Information System Security Officer (ISSO) - SME - DHS

The ISSO serves as the principal advisor to the DHS Geospatial Information Infrastructure (GII) System Owner.

This position provides security guidance, oversight, and technical expertise based on Department of Homeland Security (DHS) directives, policies, and standards.

The ISSO ensures that security controls are implemented, maintained, and compliant with all DHS security requirements and the GII Security Plan (SP) .

The ISSO operates under the authority of the System Owner (SO) , a government employee, and is responsible for ensuring the continuous monitoring, assessment, and documentation of system security across all environments supporting DHS geospatial systems.

Key Responsibilities Serve as the principal security advisor to the GII System Owner.

Ensure implementation and maintenance of security controls in accordance with DHS policies and the GII Security Plan.

Perform Information Security Continuous Monitoring (ISCM) , including :

• Automated security management and credentialed scans.
• Review and adjudication of findings from continuous monitoring and mitigation activities.
• Support assessment, authorization, certification, and accreditation activities (ATO / ATC).
• Execute Plan of Actions and Milestones (POA&M) and remediation processes per DHS MD 4300A.
• Update the Contingency Plan annually , execute it, and report on outcomes.
• Review Change Control Board (CCB) submissions for security compliance.

Create and update (but not finalize) key artifacts, such as :

While the document does not include the exact GTSS labor category details, these positions typically require :

Required Certifications The ISSO must be qualified and credentialed in alignment with DHS 4300A Sensitive Systems Policy , which implies one or more of the following certifications (based on DHS and DoD 8570.01-M standards) :

Compliance Frameworks :

Documentation & Reporting Tools :

Cloud Environments :