Position Title: Zero Trust ISSM
Location: Tysons Corner, VA (Onsite)
Employment Type: Full-Time
Company Overview
Cedelis is a cybersecurity services firm supporting federal and national security customers across classified and mission-critical environments. We specialize in cybersecurity governance, risk management, and compliance execution for complex enterprise systems. Cedelis professionals are trusted to deliver disciplined, audit-ready security operations aligned with government standards and mission objectives.
Position Overview
Cedelis is seeking an experienced Information System Security Officer (ISSO) to support cybersecurity operations and compliance activities for classified information systems. The ISSO will be responsible for implementing, maintaining, and monitoring security controls in accordance with the NIST Risk Management Framework (RMF), Department of Defense, and Intelligence Community cybersecurity requirements.
This role supports system authorization, continuous monitoring, and ongoing risk management efforts, working closely with system owners, engineers, and security leadership to maintain an acceptable security posture.
Key Responsibilities
-
Serve as the primary ISSO for assigned information systems, supporting security control implementation and operational compliance.
-
Execute RMF activities across the system lifecycle, including documentation, assessment support, and authorization maintenance.
-
Monitor system security posture through continuous monitoring activities, including review of configuration data, vulnerability results, and compliance artifacts.
-
Identify, document, and track vulnerabilities and control deficiencies, supporting development and management of POA&Ms.
-
Coordinate with technical teams and stakeholders to remediate findings and validate corrective actions.
-
Maintain accurate and current security documentation, including system security plans, control implementation details, and assessment evidence using enterprise GRC tools.
-
Support audits, inspections, and security reviews by providing required artifacts, analysis, and subject matter expertise.
-
Ensure compliance with applicable cybersecurity policies, standards, and procedures while maintaining data integrity and reporting accuracy.
Required Qualifications
-
Minimum of five (5) years of experience supporting cybersecurity compliance, RMF, or information assurance activities within DoD or Intelligence Community environments.
-
Demonstrated experience implementing and maintaining security controls in accordance with NIST RMF and STIG requirements.
-
Familiarity with vulnerability management tools and compliance assessment processes.
-
Strong analytical skills with the ability to assess technical systems and communicate security risk effectively.
-
Ability to work independently, manage competing priorities, and maintain attention to detail in high-assurance environments.
-
Experience preparing formal cybersecurity documentation and supporting authorization or assessment activities.
Education
-
Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related discipline, or equivalent professional experience.
Security Clearance Requirements
-
Active Top Secret clearance with SCI eligibility is required.
-
Ability to successfully complete a Counterintelligence Polygraph, if required by the customer.
Certifications
-
Must meet DoD 8570 / 8140 requirements at the IAT Level II or higher (IAT III preferred).
-
Industry certifications such as Security+, CISSP, CISM, or equivalent are preferred.
Equal Employment Opportunity
Cedelis is an Equal Employment Opportunity employer. Employment decisions are based on qualifications, merit, and business needs without regard to race, color, religion, sex, national origin, age, disability, veteran status, genetic information, sexual orientation, or gender identity.
