ years of experience as a Systems Administrator and/or ISSO specifically implementing DCSA requirements.
• Bachelor's Degree from an accredited institution.
• Demonstrated ability to prioritize multiple projects and solve complex technical problems in a fast-paced environment.
• Strong customer service skills and the ability to collaborate effectively with diverse technical and non-technical teams.
• Must hold a baseline cybersecurity certification (e.g., CompTIA Security+, CySA+, or SSCP).

We encourage all candidates who meet the basic requirements to apply, even if you do not have any of the following experience. The successful candidate will be expected to complete relevant DCSA training (CS102.16 through CS200.16) within 6 months of hire:

• Familiarity with RMF-based training courses (Categorization, Control Selection, Implementation, and Monitoring).
• Prior experience supporting ISO/IEC 27001:2013 or CMMC audits.
• Technical familiarity with hardware/software change management tools.
• Experience in a Service Desk or technical support environment.