Information System Security Officer

Company OverviewNapakiak Environmental and Construction (NEC) is a leading provider of information technology, technology development, and environmental and construction services, specializing in Federal and Commercial projects. Our company is committed to delivering high-quality solutions that meet stringent regulatory standards and client requirements.About the roleWe are seeking a motivated, practical, and mission-focused Information System Security Officer (ISSO) to support a commercial-style manufacturing operation performing work funded through the Department of Energy. This position operates in the nuclear sector and supports cutting-edge technology development and advanced manufacturing technology deployment. The work environment is both exciting and demanding, involving innovation, engineering, and operational execution where cybersecurity must enable progress rather than slow it down.

This role is ideal for a cybersecurity professional who understands that strong security and real operational productivity must work together. The right candidate approaches cybersecurity as a tool that allows organizations to safely move forward while meeting federal requirements. The ISSO will work in an environment where teams are actively developing and deploying new manufacturing technologies, and security practices must support that mission while maintaining compliance with federal standards.

The ISSO will help ensure cybersecurity practices are implemented in a practical, solution-oriented manner within a fast-moving commercial manufacturing environment. The position requires someone comfortable working directly with engineers, system administrators, and operational leadership to interpret cybersecurity standards and translate them into workable operational solutions. The goal is to help teams overcome obstacles while maintaining the integrity and security of systems supporting sensitive work.

This position will support cybersecurity implementation aligned with federal standards, particularly those defined in NIST Special Publication 800-53, which outlines security and privacy controls for federal information systems, and NIST Special Publication 800-82, which provides guidance for industrial control systems and operational technology environments. Because the work environment includes advanced manufacturing and operational systems, the role may involve cybersecurity considerations across both traditional IT systems and operational technology.

The ISSO will assist with Risk Management Framework activities including maintaining system security documentation, supporting control implementation, assisting with vulnerability management, and helping maintain continuous monitoring programs. The position will also help ensure that systems supporting advanced manufacturing and technology deployment remain compliant with required cybersecurity standards while enabling the mission to continue moving forward.

The ideal candidate will bring a collaborative and pragmatic mindset and be comfortable working in an engineering-driven environment where cybersecurity must align with operational execution. Strong communication skills and the ability to translate security requirements into practical guidance for technical teams are essential. This position is located on-site in Oak Ridge, Tennessee and supports systems performing work funded through the Department of Energy.

Minimum Requirements

• This position requires U.S. Citizenship and the ability to obtain and maintain a U.S. government security clearance. Candidates who currently hold an active clearance are strongly preferred. Individuals who are eligible and capable of obtaining a clearance will also be considered.
• A minimum of three to five years of experience supporting cybersecurity, information assurance, or information security compliance activities in regulated, federal, or contractor environments.
• Demonstrated familiarity with NIST Special Publication 800-53 security and privacy controls.
• Familiarity with NIST Special Publication 800-82 and cybersecurity considerations for industrial control systems or operational technology environments.
• Experience supporting components of the Risk Management Framework including system security documentation, control implementation, assessment support, or continuous monitoring.
• Experience assisting with maintaining system security plans, vulnerability management tracking, security documentation, and compliance reporting.
• Ability to work collaboratively with engineers, system administrators, manufacturing teams, and program leadership in a fast-moving operational environment.
• Strong written and verbal communication skills and the ability to translate cybersecurity requirements into practical operational guidance.

Preferred Qualifications

• Experience supporting Department of Energy programs or federally funded technical work.
• Active security clearance.
• Experience working in environments involving advanced manufacturing, operational technology, or industrial control systems.
• Professional cybersecurity certifications such as CISSP, CISM, Security+, or similar credentials.
• Experience supporting security programs within engineering-driven or technology deployment environments.

This role is well suited for a cybersecurity professional who enjoys working at the intersection of innovation, manufacturing, and national security. The position offers the opportunity to support cutting-edge technologies while ensuring that strong cybersecurity practices protect both the mission and the systems that enable it.

Napakiak Environmental and Construction (NEC) is an equal opportunity employer. All applicants will be considered for employment without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran, or disability status.All full-time employees are considered benefit eligible for company benefit programs and 401-K upon date of hire.

Powered by JazzHR