Home › Companies › Ddc Dine Careers Icims Com › Information System Security Officer
Information System Security Officer
Ddc Dine Careers Icims Com · Washington, DC, US · On Site · Active · iCIMS
Job facts
| Field | Value |
|---|---|
| Company | Ddc Dine Careers Icims Com |
| Title | Information System Security Officer |
| Normalized title | - |
| Department / team | 7EM |
| Location | Washington, DC, United States |
| Work model | On Site |
| Employment type | OTHER |
| Salary | - |
| Status | active |
| ATS provider | iCIMS |
| Posted / first seen | 2025-10-14 / 2026-05-31 |
| Changed / last seen | 2026-06-01 / 2026-06-06 |
Related slices
| Page | What it contains | Open |
|---|---|---|
| Company jobs | Active postings from Ddc Dine Careers Icims Com. | Open |
| Company breakdowns | Role, location, ATS, and work model facets for this company. | Open |
| ATS provider jobs | Active postings observed through iCIMS. | Open |
| Provider filtered search | The same provider as a filtered job collection. | Open |
| City jobs | Active postings in Washington. | Open |
| Department jobs | Active postings in 7EM. | Open |
| Work model jobs | Active On Site postings. | Open |
| Lifecycle events | Open, update, close, and reopen events for this posting. | Open |
| Original posting | Canonical source or apply URL captured from the ATS. | Open |
Linked records
| Company | Ddc Dine Careers Icims Com |
| Source | 97a23737-d232-4b76-87a3-abf6bc4d7563 |
| ATS provider | iCIMS |
Description
Job Summary:
DDC Innovation & Growth is seeking a part-time Information System Security Officer (ISSO) to support the United States Court of Appeals for the Armed Forces (USCAAF) in Washington, DC. This position requires on-site support and offers an opportunity to lead cybersecurity and risk management efforts in alignment with Department of Defense (DoD) and Federal regulations.
The ISSO will provide comprehensive cybersecurity oversight, ensuring the confidentiality, integrity, and availability of USCAAF’s information systems throughout their lifecycle.
*This position is contingent upon contract award.*
Job Duties and Responsibilities:
Cybersecurity & Risk Management Framework (RMF)
Manage the full RMF lifecycle per DoDI 8510.01 , including the use of Enterprise Mission Assurance Support Service (eMASS) for all A&A documentation.
Prepare, submit, and maintain complete system authorization packages to achieve and maintain Approval to Operate (ATO) status.
Technology Vetting
Develop and enforce a technology review process for all new software, hardware, and cloud services.
Validate compliance with the DoD Approved Products List (APL) and assess potential cybersecurity risks prior to implementation.
Configuration & System Hardening
Maintain and document the authorized hardware/software baselines.
Participate in the Configuration Control Board (CCB) and ensure all changes are properly vetted, tested, and approved.
Implement and maintain configurations per DISA STIGs and Security Requirements Guides (SRGs) .
Continuous Monitoring & Vulnerability Management
Conduct vulnerability scanning and compliance monitoring using tools such as ACAS .
Perform hands-on remediation via patching, scripting, and configuration updates within established compliance timelines.
Manage and track Plans of Action and Milestones (POA&Ms) throughout their lifecycle.
Risk Acceptance & Reporting
Develop formal risk acceptance packages for vulnerabilities that cannot be remediated immediately, including justifications and compensating controls.
Maintain continuous communication with government leadership regarding cybersecurity posture, risk, and compliance metrics.
Audit, Incident Response & Contingency Planning
Maintain and review system audit logs per DoD requirements.
Support cybersecurity incident response activities and coordinate with DoD Cyber Incident Response teams as required.
Develop, maintain, and annually test the System Contingency Plan (NIST SP 800-34) , documenting outcomes and lessons learned.
Job Requirements (Education/Skills/Experience):
Active DoD Secret clearance (or ability to obtain and maintain one).
DoD 8570/8140 IAM Level II or III certification (e.g., CAP, CASP+, CISSP, CISM ).
Bachelor’s degree in Cybersecurity, Information Systems, Computer Science , or a related discipline (or equivalent experience).
5+ years of cybersecurity or ISSO experience supporting DoD or Federal programs.
Proven experience managing RMF processes and using eMASS for A&A documentation.
Familiarity with DISA STIGs , NIST SP 800-series , DoDI 8510.01 , and ACAS tools.
Strong understanding of configuration management , vulnerability management , and incident response procedures.
Preferred Qualifications
Experience supporting judicial or defense organizations.
Strong written communication skills and ability to prepare formal cybersecurity documentation.
Position Details
Location: On-site, Washington, DC
Schedule: Part-time
Clearance: Secret (Active or Interim acceptable)
Diné Development Corporation (DDC) is a Navajo Nation owned family of companies that delivers IT, professional, and environmental solutions to advance the missions of federal, state, and tribal government agencies. As thought leaders and innovators, our team of specialists build client-centric solutions that solve critical challenges faced by defense, civilian, and healthcare organizations. Employing a mission-focused approach, we deliver value that not only enhances current operations, but also drives future change. Closely aligned with this approach is our commitment to advancing the Navajo Nation and its People. Through economic development and community empowerment, we elevate the Navajo Nation to provide lasting impact and sustainable growth for future generations. DDC’s ability to unite legacy-inspired technologies, industry best practices, and proven methodologies has contributed to our success for twenty years.
This contractor and subcontractor shall abide by the requirements of 41 CFR 60-1.4(a), 60-300.5(a) and 60-741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities, and prohibit discrimination against all individuals based on their race, color, religion, sex, sexual orientation, gender identity, national origin, or for inquiring about, discussing, or disclosing information about compensation, or any other basis prohibited by law. We participate in E-Verify.
Full job record
| Job ID | fc2c89ddd3114c41e83b44b1677adf2dccf3d92c |
| Org ID | 2c9b7e45-880d-44b2-ac8e-948f46a4f890 |
| Source ID | 97a23737-d232-4b76-87a3-abf6bc4d7563 |
| Board ID | 97a23737-d232-4b76-87a3-abf6bc4d7563 |
| Provider | icims |
| Provider Job Key | 5811 |
| Title | Information System Security Officer |
| Normalized Title | — |
| Status | active |
| Active | yes |
| Location Text | Washington, DC, US |
| Department | 7EM |
| Team | — |
| Employment Type | OTHER |
| Workplace Type | on_site |
| Remote Policy | — |
| Country | United States |
| Region | DC |
| City | Washington |
| Salary Raw | Job Summary: DDC Innovation & Growth is seeking a part-time Information System Security Officer (ISSO) to support the United States Court of Appeals for the Armed Forces (USCAAF) in Washington, DC. This position requires on-site support and offers an opportunity to lead cybersecurity and risk management efforts in alignment with Department of Defense (DoD) and Federal regulations. The ISSO will provide comprehensive cybersecurity oversight, ensuring the confidentiality, integrity, and availability of USCAAF’s information systems throughout their lifecycle. *This position is contingent upon contract award.* Job Duties and Responsibilities: Cybersecurity & Risk Management Framework (RMF) Manage the full RMF lifecycle per DoDI 8510.01 , including the use of Enterprise Mission Assurance Support Service (eMASS) for all A&A documentation. Prepare, submit, and maintain complete system authorization packages to achieve and maintain Approval to Operate (ATO) status. Technology Vetting Develop and enforce a technology review process for all new software, hardware, and cloud services. Validate compliance with the DoD Approved Products List (APL) and assess potential cybersecurity risks prior to implementation. Configuration & System Hardening Maintain and document the authorized hardware/software baselines. Participate in the Configuration Control Board (CCB) and ensure all changes are properly vetted, tested, and approved. Implement and maintain configurations per DISA STIGs and Security Requirements Guides (SRGs) . Continuous Monitoring & Vulnerability Management Conduct vulnerability scanning and compliance monitoring using tools such as ACAS . Perform hands-on remediation via patching, scripting, and configuration updates within established compliance timelines. Manage and track Plans of Action and Milestones (POA&Ms) throughout their lifecycle. Risk Acceptance & Reporting Develop formal risk acceptance packages for vulnerabilities that cannot be remediated immediately, including justifications and compensating controls. Maintain continuous communication with government leadership regarding cybersecurity posture, risk, and compliance metrics. Audit, Incident Response & Contingency Planning Maintain and review system audit logs per DoD requirements. Support cybersecurity incident response activities and coordinate with DoD Cyber Incident Response teams as required. Develop, maintain, and annually test the System Contingency Plan (NIST SP 800-34) , documenting outcomes and lessons learned. Job Requirements (Education/Skills/Experience): Active DoD Secret clearance (or ability to obtain and maintain one). DoD 8570/8140 IAM Level II or III certification (e.g., CAP, CASP+, CISSP, CISM ). Bachelor’s degree in Cybersecurity, Information Systems, Computer Science , or a related discipline (or equivalent experience). 5+ years of cybersecurity or ISSO experience supporting DoD or Federal programs. Proven experience managing RMF processes and using eMASS for A&A documentation. Familiarity with DISA STIGs , NIST SP 800-series , DoDI 8510.01 , and ACAS tools. Strong understanding of configuration management , vulnerability management , and incident response procedures. Preferred Qualifications Experience supporting judicial or defense organizations. Strong written communication skills and ability to prepare formal cybersecurity documentation. Position Details Location: On-site, Washington, DC Schedule: Part-time Clearance: Secret (Active or Interim acceptable) Diné Development Corporation (DDC) is a Navajo Nation owned family of companies that delivers IT, professional, and environmental solutions to advance the missions of federal, state, and tribal government agencies. As thought leaders and innovators, our team of specialists build client-centric solutions that solve critical challenges faced by defense, civilian, and healthcare organizations. Employing a mission-focused approach, we deliver value that not only enhances current operations, but also drives future change. Closely aligned with this approach is our commitment to advancing the Navajo Nation and its People. Through economic development and community empowerment, we elevate the Navajo Nation to provide lasting impact and sustainable growth for future generations. DDC’s ability to unite legacy-inspired technologies, industry best practices, and proven methodologies has contributed to our success for twenty years. This contractor and subcontractor shall abide by the requirements of 41 CFR 60-1.4(a), 60-300.5(a) and 60-741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities, and prohibit discrimination against all individuals based on their race, color, religion, sex, sexual orientation, gender identity, national origin, or for inquiring about, discussing, or disclosing information about compensation, or any other basis prohibited by law. We participate in E-Verify. |
| Salary Min | — |
| Salary Max | — |
| Salary Currency | — |
| Salary Period | — |
| Source URL | https://ddc-dine-careers.icims.com/jobs/5811/information-system-security-officer/job |
| Apply URL | https://ddc-dine-careers.icims.com/jobs/5811/information-system-security-officer/job |
| First Seen At | 2026-05-31 18:43:35Z |
| Last Seen At | 2026-06-06 08:30:34Z |
| Last Checked At | 2026-06-06 08:30:34Z |
| Last Changed At | 2026-06-01 13:47:29Z |
| Inactive At | — |
| Source Posted At | 2025-10-14 04:00:00Z |
| Source Updated At | 2026-03-27 15:23:24Z |
| Raw Payload Uri | s3://job-postings-prod-raw-590183727216/raw/provider=icims/board=ddc-dine-careers.icims.com/date=2026-06-06/2026-06-06T08-30-32-575Z-cf5036582a34fd3a943ba99f1714838f7317afcf463a6fddfceaa6ac56b7564a.json |
Event Fields
{
"content_hash": "e7e37ee1a7baf122a7ad3ea1209b94e929c72fdbad6b79cfa83e1e23a897d806",
"source_hash": "e99d1b88e4b7cfb4aa7c4637348c8339fd89ccd8021d5d9139e951a82834afd9",
"last_changed_at": "2026-06-01T13:47:29.835Z",
"active_status": "active"
}Parsed Structured
{
"language": "en",
"location": {
"raw": "Washington, DC, US",
"city": "Washington",
"region": "DC",
"country": "United States",
"is_remote": false,
"confidence": 0.8
},
"salary_max": null,
"salary_min": null,
"inferred_at": "2026-06-06T08:30:34.291Z",
"launch_scope": {
"reason": "english_us_canada",
"included": true,
"language": "en",
"location": {
"raw": "Washington, DC, US",
"city": "Washington",
"region": "DC",
"country": "United States",
"is_remote": false,
"confidence": 0.8
},
"countries": [
"United States"
]
},
"remote_policy": null,
"salary_period": null,
"workplace_type": "on_site",
"salary_currency": null
}Extensions
{}Native Structured
{
"json_ld": {
"url": "https://ddc-dine-careers.icims.com/jobs/5811/information-system-security-officer/job",
"@type": "JobPosting",
"title": "Information System Security Officer",
"@context": "http://schema.org",
"industry": "7EM",
"datePosted": "2025-10-14T04:00:00.000Z",
"description": "<h2>Job Summary:</h2>\n<p>DDC Innovation & Growth is seeking a <strong>part-time Information System Security Officer (ISSO)</strong> to support the <strong>United States Court of Appeals for the Armed Forces (USCAAF)</strong> in Washington, DC. This position requires <strong>on-site support</strong> and offers an opportunity to lead cybersecurity and risk management efforts in alignment with Department of Defense (DoD) and Federal regulations.</p>\n<p>The ISSO will provide comprehensive cybersecurity oversight, ensuring the confidentiality, integrity, and availability of USCAAF’s information systems throughout their lifecycle.</p>\n<p><strong>*This position is contingent upon contract award.*</strong></p>\n<h2>Job Duties and Responsibilities: </h2>\n<p><strong>Cybersecurity & Risk Management Framework (RMF)</strong></p>\n<ul>\n <li>Manage the full RMF lifecycle per <strong>DoDI 8510.01</strong>, including the use of <strong>Enterprise Mission Assurance Support Service (eMASS)</strong> for all A&A documentation.</li>\n <li>Prepare, submit, and maintain complete system authorization packages to achieve and maintain <strong>Approval to Operate (ATO)</strong> status.</li>\n</ul>\n<p><strong>Technology Vetting</strong></p>\n<ul>\n <li>Develop and enforce a technology review process for all new software, hardware, and cloud services.</li>\n <li>Validate compliance with the <strong>DoD Approved Products List (APL)</strong> and assess potential cybersecurity risks prior to implementation.</li>\n</ul>\n<p><strong>Configuration & System Hardening</strong></p>\n<ul>\n <li>Maintain and document the authorized hardware/software baselines.</li>\n <li>Participate in the <strong>Configuration Control Board (CCB)</strong> and ensure all changes are properly vetted, tested, and approved.</li>\n <li>Implement and maintain configurations per <strong>DISA STIGs</strong> and <strong>Security Requirements Guides (SRGs)</strong>.</li>\n</ul>\n<p><strong>Continuous Monitoring & Vulnerability Management</strong></p>\n<ul>\n <li>Conduct vulnerability scanning and compliance monitoring using tools such as <strong>ACAS</strong>.</li>\n <li>Perform hands-on remediation via patching, scripting, and configuration updates within established compliance timelines.</li>\n <li>Manage and track <strong>Plans of Action and Milestones (POA&Ms)</strong> throughout their lifecycle.</li>\n</ul>\n<p><strong>Risk Acceptance & Reporting</strong></p>\n<ul>\n <li>Develop formal risk acceptance packages for vulnerabilities that cannot be remediated immediately, including justifications and compensating controls.</li>\n <li>Maintain continuous communication with government leadership regarding cybersecurity posture, risk, and compliance metrics.</li>\n</ul>\n<p><strong>Audit, Incident Response & Contingency Planning</strong></p>\n<ul>\n <li>Maintain and review system audit logs per DoD requirements.</li>\n <li>Support cybersecurity incident response activities and coordinate with DoD Cyber Incident Response teams as required.</li>\n <li>Develop, maintain, and annually test the <strong>System Contingency Plan (NIST SP 800-34)</strong>, documenting outcomes and lessons learned.</li>\n</ul>\n<h2>Job Requirements (Education/Skills/Experience):</h2>\n<ul>\n <li>Active <strong>DoD Secret clearance</strong> (or ability to obtain and maintain one).</li>\n <li>DoD 8570/8140 <strong>IAM Level II or III certification</strong> (e.g., <strong>CAP, CASP+, CISSP, CISM</strong>).</li>\n <li>Bachelor’s degree in <strong>Cybersecurity, Information Systems, Computer Science</strong>, or a related discipline (or equivalent experience).</li>\n <li><strong>5+ years</strong> of cybersecurity or ISSO experience supporting DoD or Federal programs.</li>\n <li>Proven experience managing <strong>RMF</strong> processes and using <strong>eMASS</strong> for A&A documentation.</li>\n <li>Familiarity with <strong>DISA STIGs</strong>, <strong>NIST SP 800-series</strong>, <strong>DoDI 8510.01</strong>, and <strong>ACAS</strong> tools.</li>\n <li>Strong understanding of <strong>configuration management</strong>, <strong>vulnerability management</strong>, and <strong>incident response</strong> procedures.</li>\n</ul>\n<h3><strong>Preferred Qualifications</strong></h3>\n<ul>\n <li>Experience supporting judicial or defense organizations.</li>\n <li>Strong written communication skills and ability to prepare formal cybersecurity documentation.</li>\n</ul>\n<h3><strong>Position Details</strong></h3>\n<ul>\n <li><strong>Location:</strong> On-site, Washington, DC</li>\n <li><strong>Schedule:</strong> Part-time</li>\n <li><strong>Clearance:</strong> Secret (Active or Interim acceptable)</li>\n</ul>\n<p>Diné Development Corporation (DDC) is a Navajo Nation owned family of companies that delivers IT, professional, and environmental solutions to advance the missions of federal, state, and tribal government agencies. As thought leaders and innovators, our team of specialists build client-centric solutions that solve critical challenges faced by defense, civilian, and healthcare organizations. Employing a mission-focused approach, we deliver value that not only enhances current operations, but also drives future change. Closely aligned with this approach is our commitment to advancing the Navajo Nation and its People. Through economic development and community empowerment, we elevate the Navajo Nation to provide lasting impact and sustainable growth for future generations. DDC’s ability to unite legacy-inspired technologies, industry best practices, and proven methodologies has contributed to our success for twenty years.</p>\n<p> </p>\n<p>This contractor and subcontractor shall abide by the requirements of 41 CFR 60-1.4(a), 60-300.5(a) and 60-741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities, and prohibit discrimination against all individuals based on their race, color, religion, sex, sexual orientation, gender identity, national origin, or for inquiring about, discussing, or disclosing information about compensation, or any other basis prohibited by law. We participate in E-Verify.</p>",
"directApply": true,
"jobLocation": [
{
"@type": "Place",
"address": {
"@type": "PostalAddress",
"postalCode": "UNAVAILABLE",
"addressRegion": "DC",
"streetAddress": "UNAVAILABLE",
"addressCountry": "US",
"addressLocality": "Washington",
"postOfficeBoxNumber": "UNAVAILABLE"
}
}
],
"validThrough": "2027-10-14T04:00:00.000Z",
"employmentType": "OTHER",
"hiringOrganization": {
"name": "Dine Development Corporation",
"@type": "Organization",
"sameAs": "http://ddc-dine.com/"
}
},
"detail_meta": {
"url": "https://ddc-dine-careers.icims.com/jobs/5811/information-system-security-officer/job?in_iframe=1",
"http_status": 200,
"content_type": "text/html;charset=UTF-8",
"response_bytes": 42991,
"compact_response_bytes": 7307,
"original_response_bytes": 42991
},
"sitemap_job": {
"id": "5811",
"url": "https://ddc-dine-careers.icims.com/jobs/5811/information-system-security-officer/job",
"slug": "information-system-security-officer",
"lastmod": "2026-03-27T11:23:24-04:00"
},
"detail_errors": []
}Get this page with API
Rendered from the bluedoor Job Postings API. Reproduce it:
GET https://api.bluedoor.sh/job-postings/v1/jobs/fc2c89ddd3114c41e83b44b1677adf2dccf3d92c?include=descriptionJSONGET https://api.bluedoor.sh/job-postings/v1/orgs/2c9b7e45-880d-44b2-ac8e-948f46a4f890JSONGET https://api.bluedoor.sh/job-postings/v1/sources/97a23737-d232-4b76-87a3-abf6bc4d7563JSONGET https://api.bluedoor.sh/job-postings/v1/jobs/fc2c89ddd3114c41e83b44b1677adf2dccf3d92c/eventsJSON