Information System Security Officer (ISSO)
Apply Job ID 38230 Date posted 04/13/2026Job Family:
Cyber Consulting
Travel Required:
Clearance Required:
What You Will Do:
- Design and implement technical security controls aligned with NIST RMF, NIST SP 800-53, and agency security architectures.
- Collaborate with system, network, and cloud architects to embed security requirements into system designs and architectures.
- Evaluate technical solutions for compliance with federal security standards and best practices.
- Support security testing, validation, and remediation of technical findings.
- Analyze vulnerability scan results and recommend engineered solutions to mitigate risk.
- Provide technical input to SSPs, diagrams, and architecture documentation.
- Support Assessment and Authorization (A&A) activities, including development and maintenance of System Security Plans (SSPs), Security Assessment Reports (SARs), and Plans of Action and Milestones (POA&Ms).
- Monitor and assess security controls to ensure continuous compliance with FISMA, OMB memoranda, and agency-specific GRC requirements.
- Review and evaluate disaster recovery and resilience capabilities, including backups, endpoint protection (EDR), web application firewalls (WAF), host-based firewalls, and application whitelisting.
- Conduct vulnerability assessments, password audits, malware detection, and intrusion monitoring.
- Review change management documentation to assess security impact across system lifecycle changes.
- Assess the security impact of system changes and new technologies.
- Support DevSecOps initiatives by integrating security controls into CI/CD pipelines where applicable.
- Author clear and concise risk narratives and briefings for government CISOs, Authorizing Officials, and external auditors.
- Support audits, inspections, and security assessments by internal and external stakeholders.
What You Will Need:
- Minimum of FIVE (5) years of experience in cybersecurity or information assurance.
- Bachelor’s degree in Cybersecurity, Information Technology, or a related field.
- Demonstrated experience applying cybersecurity principles to operational systems.
- Active and maintained DoD or Federal Secret clearance.
- One or more relevant cybersecurity certifications (e.g., CISSP, CISM, Security+).
- Ability to work full time on site in Washington, DC.
What Would Be Nice To Have:
- Experience with enterprise networking and security technologies, including firewalls, IDS/IPS, routers, switches, logging solutions, and endpoint security tools.
- Experience conducting risk assessments in cloud environments (AWS, Azure, Google Cloud).
- Strong written and verbal communication skills with the ability to communicate complex security concepts to non-technical stakeholders.
- Demonstrated ability to work independently and prioritize tasks in high-tempo environments.
- High Value Asset (HVA) assessment experience.
What We Offer:
Guidehouse offers a comprehensive, total rewards package that includes competitive compensation and a flexible benefits package that reflects our commitment to creating a diverse and supportive workplace.
Benefits include:
Medical, Rx, Dental & Vision Insurance
Personal and Family Sick Time & Company Paid Holidays
Position may be eligible for a discretionary variable incentive bonus
Parental Leave and Adoption Assistance
401(k) Retirement Plan
Basic Life & Supplemental Life
Health Savings Account, Dental/Vision & Dependent Care Flexible Spending Accounts
Short-Term & Long-Term Disability
Student Loan PayDown
Tuition Reimbursement, Personal Development & Learning Opportunities
Skills Development & Certifications
Employee Referral Program
Corporate Sponsored Events & Community Outreach
Emergency Back-Up Childcare Program
Mobility Stipend
About Guidehouse
Guidehouse is an Equal Opportunity Employer–Protected Veterans, Individuals with Disabilities or any other basis protected by law, ordinance, or regulation.
Guidehouse will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of applicable law or ordinance including the Fair Chance Ordinance of Los Angeles and San Francisco.
If you have visited our website for information about employment opportunities, or to apply for a position, and you require an accommodation, please contact Guidehouse Recruiting at 1-571-633-1711 or via email at RecruitingAccommodation@guidehouse.com. All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodation.
All communication regarding recruitment for a Guidehouse position will be sent from Guidehouse email domains including @guidehouse.com or guidehouse@myworkday.com. Correspondence received by an applicant from any other domain should be considered unauthorized and will not be honored by Guidehouse. Note that Guidehouse will never charge a fee or require a money transfer at any stage of the recruitment process and does not collect fees from educational institutions for participation in a recruitment event. Never provide your banking information to a third party purporting to need that information to proceed in the hiring process.
If any person or organization demands money related to a job opportunity with Guidehouse, please report the matter to Guidehouse’s Ethics Hotline. If you want to check the validity of correspondence you have received, please contact recruiting@guidehouse.com. Guidehouse is not responsible for losses incurred (monetary or otherwise) from an applicant’s dealings with unauthorized third parties.
Guidehouse does not accept unsolicited resumes through or from search firms or staffing agencies. All unsolicited resumes will be considered the property of Guidehouse and Guidehouse will not be obligated to pay a placement fee.