Information Systems Security Engineer GovCIO 

This role requires a solid understanding of information assurance concepts, governance requirements, and accreditation processes. Applicants should be knowledgeable about RMF processes and documentation. While a high degree of technical proficiency is desired, applicants should be highly skilled in understanding and documenting technical implementations - acting as a bridge between system engineering staff, cybersecurity staff, and program leadership.

• Support the development, review, and maintenance of security documentation including System Security Plans (SSPs), POA&Ms, and Continuous Monitoring artifacts.
• Ensure system security controls are implemented, tested, and maintained in accordance with NIST SP 800-53, RMF, and relevant DoD directives.
• Coordinate with system owners, ISSMs, ISSOs, auditors, and external stakeholders to maintain compliance and respond to findings or inquiries.
• Monitor the security posture of systems and assist in periodic reviews, assessments, and audits.
• Participate in change control boards to evaluate the security impact of proposed modifications.
• Track and report on cybersecurity risks, vulnerabilities, and mitigations in accordance with established procedures.
• Assist with user awareness training and ensure compliance with organizational cybersecurity policies and procedures.
• Facilitate approvals for network interconnections such as the Boundary Cloud Access Point (BCAP) and DISA System/Network Approval Process (SNAP) through the provisioning of required documentation
• Support Product Teams in the preparation, response, and finding remediation for JFHQ-DoDIN Cyber Operational Readiness Assessments (CORAs)