Information System Security Officer (ISSO) – Mid

As the largest provider of IT services Leidos develops and sustains large data and technology infrastructures and integrates complex law enforcement IT system for several US federal agencies. At Leidos we offer engaging careers a collaborative culture and support for your career goals and growth. This role would be serving a federal law enforcement agency in Clarksburg WV with remote work possible.

We are seeking a talented and experienced MidLevel Information Systems Security Officer on our team. The ideal candidate will be responsible for providing leadership and guidance on all aspects of information systems security ensuring compliance with government standards (NIST OWASP Common Criteria DISA and SANS Institute); knowledge of Agile development methodology; demonstrated level of experience in information security practices within the federal and/or state governments; and previous handson technical experience demonstrated in at least one of the following: networking system administration and development.

Primary Responsibilities:

• Manage and maintain the security posture of assigned information systems throughout their lifecycle.

• Develop implement and enforce information system security policies standards and procedures in alignment with NIST OWASP and other relevant government standards.

• Conduct risk assessments and vulnerability analyses to identify security weaknesses and recommend mitigation strategies.

• Prepare and maintain security documentation including System Security Plans (SSPs) Security Assessment Reports and Plans of Action and Milestones (POA&Ms).

• Coordinate and support security authorization activities such as Assessment and Authorization (A&A) or Authority to Operate (ATO) processes.

• Monitor security controls and implement continuous monitoring activities to ensure ongoing compliance.

• Manage and configure security tools and technologies including security information and event management (SIEM) systems intrusion detection/prevention systems (IDS/IPS) and vulnerability scanners.

• Collaborate with system administrators network engineers and developers to ensure secure system design implementation and operation.

• Provide security guidance and support to Agile development teams integrating security into CI/CD pipelines and development processes.

• Manage and respond to security incidents coordinating incident response activities and implementing remediation measures.

• Conduct security audits and reviews to evaluate compliance with security policies and procedures.

• Stay uptodate on the latest cybersecurity threats vulnerabilities and best practices.

• Provide security awareness training to users and staff.

• Manage and control changes to information systems assessing the security impact of changes.

• Oversee the implementation and maintenance of virtualization and softwaredefined technologies from a security perspective.

Basic Qualifications:

• Associates Degree in an IT related field preferred Computer Science Information Systems Management Cyber Security or other related discipline or equivalent experience; additional years of experience may be considered in lieu of a degree

• 4 years of prior relevant experience

• Ability to research and learn both independently and as part of a team

• Must have reliable internet access

• Must be a US Citizen to apply

• DOD Top Secret Clearance is required.

Preferred Qualifications:

• Familiarity with Agencies Agile ATO process

• COMPTIA Sec or equivalent is preferred

• Experience with Cloud Service Providers (CSPs) AWS and/or Microsoft Azure

Original Posting:

For U.S. Positions: While subject to change based on business needs Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

Pay Range:

The Leidos pay range for this job level is a general guideline onlyand not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job education experience knowledge skills and abilities as well as internal equity alignment with market data applicable bargaining agreement (if any) or other law.