Senior ISSM SME

Position: (688) Senior ISSM SME
Company Summary

Arlo Solutions (Arlo) is an information technology consulting services company that specializes in delivering technology solutions. Our reputation reflects the high quality of the talented Arlo Solutions team and the consultants working in partnership with our customers. Our mission is to understand and meet the needs of both our customers and consultants by delivering quality, value-added solutions. Our solutions are designed and managed to not only reduce costs, but to improve business processes, accelerate response time, improve services to end-users, and give our customers a competitive edge, now and into the future.

Position

Description:

The role requires a senior professional who can operate successfully in a pioneering and fast-moving defense technology environment. The ISSM SME will be accountable for upholding security standards across the organization, safeguarding sensitive information critical to national security, and helping mature scalable cybersecurity operations across CDAO systems. In addition to providing RMF and ISSM expertise, this individual will support program execution by managing priorities, coordinating tasking, tracking deliverables, supporting onboarding and offboarding of team members, identifying operational risks, and helping ensure the team is aligned, organized, and meeting mission objectives.

The role will require strong communication, accountability, stakeholder management, and the ability to keep daily operations running smoothly across a distributed and mission-focused team. The ISSM SME will support enterprise-wide cybersecurity governance by partnering with the Government ISSM to help define and mature the ISSM Program for the CDAO organization. Responsibilities will include managing authorization workflows, improving standardization, mentoring cybersecurity personnel, developing reusable cybersecurity artifacts, supporting process improvement, and enabling consistent, repeatable cybersecurity practices across the enterprise.

To be successful in this position the candidate must possess a firm understanding of statutory guidance such as statutory guidance including 570.01 (Information Assurance Workforce Improvement Program), DoDI 8500.01 (Cybersecurity), DoD Directive 8140.03 (Information Systems Security Manager DoD Cyber Exchange), and NIST 800-37 r2 (Risk Management Framework for Information Systems and Organizations).

Location:

Arlington, VA / Hybrid (Situational telework)

Clearance:  TS/SCI

Responsibilities and/or Success Factors:

* Serve as a primary contract point of contact for Government stakeholders, supporting communication, coordination, and issue resolution.

* Manage day-to-day program operations to ensure team activities, priorities, and deliverables remain aligned with Government objectives.

* Track tasks, milestones, action items, risks, dependencies, and deliverables across RMF and cybersecurity work streams.

* Support onboarding and offboarding of team members, including coordination of access, orientation, knowledge transfer, and transition activities.

* Facilitate meetings, status updates, and working sessions with Government and contractor personnel.

* Develop and maintain program documentation, schedules, trackers, process guides, and recurring status materials. Enterprise eMASS Governance & Workflow Management

* Manage and oversee enterprise authorization activities within eMASS across supported systems and programs.

* Coordinate, track, and manage eMASS workflows, artifacts, approvals, inheritance relationships, and authorization requests.

* Support system onboarding, authorization sustainment, authorization extension, reciprocity, and Continuous Monitoring activities within eMASS.

* Validate authorization package completeness, workflow progression, and cybersecurity artifact quality. Organizational Cybersecurity Governance & Policy Development

* Assist in developing and maintaining enterprise cybersecurity governance documentation including:

* Develop repeatable, scalable cybersecurity processes aligned to:

* Support organizational maturity and process standardization initiatives. Organizational Control Inheritance Strategy (eMASS Organizational Controls)

* Assist in defining, documenting, and operationalizing enterprise-level organizational controls for inheritance within eMASS.

* Help establish standardized inherited control baselines to reduce redundancy and improve authorization scalability.

* Identify common enterprise security services, policies, procedures, and safeguards eligible for inheritance.

* Coordinate with cybersecurity leadership to define:

* Support implementation of enterprise authorization efficiencies through standardized control inheritance. ISSM Mentorship & Workforce Development

* Mentor junior and mid-level ISSMs, ISSOs, and cybersecurity personnel supporting CDAO systems.

* Provide coaching and guidance on:

* Promote consistency, quality, and repeatability across enterprise cybersecurity efforts.

* Assist in establishing…