The ISSO Playbook
Mastering Risk, Compliance, and Communication in CybersecuritySecure Stack Series – Book 3
Being an ISSO isn’t about paperwork — it’s about protection.
Whether you're stepping into the ISSO role for the first time or you're a seasoned pro navigating audits, ATOs, and stakeholder chaos, The ISSO Playbook is your field guide to doing the job well—and surviving it.
Author L. Denise Young, a cybersecurity leader with deep experience across DoD, NASA, and classified federal programs, breaks down exactly what it takes to be an effective Information System Security Officer (ISSO) in real-world, high-stakes environments.
What You'll Learn:
The differences between ISSO, ISSM, and ISSE roles
How to write bulletproof POA&Ms and risk-based decisions (RBDs)
What to ask when inheriting a system or onboarding to a program
Templates and language for documenting vulnerabilities and misconfigs
Tips for managing burnout, building technical credibility, and saying “no” without losing the room
Career maps to level up from ISSO to ISSM, ISSE, or Architect
A complete NIST 800-53 control matrix for documentation and monitoring
Who It’s For:
New and experienced ISSOs working in government or contractor roles
Cybersecurity analysts and advisors transitioning into ISSO duties
System owners, PMs, and engineers who want to better collaborate with their ISSO
Anyone supporting RMF, FedRAMP, STIGs, or NIST frameworks
If you’re ready to go beyond the checklists and become the security voice your program needs, The ISSO Playbook is your blueprint.
Get your copy now and lead with confidence.
The ISSO Playbook: Mastering Risk, Compliance, and Communication in Cyber
- I'm a product detail. I'm a great place to add more information about your product such as sizing, material, care and cleaning instructions. This is also a great space to write what makes this product special and how your customers can benefit from this item.