GENERAL DESCRIPTION\n\nThe Senior Information System Security Officer (ISSO) is responsible for developing, maintaining, and overseeing the implementation of robust security policies, procedures, and controls for on-premises and Azure GCC High environments. This role ensures compliance with NIST 800-171 and Cybersecurity Maturity Model Certification (CMMC) Levels 1 through 3. The ISSO collaborates with stakeholders, manages security audits, and ensures the organization's security posture meets high standards.\n\n

DUTIES\n\nDevelop, maintain, and enforce cybersecurity policies, System Security Plans (SSPs), and documentation in compliance with NIST 800-171 and CMMC requirements.\nLead the implementation and management of security controls for on-premises and Azure GCC High environments.\nCollaborate with internal teams and external auditors to ensure successful NIST 800-171 and CMMC assessments.\nConduct security gap analyses and implement remediation measures to achieve and maintain compliance.\nOversee incident response and reporting processes, ensuring timely mitigation and documentation of security events.\nProvide cybersecurity training and awareness programs for employees and contractors.\nManage and maintain compliance with DoD 8570 certification requirements.\nAct as the primary liaison for external CMMC C3PAOs and assist with certification audits.\nPerform vulnerability assessments, manage POA&Ms, and track risk mitigation efforts.\nEnsure data protection through robust encryption, access controls, and monitoring mechanisms.\nOther duties as assigned.\n\n

EDUCATION\/EXPERIENCE REQUIREMENTS\n\nActive Secret clearance is required. \nBachelor's degree in Cybersecurity, Information Technology, or related field.\nMinimum of 10 years of experience in IT security, compliance, and risk management.\nAdvanced DoD 8570 certification (e.g., CISSP required; CISM or CRISC preferred).\nExpertise in NIST 800-171 and CMMC Levels 1-3 frameworks.\nHands-on experience with Azure GCC High environments.\nExperience with NIST 800-171 and CMMC audits (preferred).\nKnowledge of CMMC C3PAO operations (preferred).\nCMMC Certified Professional (CCP) or CMMC Certified Assessor (CCA) preferred.\nExcellent customer support and written\/verbal skills\nAbility to grasp advanced technical principles, theories, and concepts and creatively solve problems \nAdvanced knowledge and understanding of a range of computer, networking, software systems and related technologies\nStrong interpersonal and communication skills and the ability to work effectively. Must possess the ability to communicate technical information to non-technical personnel\nSome after hours and weekend work may be required.\nMust be a US Citizen.\nWe maintain a drug-free workplace and perform post offer, pre-employment substance abuse testing.\n\n

PHYSICAL REQUIREMENTS\n

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed are representative of the knowledge, skills, and\/or abilities required. Reasonable accommodations may be made to enable individuals with disabilities to perform essential job functions.\n\nMust be able to walk or stand on level and\/or inclined surfaces and sit for extended periods of time.\nMust be able to routinely climb \/ descend stairs and\/or ladders. \nOn occasion must be able to lift 50 pounds. \nMust be able to routinely grasp or handle objects, use finger dexterity, bend elbows \/ knees, and reach above \/ below shoulders.\nWorks in a normal office environment with controlled temperature and lighting conditions.\n\n

EQUAL OPPORTUNITY EMPLOYER\/ VEVRAA\/ ADA\n\nTNC and its subsidiaries fall under ANCSA and are entitled under Federal Law to extend hiring preferences to its shareholders. ANCSA provides TNC the authority to give shareholder preference in hiring. TNC reaffirms its belief in equal employment opportunity for all employees and applicants for employment. Tyonek is an Equal Opportunity Employer and a VEVRAA Federal Contractor who affords equal employment opportunity to protected veterans and people with disabilities: Tyonek Native Corporation provides all employees and job applicants' equal employment opportunities in hiring and promotion without discrimination because of age, sex, sexual orientation, genetic information, gender identity, marital status, race, religion, color, veteran status, physical or mental disability, national origin, or any other reason prohibited by law. \n