Information Systems Security Officer

Base-2 Solutions

$90K — $120K *
Information Technology
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • Top Secret/SCI Security Clearance required with Full Scope Polygraph
  • 5-7 years of experience in cybersecurity compliance and risk management
  • Proficiency with NIST SP 800-53, RMF, and other security frameworks
  • Experience with security documentation like SSPs and SARs
  • Familiarity with security tools like ACAS, Nessus, and Splunk
  • Knowledge of cloud platforms and security controls
  • Certifications such as CISSP, CAP, Security+, CISM, or related fields

Responsibilities

  • Ensure compliance with federal, DoD, and IC cybersecurity regulations
  • Maintain and update essential security documentation
  • Coordinate security assessments and audits
  • Conduct risk assessments and vulnerability analyses
  • Facilitate system authorization activities per RMF
  • Monitor incident response and security posture reports
  • Collaborate with engineering teams to integrate security into system lifecycle
  • Provide security training to users and enforce security policies

Benefits

  • 100% coverage of employee and eligible dependents' medical, dental, and vision premiums
  • 401(k) plan with a total of 8% company contributions and immediate vesting
  • Generous PTO up to 20 days plus 11 paid floating holidays
  • Flexible work schedules including options for compressed work weeks
  • Employee referral bonuses up to $10,000 for referred hires
  • Additional performance-related bonus opportunities
  • Comprehensive income protection benefits fully covered by the company
Full Job Description
  • Requisition ID: 2959
  • Standard Title:
  • Required Security Clearance: Top Secret/SCI with Full Scope Polygraph
  • Location: Annapolis Junction, MD
  • Work Type: On-Site
  • Shift: First
  • Referral Eligibility: Eligible
  • U.S. Citizenship Required? Yes


Job Description:

Responsibilities:

  • Ensures system compliance with federal, DoD, and IC cybersecurity regulations and standards, including NIST, ICD 503, CNSS, and RMF.


  • Maintains and updates security documentation, including System Security Plans (SSPs), Security Assessment Reports (SARs), Plan of Action and Milestones (POA&Ms), and Continuous Monitoring Plans.


  • Coordinates and supports security assessments, audits, and inspections by internal and external stakeholders.


  • Conducts risk assessments and vulnerability analysis, providing recommendations for mitigating identified risks.


  • Facilitates and oversees system authorization activities in accordance with the Risk Management Framework (RMF) process.


  • Monitors and reports on system security posture, incident response, and remediation efforts.


  • Collaborates with Information Systems Security Engineers (ISSEs), system administrators, and program managers to integrate security requirements into system lifecycle.


  • Provides security awareness training to system users and enforces proper security practices.


  • Acts as a liaison between the organization and government customers, ensuring timely communication of security updates and issues.


Experience with some or all of the following:

  • Security frameworks and policies: NIST SP 800-53, RMF, ICD 503, CNSS, DoD STIGs, FISMA, FedRAMP


  • Experience managing security documentation: SSPs, POA&Ms, Security Controls Assessment (SCA) artifacts, SARs, SCTM


  • Security tools such as ACAS, Nessus, Splunk, HBSS, eMASS, Xacta


  • Knowledge of security technologies: Firewalls, SIEMs, VPNs, IDS/IPS, DLP, PKI, Multi-Factor Authentication


  • Operating systems: Windows, Linux, Unix, macOS


  • Experience with Cloud environments (AWS, Azure, Google Cloud) and cloud security controls


  • Familiarity with Vulnerability scanning, Security testing, Incident response processes


  • Collaboration tools like JIRA, Confluence, ServiceNow


  • Strong knowledge of system authorization process, audit support, and compliance reporting


  • Security certifications such as CISSP, CAP, Security+, CISM, CEH, AWS Security Specialty


Pay & Benefit Highlights
Compensation
  • Competitive fixed salary or hourly pay (based on experience, skills, location, and internal equity).
  • Employee referral bonuses up to $10,000 per hired referral.
  • Additional bonus opportunities for exceptional performance and contributions to business development and company growth (role-dependent).
Health
  • 100% company-paid medical premiums for employees and eligible dependents.
  • Choose from multiple plan options with CareFirst, Kaiser, and UnitedHealthcare, including PPO, POS, HMO, and HSA-compatible plans.
  • 100% company-paid dental premiums for employees and eligible dependents.
  • 100% company-paid vision premiums for employees and eligible dependents.
Income Protection
  • 100% company-paid premiums for short-term disability.
  • 100% company-paid premiums for long-term disability.
  • 100% company-paid premiums for accidental death & dismemberment (AD&D).
  • 100% company-paid premiums for life insurance up to $200,000.
Retirement
  • 401(k) with immediate vesting: 4% company match plus a 4% non-elective company contribution (8% total).
  • 401(k) pre-tax and Roth options.
Leave
  • Up to 20 days of flexible paid time off (PTO).
  • 11 paid floating holidays.
Work-Life Balance
  • Flexible work schedules, including flex time and compressed work periods (contract and project-dependent).

Similar Jobs

More Jobs at Base-2 Solutions

  • Software Engineer
    $140K — $180K *
    Annapolis, MD 21401 (Anne Arundel County)
    Information Technology
    In-Person
  • Software Engineer
    $140K — $180K *
    Annapolis Junction, MD 20701 (Howard County)
    Information Technology
    In-Person
  • Software Engineer
    $140K — $180K *
    Annapolis, MD 21401 (Anne Arundel County)
    Information Technology
    In-Person
  • Systems Engineer
    $90K — $130K *
    Annapolis Junction, MD 20701 (Howard County)
    Aerospace & Defense
    In-Person
  • Information Systems Security Officer
    $90K — $120K *
    Annapolis, MD 21401 (Anne Arundel County)
    Information Technology
    In-Person

More Information Technology Jobs

Find similar Information Systems Security Officer jobs: