Information System Security Officer (ISSO III) - US Navy

Description

Overview

The Information System Security Officer (ISSO) III will support the Navy in ensuring that information systems remain secure, compliant, and mission-ready. This role is responsible for implementing cybersecurity controls, monitoring security posture, supporting incident response, and ensuring compliance with Department of Navy, NAVSEA, and DoD cybersecurity requirements.

Responsibilities

• Implement and manage information security controls across Navy IT systems. 
• Ensure compliance with cybersecurity regulations, directives, and published policies. 
• Conduct vulnerability and threat analyses, document findings, and recommend corrective actions. 
• Support cybersecurity incident response activities including isolation of affected assets, initial investigation, evidence collection, and status reporting. 
• Monitor systems for suspicious activity, unauthorized access, and security misconfigurations. 
• Prepare and maintain system security documentation to support accreditation and assessment processes. 
• Provide updates, reports, and security briefings to Navy leadership and program managers. 
• Collaborate with system administrators, engineers, and other cybersecurity personnel to maintain confidentiality, integrity, and availability of Navy information systems.

Requirements

• Education: 
• Experience: 
• Skills & Knowledge: 
• Certifications: 
• Bachelor’s degree in Computer Science, Information Technology, Communications Systems Management, or other STEM discipline. 
• Minimum 6 years of experience coordinating and enacting security changes within an organization. 
• Experience with vulnerability and threat analysis, compliance enforcement, and incident response. 
• Familiarity with DoD and Navy cybersecurity practices and reporting requirements. 
• Proficiency in identifying, analyzing, and mitigating cybersecurity threats. 
• Strong understanding of Risk Management Framework (RMF), system accreditation processes, and DoD cybersecurity directives. 
• Excellent communication and reporting skills with the ability to provide clear, actionable recommendations. 
• Must hold a baseline certification as outlined in the Cybersecurity Workforce (CSWF) requirements (e.g., Security+ CE, CISSP, CISM, or equivalent). 

Security Clearance Requirements

• Active Secret clearance