Information Systems Security Officer

Leidos Office of the Chief Information Security Officer within Digital Modernization sector is seeking a talented Information System Security Officer (ISSO). You will be joining a diverse team to create unique solutions for complex problems. With offices across the United States engaging in the defense space cyber and commercial fields Leidos provides responsive cost-effective engineering scientific and IT solutions.

In this role you will be responsible for supporting our Classified Information System Cybersecurity/Information Assurance Program. This position reports to the Information System Security Manager (ISSM) on all aspects of classified information system security compliance.

Location: All work will be performed on-site at our Huntsville AL facility.

What will you be doing in this role

• Assessing and monitoring system compliance auditing security plan development and delivering information systems security education and awareness

• Investigating information system security violations and help prepare reports specifying corrective and preventative actions

• Conducting technical and administrative assessments

• Integrating new cybersecurity processes procedures and tools

• Supporting the creation review and update of cybersecurity documentation and other technical writing

• Managing the day-to-day compliance of our classified information systems by:

• Auditing information systems to ensure compliance with security policies and procedures while reporting any discrepancies to the ISSM ISO or FSO.

• Assisting in the Risk Management Framework (RMF) authorization process by developing and maintaining artifacts for the IS Body of Evidence (BoE).

• Reviewing and approving (within authority) Configuration Management (CM) requests of all associated hardware software and security relevant functions is maintained and documented as part of CCB approval process.

• Assisting with sanitization and release of hardware in accordance with security policies or Authorizing Official (AO) guidance.

• Testing/evaluation and application of required technical security controls and periodic inspections of information systems.

Basic Qualifications

• BS degree and at least 4 years of applicable related experience in a computer-related discipline Associate degree and 6 years or High School Diploma/GED and 8 or more years will be considered in lieu of degree.

• An active Secret clearance is required to be considered with the ability to obtain a Top Secret clearance if hired.

• Currently hold an active Security or equivalent certification.

• Cybersecurity systems security or hardening Information Technology

• Compliance-based auditing using the Risk Management Framework (RMF) DCSA Assessment and Authorization Process Manual (DAAPM) National Industrial Security Program Operating Manual (NISPOM) or Joint Special Access Program (SAP) Implementation Guide (JSIG)

• Experience working with and/or supporting computer technologies (such as: databases operating systems computer network hardware software programs hardware troubleshooting or electronics)

• Physical security project or program management office management senior administration or account management

• Experience with security configurations across multiple operating systems in various environments to include Windows Linux UNIX utilizing Active Directory/Group Policy Centrify etc. is required.

• Demonstrates high level of organization and self motivation.

• Possesses excellent documentation skills.

• Demonstrates ability to work with minimal supervision.

Preferred Qualifications

• Experience with IT (Windows Linux) is preferred.

• Experience working in DoD classified operating and/or laboratory environments

• Experience with various information system security tools that address vulnerability analysis and mitigation. These may include Solarwinds Tenable SCAP.

• Familiarity with implementation of Government directives and policies derived from NIST STIG DoD or other Government Regulatory compliance standards within a professional industry

• Experience in the execution of the Assessment & Authorization processes as defined within the Risk Managed Framework (RMF)

• Experience providing technical security consultation for complex cross-domain heterogeneous classified networked environments in collaboration with internal/external Customers Information Technology (IT)

• Familiarity with the execution and management of cyber incident response; preservation containment and eradication

Original Posting:

For U.S. Positions: While subject to change based on business needs Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

Pay Range:

The Leidos pay range for this job level is a general guideline onlyand not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job education experience knowledge skills and abilities as well as internal equity alignment with market data applicable bargaining agreement (if any) or other law.