Information Systems Security Officer (ISSO) / Information Systems Security Manager (ISSM)
Saronic Technologies
This job is no longer accepting applications
See open jobs at Saronic Technologies.See open jobs similar to "Information Systems Security Officer (ISSO) / Information Systems Security Manager (ISSM)" General Catalyst.
Austin, TX, USA
Posted 6+ months ago
Saronic Technologies is a leader in revolutionizing autonomy at sea, dedicated to developing state-of-the-art solutions that enhance maritime operations through autonomous and intelligent platforms.
Position Overview
We are seeking an experienced ISSO to lead the stand-up, accreditation, and continuous monitoring of classified networks in support of U.S. Government customers. The ideal candidate has direct, hands-on experience securing Authorities to Operate (ATO) for SIPRNet (DCSA) and JWICS (Navy/IC) environments, with proven expertise managing ATO lifecycles across the DOW, IC, and specific Navy stakeholders. Experience with CWAN and/or enabling Defense Contractors to build compliant, customer-aligned classified enclaves is preferred.
This role reports to the Industrial Security Manager and works closely with Cybersecurity, Information Technology, Business Development, and Growth Teams to deliver accredited classified capabilities on time and within scope.
Key Responsibilities
- Serve as the primary ISSO for SIPRNet (DCSA) and JWICS (Navy/IC) ATO packages, including RMF workflow in eMASS, Xacta, or equivalent.
- Lead ATO development, submission, assessment, and authorization with DCSA, Navy AO/DAO, and IC CAFs (e.g., DIA, NSA, NRO).
- Author and maintain USSOCOM 10-702 RMF overlays for SOF-unique systems (e.g., SOFNET, SOF-IA, Mission Command Systems).
- Manage ATO packages under SOCOM’s J6/J39 using eMASS Enterprise and SOCOM’s Risk Management Framework Process Guide.
- Coordinate with TSOC ISSMs and Component Command Validators for deployment of classified SOF enclaves worldwide.
- Interface directly with NAVCYBERFOR, FLTCYBERCOM, and SPAWAR/NAVWAR for CANES, ADNS, and ISNS integration into contractor JWICS drops.
- Execute Navy RMF per NAVSEA 9400 series and SECNAV M-5239.2 for ship-to-shore and afloat classified networks.
- Manage JWICS ATOs under Navy DAO (OPNAV N2N6), including Type-1 encryption and NSA Commercial Solutions for Classified (CSfC) implementations.
- Act as SAP ISSO for Special Access Programs (SAP) under DoD SAPCO, Service SAPCOs, and IC SAPCOs.
- Participate in the development of SAP Security Plans (SAPSP), Fixed Facility Checklists (FFC), and TEMPEST addendums for SAP facilities.
- Oversee SAP network carve-outs, air-gapped systems, and bilateral SAP-to-SCI cross-domain transfers.
- Manage classified network stand-up for Defense Contractor facilities, including:
- Design and implementation of secure enclaves (SIPR, JWICS, CWAN, SAP)
- Cross-domain solutions (CDS), VTC, and secure voice
- Compliance with ICD 503, JSIG, NISPOM, DAAPM, and CNSSI 1253
- Oversee continuous monitoring, POA&M management, and annual re-accreditation for CWAN-connected systems and/or SAP collateral networks.
- Coordinate with Navy SPAWAR, NRO, DISA, SOCOM J6, and IC customers to align technical solutions with mission requirements.
- Conduct security audits, vulnerability scans (ACAS), STIG compliance, and incident response for classified systems.
- Mentor junior ISSOs and interface with CPSO/FSO on physical, personnel, and COMSEC requirements.
SOCOM-Specific Functions
Navy-Specific Functions
SAP/SCI Environment Functions
Required Qualifications
- 5+ years as ISSO in classified DoD/IC environments (SIPR/JWICS and SAP mandatory).
- Direct experience obtaining and maintaining ATOs with:
- DCSA for SIPRNet
- DOW for JWICS
- CWAN-connected networks
- USSOCOM or SAP AOs for SOF/SAP systems
- Proficiency with RMF, eMASS, Xacta 360, SOCOM 10-702 overlays, and SCAP/STIGs.
- Current DoD 8570 IAT/IAM Level III certification (e.g., CISSP, CISM, GSLC).
- Active TS/SCI with Full-Scope Poly (or CI Poly with ability to obtain FS).
- Bachelor’s degree in Cybersecurity, IT, or related field (or equivalent experience).
- Travel: Occasional (10–15%)
Preferred Qualifications
- Prior CWAN and SOCOM SOFNET accreditation and operations experience.
- Experience with Navy FLTCYBERCOM, SPAWAR, ONR, or SOCOM J39 classified programs.
- Familiarity with CDS (ISSE Guard, Radiant Mercury), CSfC, and secure VTC (SVTC).
- SAP ISSM training (e.g., CDSE SAP Security Management) and ICD 705 SCIF accreditation experience.
- Experience supporting Defense Contractors in building customer-dedicated classified networks (e.g., SCIF-in-SCIF, dedicated JWICS/SAP drops).
Physical Demands
- Prolonged periods of sitting at a desk and working on a computer
- Occasional standing and walking within the office and production environments
- Manual dexterity to operate a computer keyboard, mouse, and other office equipment
- Visual acuity to read screens, documents, and reports
- Occasional reaching, bending, or stooping
- Lifting and carrying items up to 20 pounds
Benefits
- Medical Insurance: Comprehensive health insurance plans covering a range of services
- Dental and Vision Insurance: Coverage for routine dental check-ups, orthodontics, and vision care
- Saronic pays 100% of the premium for employees and 80% for dependents
- Time Off: Generous PTO and Holidays
- Parental Leave: Paid maternity and paternity leave to support new parents
- Competitive Salary: Industry-standard salaries with opportunities for performance-based bonuses
- Retirement Plan: 401(k) plan
- Stock Options: Equity options to give employees a stake in the company’s success
- Life and Disability Insurance: Basic life insurance and short- and long-term disability coverage
- Additional Perks: Free lunch benefit and unlimited free drinks and snacks in the office
This role requires access to export-controlled information or items that require “U.S. Person” status. As defined by U.S. law, individuals who are any one of the following are considered to be a “U.S. Person”: (1) U.S. citizens, (2) legal permanent residents (a.k.a. green card holders), and (3) certain protected classes of asylees and refugees, as defined in 8 U.S.C. 1324b(a)(3) .
Saronic does not discriminate on the basis of race, sex, color, religion, age, national origin, marital status, disability, veteran status, genetic information, sexual orientation, gender identity or any other reason prohibited by law in provision of employment opportunities and benefits.
