Remote Information Systems Security Officer

Barbaricum is a rapidly growing government contractor providing leading-edge support to federal customers, with a particular focus on Defense and National Security mission sets. We leverage more than 15 years of support to stakeholders across the federal government, with established and growing capabilities across Intelligence, Analytics, Engineering, Mission Support, and Communications disciplines. Founded in 2008, our mission is to transform the way our customers approach constantly changing and complex problem sets by bringing to bear the latest in technology and the highest caliber of talent.

Headquartered in Washington, DC’s historic Dupont Circle neighborhood, Barbaricum also has a corporate presence in Tampa, FL, Bedford, IN, and Dayton, OH, with team members across the United States and around the world. As a leader in our space, we partner with firms in the private sector, academic institutions, and industry associations with a goal of continually building our expertise and capabilities for the benefit of our employees and the customers we support. Through all of this, we have built a vibrant corporate culture diverse in expertise and perspectives with a focus on collaboration and innovation. Our teams are at the frontier of the Nation’s most complex and rewarding challenges. Join us.

We are currently seeking an experienced Information Systems Security Officer (ISSO)in support of the Program Executive Office Ground Combat Systems (PEO GCS).As an Information Systems Security Officer (ISSO), you will collaborate with the Government Information Systems Security Manager (ISSM) to ensure a secure operational posture for critical information systems, supporting compliance with national cybersecurity strategies and risk management frameworks.

You will maintain cybersecurity documentation, monitor policy adherence, and contribute to vulnerability assessments, testing, and mitigation efforts. This role also involves providing subject matter expertise in cybersecurity at government-led meetings and ensuring alignment with Risk Management Framework (RMF) and other cybersecurity standards.

Responsibilities

• Coordinate with the Government Information Systems Security Manager (ISSM) to maintain the operational security posture of assigned information systems.
• Ensure compliance with anti-tamper, cybersecurity, exportability, hardware assurance, software assurance, supply chain risk management, and Cross Domain Solution (CDS) Design and Implementation Requirements as part of the National Cross Domain Strategy Management Office (NCDSMO) Raise the Bar (RTB) initiatives.
• Maintain a repository of all organizational or system-level cybersecurity-related documentation using the Government’s Enterprise Mission Assurance Support Service (eMASS) system.
• Monitor assigned system(s) for compliance with cybersecurity policies and report or brief the results to the Government.
• Assist in identifying and documenting mitigations for vulnerabilities discovered by the Information System Security Engineer (ISSE) in eMASS.
• Provide cybersecurity analysis, design, and testing documentation for assigned vehicles and weapon systems, utilizing Risk Management Framework (RMF) requirements, Security Technical Information Guides (STIGs), Information Assurance Vulnerability Alerts/Management (IAVA/M), and vulnerability scanning tools.

Qualifications

• Active DoD Secret Security Clearance.
• One of the following certifications: Certified in Governance, Risk and Compliance (CGRC) (formerly known as CAP), Computer network defense (CND), Cloud+, GIAC Security Leadership Certification (GSLC), Security+ CE, HealthCare Information Security and Privacy Practitioner (HCISPP).
• In addition to minimum required certification, a Bachelor’s degree in any discipline is desired.
• A minimum of 5 years experience in DoD weapon system acquisition, in one or a combination of the following areas:
• Review of cybersecurity controls
• Discovery of vulnerabilities and documenting mitigations
• Support to/preparation of system Assess & Authorize (A&A) / Authorization to Operate (ATO) packages
• Monitoring compliance with DoD/Army cybersecurity policies and procedures
• Working with Enterprise Mission Assurance Support Service (eMASS) or similar cybersecurity compliancy tool

Additional Information

For more information about Barbaricum, please visit our website at www.barbaricum.com.  We will contact candidates directly to schedule interviews.  No phone calls please.