Jobs · Information Technology · Maryland

Information System Security Officer

Leidos · Gaithersburg, MD · 2 wk ago
On-siteInformation Technology$108k–$195k/yrFull-time

About the role

The National Solutions Business Area of Leidos Intel Sector is seeking an Information System Security Officer (ISSO).

Responsibilities

  • Manage authorizations and risks related to information processing, storage, and transmission for programs within the Analysis Sustainment portfolio.
  • Meet regulatory and non-regulatory compliance demands, provide leadership over security assessment activities, and work across system ownership and management organizations to test security controls.
  • Provide program management support, team leadership, and participate in and coordinate support for security assessment activities.
  • Manage and enforce government and corporate information security policies, provide training, and educate end users and program staff about proper security practices.
  • Conduct security and risk assessments using various security accreditation frameworks, and work to mitigate risks by applying security controls effectively.
  • Manage and promote the use of secure hardware and software within systems affected by government and corporate approval standards.
  • Ensure all required security policies and practices are effectively applied to systems and ensure security controls implementing these policies are applied and achieve the proper levels of confidentiality, integrity, availability, and privacy protection throughout the system life cycle.
  • Assist with the execution, analysis, and remediation activities for the vulnerability management program, including using Nessus and Tenable-ACAS vulnerability scanning tools.

Requirements

  • US Citizenship is required.
  • BS degree and 8 to 12 years of prior relevant experience to operate within the scope of responsibilities.
  • Active TS-SCI clearance with Polygraph.
  • Experience that demonstrates an understanding and application of the ICD-503 and NIST risk management framework.
  • Experience with XACTA; XACTA 360 (preferred); HBSS; ACAS; Nessus, SPLUNK.

Qualifications

  • Has 3+ years of experience operating, analyzing, and resolving vulnerability scan results using tools such as Nessus, Tenable Security Center, or a comparable commercial or GOTs product.
  • Active Certified Information Systems Security Professional (CISSP) certification or ISACA Certified Information Security Manager (CISM) certification.
  • Intelligence Community experience preferred.

Skills

  • Understanding and application of information security technical principles, theories, concepts, and their application across a range of programs.
  • Initiate and coordinate all Assessment and Authorization (A&A) and renewal activities working with the NGA Designated Authorization Officials (DAO or DAOR).
  • Resolve highly complex security problems by applying technical knowledge, conceptualizing, reasoning, and interpretation of requirements.
  • Communicate with Leidos and NGA leadership regarding matters of significant importance to the organization/project.
  • Develop and maintain security documentation per NGA/IC/DoD-DISA/NIST/Industry standards and policies.
  • Measure effectiveness of defense-in-depth architecture and Zero Trust policy implementations against known vulnerabilities.
  • Perform security audits and assessments, including creating, tracking, and assisting in remediation of Plan of Action and Milestones (POA&Ms).
  • Coordinate with System Administrators and others to remediate all vulnerabilities and report results.
  • Track open vulnerabilities and obtain and document approvals while managing POA&M status.
  • Update Security CONOPS and Information Technology Disaster Recovery (ITDR) plans for each Security Plan.
  • Manage security profiles and implementation for systems and services scheduled for Assessment and Authorization (A&A).
  • Evaluate security solutions and implementation strategies for program IT systems and services and maintain operational security posture of development, integration, and deployed capabilities.
  • Provide training and approve user access and IAA (identification, authorization, and authentication) mechanisms for information systems.

Benefits

Pay Range: $107,900.00 - $195,050.00

Additional details on pay and benefits are available at www.leidos.com/careers/pay-benefits.

Similar jobs

Security Officer

Lifepoint Health®Hancock, MI· 2 wk ago
Information Technologyapply on jobs.lifepointhealth.net

Security Officer

Securitas Security Services USA, Inc.Solway, MN· 1 wk ago
Information Technology$17/hrapply on ekaw.fa.us2.oraclecloud.com

Security Officer

Securitas Security Services USA, Inc.Auburn Hills, MI· 1 wk ago
Information Technology$20/hrapply on ekaw.fa.us2.oraclecloud.com

Security Officer

Pacific SecurityMoses Lake, WA· 2 wk ago
Information Technology$17.5–$18.5/hrapply on pacsecurity.exacthire.com

Security Officer

Prairie MeadowsAltoona, IA· 2 wk ago
Information Technology$20/hrapply on workforcenow.adp.com

SECURITY OFFICER

Oneida HealthOneida, NY· 2 wk ago
Information Technologyapply on paycomonline.net