Information System Security Officer (ISSO) Journeyman

Benefits

Additional Information

Torch Technologies Thank you for your interest in employment with Torch Technologies. We are a 100% employee-owned, Certified Great Place To Work and named Best Places to Work in Huntsville/Madison County, headquartered in Huntsville, AL. Our team provides superior research, development, and engineering services to the Federal Government and Department of War. As one of the nation's top 100 defense companies, the services we provide directly support the men and women who serve our country. Our corporate mission sums up the pride our employee-owners take in the work we do: "Lighting the Pathway of Freedom". And, as a Certified Evergreen ESOP, we have made the commitment to grow and sustain our company for the next 100 years! Come grow with us! Torch Technologies has an exciting opportunity for an Information System Security Officer (ISSO) Journeyman to support the Aerospace Dominance Enabler Division (AFLCMC/C3BM) at Hill AFB in Ogden Utah to support the protection, accreditation, and ongoing security posture of Air Force information systems. In this role, you will work closely with the Information System Security Manager (ISSM) to ensure systems meet all DoD and Air Force cybersecurity requirements, align with the Risk Management Framework (RMF), and maintain the confidentiality, integrity, and availability of critical networks and data. As a Cybersecurity Engineer, Journeyman your duties will include, but are not limited to: Conduct risk assessments, support accreditation activities, evaluate system security controls, and help enforce policies, configurations, and user access standards. Monitoring for vulnerabilities, assisting with incident response actions, maintaining compliance artifacts, and supporting secure system design efforts. Ensure all systems and applications meet DoW and Air Force cybersecurity requirements as directed by the Information System Security Manager (ISSM). Protect the confidentiality, integrity, and availability of systems, networks, and data by developing, implementing, and maintaining cybersecurity programs, policies, procedures, and security tools. Support all Risk Management Framework (RMF) authorization and accreditation activities, including configuration, artifact creation, documentation, and compliance reviews. Assist the ISSM in performing risk and vulnerability assessments on planned and operational information systems, identifying security gaps and recommending mitigation actions. Conduct security evaluations, audits, and reviews; support development of system contingency and disaster recovery plans; and promote user compliance with cybersecurity policies and training requirements. Participate in system and network design efforts to ensure appropriate security controls and RMF activities are incorporated from the start. Assist in the collection, analysis, and preservation of digital evidence related to cybersecurity incidents or policy violations. Maintain the operational security posture of assigned IT systems, monitor situational awareness, and implement actions to improve or restore cybersecurity resilience. Enforce Air Force cybersecurity policies, procedures, configuration guidelines (e.g., STIGs/SRGs), and change management processes. Maintain and audit authorized user access documentation and ensure users meet clearance, need‑to‑know, and annual training requirements. Report security incidents or vulnerabilities to the ISSM and support implementation of corrective or protective measures. Initiate and track exceptions, deviations, or waivers to cybersecurity requirements as needed. Required Qualifications: U.S. Citizenship Bachelor's or Master's Degree in a related field and at least 3 years of experience discipline being performed, 3 of which must be in the DoW, OR , 7 years of directly related experience, 5 of which must be in the DoW. IAT Level II (Security+, GSEC, CCNA-Security, Certified Systems Security Professional (CISSP), or equivalent certification Must maintain required cybersecurity certifications in accordance with AFMAN 17‑1303. Experience supporting Risk Management Framework (RMF) activities and cybersecurity compliance Experience using eMASS for authorization packages, artifact management, and accreditation support Vulnerability assessment and risk mitigation analysis STIG/SRG implementation and configuration management Security audits, assessments, and incident response support Information system security and operational security posture management Secure system and network design support in DoW environments Ability to develop innovative approaches to complex test problems Strong attention to quality, adequacy, and completeness of test results and conclusions Ability to deliver thorough, timely, and efficient task execution Ability to provide clear analysis and recommendations to program test leadership Must have and maintain an active Secret security clearance. Schedule : M-F; 8AM to 5PM Work Location: Onsite at

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at starfish? Share your experience