Cyber Lead/ISSO

in Arlington, VA

Cyber Lead/ISSO Job

Job Description Job Attributes+

  • Job ID


  • Req #


  • Job Location

    Arlington, VA, US

  • Job Category

    Information Security

  • Job Type

    Full Time


  • Ideal Innovations Inc. (I3) is a Service-disabled Veteran-Owned small business (SDVOSB) that specializes in providing biometric and forensic services. Headquartered in Arlington, VA, I3 specializes in designing, developing, delivering, and sustaining the very latest, cutting-edge biometric technology. I3 is comprised of biometric software & system engineers, software developers, program managers, and experts with global biometric system development experience who provide solutions of the highest overall quality, security, and value to the United States (U.S.) Government. I3 is interested in hiring the very best and brightest managers, engineers, logisticians, subject matter experts. We offer competitive salaries, 401k, and continuing education funds. We pay close attention to our workforce and strive to provide opportunities and longevity that endures beyond our opportunities. At I3, we want to provide our future teammates with opportunities for professional development & growth and the ability to deliver disruptive biometric solutions and support to the battlefield today and into the future.
  • You will be working with a team of IT professionals. This team, comprised of system engineers, configuration managers, help desk technicians, and trainers, works collectively in a data center environment in Arlington, VA. The team provides operational support for the Biometric Collection Capability (BC2) comprised of biometric collection systems, biometric jump kits, hand-held devices, and Very Small Aperture Satellites as well as field service representatives forward in an overseas environment.  
  • Working closely with our military members and fellow contractors provides a unique opportunity to achieve both job satisfaction and self-fulfillment supporting our nation's heroes. Your contributions will be integral to the overall success of the team and the program.
  • This is an opportunity to support the Army’s biometric collection mission, which strives to collect, match and compare fingerprints, iris images, and facial photos to establish identity superiority and maintain identity dominance in all areas of military operations. As the team’s Information Systems Security Officer (ISSO), you will work closely with the Customer’s Information System Security Manager (ISSM) and the Team’s developers, help desk, and managers to ensure all cybersecurity activities are executed per the DOD’s Risk Management Framework (RMF), in support of DoD 8570, to ensure the 100% availability of all biometric data. The successful candidate will oversee the information assurance, system security, and monitoring for all hardware and software of the Biometric System of Systems capability, ensuring constant availability of all technical resources, and provide technical direction to IT support/help desk staff. As the ISSO, the ideal candidate will lead the program’s Authority to Operate (ATO) process.
  • With a strong IT baseline, the ideal candidate will gain detailed knowledge on biometric software and hardware and be in a strategic position to assist our warfighters in ensuring all systems are 100% ready to successfully conduct biometric missions.


Serve as the team lead for Cybersecurity and be the designated Information Systems Security Officer (ISSO) overseeing the program’s Cyber Security functions.  The candidate will perform cybersecurity activities to support the Risk Management Framework (RMF) and serve as the team’s Information Systems Security Officer (ISSO)

As the ISSO the candidate will have the responsibility to:

  • Lead the team in the development of a Risk Management Plan (RMP) and Program Protection Implementation Plan (PPIP)
  • Perform all required activities to obtain and maintain an Authorization to Operate (ATO) and/or Assess Only Authorization for all system environments in accordance AR 25–1 and AR 25–2
  • Support the customer in preparation for the system evaluation by the Security Control Assessor (SCA) in the Enterprise Mission Assurance Support Service (eMASS)
  • Ensure all systems are compliant per Defense Information Systems Agency (DISA) guidelines and have all applicable Security Technical Implementation Guides (STIG) applied to the system components before implementation
  • Maintain and analyze audit logs accessible by government-designated personnel
  • Assist the customer in completing RMF Authorizations
  • Remediate or mitigate all vulnerabilities and security deficiencies and develop an RMF Plan of Action and Milestones (POA&M) in the authorized tool format
  • Work with the Customer to maintain, manage and update the POA&M
  • Coordinate with the Security Team until all weaknesses are eliminated or mitigated
  • Provide artifacts in support of efforts to satisfy RMF requirements and facilitate the production and deployment of new capabilities IAW Information Assurance (IA) Accreditation Artifact Data
  • Verify biometric products, to include open-source products, against the Approved Product List (APL) and submit APL approval and waiver requests as required by Project Management Office, Army, and DoD Cybersecurity policy
  • Provide a STIG Compliance Status Report
  • Provide an Information Assurance Vulnerability Alert (IAVA) Compliance Status
  • Provide full system vulnerability scans including all information system and network devices
  • Respond to Army Cyber Operations Orders (OPORD)
  • Author Cybersecurity Summary Reports Implement the necessary Cybersecurity mechanisms for operational security services and conduct regularly scheduled vulnerability assessments
  • Implement directed Cybersecurity mandates such as information operations conditions (INFOCONs) and Information Assurance Vulnerability Alerts (IAVAs), and provide additional vulnerability remediation services to include the operating system, application, and hardware/firmware updates, and patch management
  • Develop and deliver to the Government’s Information System Security Manager (ISSM) the appropriate artifacts and deliverables to establish and maintain the required Authority to Operate (ATO) documents


  • Education: Bachelor’s degree in Computer Science, Information Systems, Engineering, or related technical discipline. Note: 10 years of direct relevant technical experience may be substituted for education
  • DoD 8570 IAM Level 3 certified as specified at
  • 10+ years of experience in:
    • Managing highly available data center operations with responsibility for infrastructure robustness, including networking, security, server hardware in support of a worldwide customer base
    • Authoring and administering RMF and PPIP
    • Achieving an ATO for a complex system on one or more of the following networks
      • Non-classified Internet Protocol Router Network (NIPRNet)
      • Combined Enterprise Regional Information Exchange System (CENTRIX)
      • Secret Internet Protocol Router Network (SIPRNet)
  • Serving as an ISSO
  • Experience using Jira
  • Solid understanding of regulatory requirements, governance, and business operations
  • Excellent communication and relationship skills, especially the ability to articulate advanced technical topics to both technical and non-technical staff
  • Firm grasp on IT infrastructure and operations best practices
  • Interact with the customer, as needed, to address connectivity issues
  • Strong presentation skills
  • Engage with a diverse team providing technical and functional expertise including both government and contractor personnel

Job Qualifications

  • Prior experience supporting information assurance activities for biometric software and systems


Receive a daily email with new civilian jobs which match your MOS.

Learn more about our Privacy Policy.

Saved Jobs