About DTS: David T. Scott & Associates, LLC (DTS) is a Service-Disabled Veteran Owned Small Business (SDVOSB) that supports both public- and private-sector clients. We excel in tackling challenges in cybersecurity, program governance, strategic planning, business process efficiency, and learning enhancement. Our team is composed of seasoned professionals with military, civilian, and private-sector backgrounds. At DTS, we grow together-sharing knowledge, solving tough challenges, and providing certified cybersecurity services to federal and commercial organizations.
Position Summary:
DTS is looking for an Information System Security Officer (ISSO). The ISSO is responsible for ensuring that systems handling Controlled Unclassified Information (CUI) meet the requirements outlined in the NIST SP 800-171 framework. The ISSO will assist with efforts to implement and maintain appropriate security controls, oversee compliance initiatives, and ensure alignment with DFARS , CMMC (as applicable), and other related federal requirements.
Key Responsibilities:- Serve as the Subject Matter Expert (SME) on NIST SP 800-171, DFARS , and CMMC frameworks.
- Implement and continuously monitor security controls aligned with NIST SP 800-171 and FIPS 200/199.
- Develop and maintain core compliance documentation, including:
1. System Security Plans (SSPs)
2. Plans of Action and Milestones (POA&Ms)
3. Risk assessments and remediation strategies
- Conduct gap analyses and manage remediation efforts to ensure compliance.
- Support internal and external audits, assessments, and inspections.
- Collaborate with IT teams, business units, and system owners to embed security into operations and development lifecycles.
- Assist with CMMC preparation, self-assessments, and third-party assessments.
- Monitor system security posture and assist in incident response and vulnerability management.
- Provide security awareness training focused on CUI protection and compliance responsibilities.
- Track and communicate changes in federal cybersecurity policies to maintain alignment.
Qualifications: Required:- Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field.
- 3-5 years of experience in an information security or compliance-focused ISSO role.
- Demonstrated expertise in NIST SP 800-171, DFARS , and FIPS 200/199.
- CompTIA Security+ certification.
- Hands-on experience with Microsoft 365/Azure and cloud security controls.
- Experience managing compliance for systems handling CUI.
- U.S. Citizenship (required for federal contract work).
- Strong writing and documentation skills, with the ability to communicate technical concepts clearly.
- Ability to work independently and coordinate across functional teams.
Preferred:- CAP (Certified Authorization Professional) or CISSP (Associate acceptable for mid-level roles).
- CMMC Registered Practitioner (RP) or prior experience with CMMC Level 2 or Level 3 assessments.
- Familiarity with FedRAMP, NIST SP 800-53, and other federal frameworks.
- Experience in Microsoft GCC High or other secure federal cloud environments.
- Microsoft certifications such as:
1. SC-900 (Security, Compliance, and Identity Fundamentals)
2. Azure Security Engineer Associate
- Experience using tools such as eMASS
Why Choose DTS?- We are a growing consulting and cybersecurity services firm with opportunities for employees to make an impact and advance their careers.
- The culture at DTS reflects our size, scope, and team. We actively promote a healthy work-life balance and host numerous opportunities for team-building and social interaction between colleagues.
- DTS offers competitive salaries with a benefits package that includes 401K matching, top-tier medical and dental coverage, and generous personal time off.
- We have an employee-centric environment, with policies that support individual development, from formal training and mentoring to stretch opportunities.
- Employees are seen, heard, and appreciated at DTS. The company has been recognized for outstanding employee satisfaction.
- DTS gives back to the community, supporting nonprofits that benefit veterans, the environment, and the local community and providing employees paid time off to volunteer with the charitable organizations they support.
Qualified applicants will receive consideration for employment without regard to their race, ethnicity, ancestry, color, sex, religion, creed, age, national origin, citizenship status, disability, pregnancy, medical condition, military and veteran status, marital status, sexual orientation or perceived sexual orientation, gender, gender identity, and gender expression, familial status, political affiliation, genetic information, height, weight, or any other legally protected status or characteristics.
All DTS offers of employment are contingent upon the ability to complete and successfully adjudicate a background investigation. Background investigation components can vary dependent upon specific assignment and/or level of US government security clearance held.
Salary at DTS is determined by various factors, including but not limited to, the combination of education, certifications, knowledge, skills, competencies, and experience, internal and external equity, location, and clearance level, as well as contract-specific affordability and organizational requirements and applicable employment laws. In addition, to support the ability to reward for merit-based performance, DTS typically does not hire individuals at or near the top of the range for their role. Compensation decisions are dependent on the facts and circumstances of each case.