(688) Senior ISSM SME

Arlo Solutions – Information Technology ConsultingArlo Solutions (Arlo) specializes in delivering technology solutions that reduce costs, improve business processes, accelerate response times, enhance end‑user services, and provide customers with a competitive edge.Position DescriptionThe Information System Security Manager (ISSM) Subject Matter Expert (SME) will operate within a fast‑moving defense technology environment, upholding security standards across the organization and safeguarding national‑security information. The role supports program execution by managing priorities, coordinating tasking, tracking deliverables, overseeing onboarding and off‑boarding, identifying operational risks, and ensuring team alignment with mission objectives. The ISSM SME partners with the Government ISSM to mature the ISSM Program for the CDAO organization, managing authorization workflows, standardization, mentoring, developing reusable artifacts, supporting process improvement, and enabling consistent cybersecurity practices across the enterprise.LocationArlington, VA / Hybrid (Situational telework)ClearanceTS/SCIResponsibilitiesServe as primary point of contact for Government stakeholders and resolve issues.Manage day‑to‑day program operations to keep activities, priorities and deliverables aligned with Government objectives.Track tasks, milestones, action items, risks, dependencies and deliverables across RMF and cybersecurity workstreams.Support onboarding and off‑boarding of team members, including access coordination, orientation, knowledge transfer, and transition activities.Facilitate meetings, status updates, and working sessions with Government and contractor personnel.Develop and maintain program documentation, schedules, trackers, process guides and status materials.Manage enterprise authorization activities within eMASS for supported systems and programs.Coordinate, track and manage eMASS workflows, artifacts, approvals, inheritance relationships and authorization requests.Support system onboarding, authorization sustainment, authorization extension, reciprocity and Continuous Monitoring activities in eMASS.Validate authorization package completeness, workflow progression and cybersecurity artifact quality.Assist in developing and maintaining enterprise cybersecurity governance documentation.Design repeatable, scalable cybersecurity processes aligned to organizational maturity and process standardization initiatives.Define and operationalize enterprise‑level organizational controls for inheritance within eMASS.Establish standardized inherited control baselines to reduce redundancy and improve authorization scalability.Identify common enterprise security services, policies, procedures and safeguards eligible for inheritance.Mentor junior and mid‑level ISSMs, ISSOs and cybersecurity personnel supporting CDAO systems.Promote consistency, quality and repeatability across enterprise cybersecurity efforts.Support planning, coordination and delivery of monthly ISSM education sessions.Develop training content and instructional material for enterprise cyber maturity improvement.Assist in creating and maintaining standardized CDAO cybersecurity templates and Body of Evidence (BOE) artifacts.Develop reusable templates to improve authorization package consistency and quality.Support enterprise Continuous Monitoring governance activities.QualificationsActive TS/SCI clearance.Bachelor's degree in computer science, information technology or related field (master's preferred or 10+ years of related experience).10+ years of cybersecurity experience, including senior technical or management role; project/program management experience preferred.Experience as an ISSM, ISSO, ISSE, cybersecurity engineer or RMF practitioner supporting DoD systems.Proficient with eMASS for authorization package management and cybersecurity workflow execution.Knowledge of statutory guidance such as 570.01, DoDI 8500.01, DoD Directive 8140.03, NIST 800‑37r2.Experience drafting cybersecurity policies, SOPs, Dash‑1s, implementation guidance or operational procedures.Ability to mentor cybersecurity staff and support enterprise cyber workforce development.Excellent communication and presentation skills for briefing senior military and government civilian leadership.Hands‑on experience with eMASS, Xacta and/or other GRC tools.Experience with Federal and FedRamp A&A processes.Comfortable advising Senior Executive Service (SES) level customers.Desired CertificationsCISSP, CCSP, CISM, CISA, CASP, CAP, Security+ CE, SecurityX, GSLC / GIAC (preferred).Equal Employment Opportunity StatementWe are a proud affirmative action and equal opportunity employer. We evaluate qualified candidates without regard to race, color, religion, sex, sexual orientation, gender identity, marital status, national origin, age, disability status, protected veteran status, or any other protected status.#J-18808-Ljbffr

Arlo Solutions – Information Technology ConsultingArlo Solutions (Arlo) specializes in delivering technology solutions that reduce costs, improve business processes, accelerate response times, enhance end‑user services, and provide customers with a competitive edge.Position DescriptionThe Information System Security Manager (ISSM) Subject Matter Expert (SME) will operate within a fast‑moving defense technology environment, upholding security standards across the organization and safeguarding national‑security information. The role supports program execution by managing priorities, coordinating tasking, tracking deliverables, overseeing onboarding and off‑boarding, identifying operational risks, and ensuring team alignment with mission objectives. The ISSM SME partners with the Government ISSM to mature the ISSM Program for the CDAO organization, managing authorization workflows, standardization, mentoring, developing reusable artifacts, supporting process improvement, and enabling consistent cybersecurity practices across the enterprise.LocationArlington, VA / Hybrid (Situational telework)ClearanceTS/SCIResponsibilitiesServe as primary point of contact for Government stakeholders and resolve issues.Manage day‑to‑day program operations to keep activities, priorities and deliverables aligned with Government objectives.Track tasks, milestones, action items, risks, dependencies and deliverables across RMF and cybersecurity workstreams.Support onboarding and off‑boarding of team members, including access coordination, orientation, knowledge transfer, and transition activities.Facilitate meetings, status updates, and working sessions with Government and contractor personnel.Develop and maintain program documentation, schedules, trackers, process guides and status materials.Manage enterprise authorization activities within eMASS for supported systems and programs.Coordinate, track and manage eMASS workflows, artifacts, approvals, inheritance relationships and authorization requests.Support system onboarding, authorization sustainment, authorization extension, reciprocity and Continuous Monitoring activities in eMASS.Validate authorization package completeness, workflow progression and cybersecurity artifact quality.Assist in developing and maintaining enterprise cybersecurity governance documentation.Design repeatable, scalable cybersecurity processes aligned to organizational maturity and process standardization initiatives.Define and operationalize enterprise‑level organizational controls for inheritance within eMASS.Establish standardized inherited control baselines to reduce redundancy and improve authorization scalability.Identify common enterprise security services, policies, procedures and safeguards eligible for inheritance.Mentor junior and mid‑level ISSMs, ISSOs and cybersecurity personnel supporting CDAO systems.Promote consistency, quality and repeatability across enterprise cybersecurity efforts.Support planning, coordination and delivery of monthly ISSM education sessions.Develop training content and instructional material for enterprise cyber maturity improvement.Assist in creating and maintaining standardized CDAO cybersecurity templates and Body of Evidence (BOE) artifacts.Develop reusable templates to improve authorization package consistency and quality.Support enterprise Continuous Monitoring governance activities.QualificationsActive TS/SCI clearance.Bachelor's degree in computer science, information technology or related field (master's preferred or 10+ years of related experience).10+ years of cybersecurity experience, including senior technical or management role; project/program management experience preferred.Experience as an ISSM, ISSO, ISSE, cybersecurity engineer or RMF practitioner supporting DoD systems.Proficient with eMASS for authorization package management and cybersecurity workflow execution.Knowledge of statutory guidance such as 570.01, DoDI 8500.01, DoD Directive 8140.03, NIST 800‑37r2.Experience drafting cybersecurity policies, SOPs, Dash‑1s, implementation guidance or operational procedures.Ability to mentor cybersecurity staff and support enterprise cyber workforce development.Excellent communication and presentation skills for briefing senior military and government civilian leadership.Hands‑on experience with eMASS, Xacta and/or other GRC tools.Experience with Federal and FedRamp A&A processes.Comfortable advising Senior Executive Service (SES) level customers.Desired CertificationsCISSP, CCSP, CISM, CISA, CASP, CAP, Security+ CE, SecurityX, GSLC / GIAC (preferred).Equal Employment Opportunity StatementWe are a proud affirmative action and equal opportunity employer. We evaluate qualified candidates without regard to race, color, religion, sex, sexual orientation, gender identity, marital status, national origin, age, disability status, protected veteran status, or any other protected status.#J-18808-Ljbffr

• 

• Government Careers