Tyto Athene is hiringa Sr. Information Systems Security Officer (ISSO) to support a federal customer in Washington, DC. The successful candidate will ensure information systems meet security requirements and will lead and support ongoing privacy-related activities, including the development, implementation, maintenance, and enforcement of federal and organizational policies and procedures governing the protection of Personally Identifiable Information (PII) and other sensitive data. The ISSO will bring strong knowledge of federal privacy laws and regulations and will support the Governance Risk and Compliance program with federally mandated privacy requirements, policies, and procedures.

Responsibilities:

• Lead and support information system security boundary responsibilities using the Risk Management Framework (RMF) lifecycle, including system Authorization to Operate (ATO) and continuous monitoring, while ensuring privacy and legal requirements are fully integrated.
• Develop, update, and maintain security authorization packages in accordance with client requirements and NIST SP 800-53, including System Security and Privacy Plans (SSPPs), Risk Assessment Reports (RARs), Security Assessment Plans (SAP), Security Assessment Reports (SAR), Contingency Plans, Incident Response Plans, Standard Operating Procedures (SOPs), Plans of Action and Milestones (POA&Ms), STIG deviations, Configuration Management Plans, Security Impact Assessments, and related artifacts.
• Maintain, manage, and support POA&am...