REQUIRED SKILLS/EXPERIENCE:

• Develop risk mitigation strategies to improve program effectiveness and performance.
• Maintain and update security documentation (SSPs, POA&Ms, CONOPS, Security Impact Assessments).
• Manage system security plans and records in ServiceNow, XACTA-360, and corporate tools.
• Lead security changes through review boards to meet Risk Management milestones.
• Drive process improvements independently and collaboratively to close compliance gaps.
• Guide lab teams to implement secure processes, apply government standards, and best practices.
• Resolve complex security issues using technical expertise and interpretation of requirements.
• Communicate with NGA and North Point Technology leadership on key security matters.
• Lead Assessment & Authorization (A&A) and renewals with NGA Designated Authorization Officials.
• Conduct audits, assessments, and vulnerability management (patching, POA&M tracking, remediation).
• Evaluate and measure defense-in-depth and Zero Trust implementations against vulnerabilities.
• Maintain IT system records (upgrades, patches, configurations) and update CONOPS/ITDR plans.
• Oversee security profiles, user access approvals, and IAA mechanisms.
• Provide training and ensure proper application of security policies across systems.

PREFERRED SKILLS/EXPERIENCE

• Active TS-SCI clearance with ability to obtain CI poly.
• Sec+ or higher certification
• NGA experience.
• Experience demonstrating an understanding and application of the ICD-503 and NIST risk management framework.
• Experience desired with the following systems/platforms/tools: XACTA; XACTA 360 (preferred); HBSS; ACAS; Nessus, SPLUNK.

QUALIFICATIONS

• Must possess an active Top Secret Security Clearance
• BS in Information Systems, Computer Science of closely related discipline and 8+ years of prior relevant experience or Masters with 6+ years of prior relevant experience.
• Has 3+ years of experience operating, analyzing, and resolving vulnerability scan results using tools such as Nessus, Tenable Security Center, or a comparable commercial or GOTs product.
• Intelligence Community experience preferred.
  North Point Technology is THE BEST place to work for curious-minded engineers motivated to support our country’s most crucial missions! We focus on long term projects, leveraging the latest technology in support of innovative solutions to solve our customer’s most difficult problems.
  At North Point Technology, EMPLOYEES come first! We value our employees by providing excellent compensation, benefits, and a flexible work-life balance. We strive for a close-knit and open atmosphere where the owners are always directly available to our team members.
  Come join us! Apply with North Point Technology today

The ISSO will manage authorizations and risks related to processing, storing, and transmitting information for programs FS2 program. Responsibilities include ensuring regulatory and best-practice compliance, leading security assessments, coordinating across system owners to test controls and procedures, and providing program management support, team leadership, and user training on security practices.
The ISSO will conduct security and risk assessments under frameworks such as NIST, RMF, Common Criteria, DoD, and Intelligence Community Directives (ICDs). Duties include applying security controls to mitigate risks, testing to sustain required accreditations, and promoting the use of secure hardware and software in accordance with government and corporate standards. The ISSO ensures security policies are effectively implemented across the system life cycle to maintain confidentiality, integrity, availability, and privacy.
Additionally, the ISSO supports the vulnerability management program—scanning, assessing, reporting, and verifying remediation—across multiple accreditation entities and classification domains (U, S, TS) using Nessus and Tenable-ACAS tools.