Information Security Professionals ISSO ISSE

Leidos is seeking Information Security Professionals for programs in our National Security Sector's (NSS) Cyber & Analytics Business Area (CABA).  Our talented team is at the forefront in Security Engineering, Computer Network Operations (CNO), Mission Software, Analytical Methods and Modeling, Signals Intelligence (SIGINT), and Cryptographic Key Management. At Leidos, we offer competitive benefits, including Paid Time Off, 11 paid Holidays, 401K with a 6% company match and immediate vesting, Flexible Schedules, Discounted Stock Purchase Plans, Technical Upskilling, Education and Training Support, Parental Paid Leave, and much more.  Join us and make a difference in National Security!  

Information Systems Security Officers (ISSO) and Information Systems Security Engineers (ISSE) will support our Leidos-led Prime Programs supporting the Ft. Meade, MD customer. Our work locations range from North and South Laurel, Columbia, Annapolis Junction, Linthicum and Ft. Meade, MD.

ISSO Job Summary:

The Information System Security Officer (ISSO) is integral to our mission of safeguarding our information systems. The ISSO collaborates with cross-functional teams to develop and maintain a robust security framework, protecting our systems against threats and vulnerabilities. This role requires a proactive approach to managing security policies, performing assessments, and supporting security authorization processes.

Primary Responsibilities:

• Propose, coordinate, implement, and enforce information systems security policies, standards, and methodologies.
• Maintain the operational security posture for information systems to ensure policies, standards, and procedures are established and followed.
• Manage security aspects of information systems and perform daily security operations.
• Evaluate security solutions to ensure they meet requirements for processing classified information and perform vulnerability/risk assessments to support certification and accreditation.
• Provide configuration management for information system security software, hardware, and firmware, and manage changes to systems, assessing their security impact.
• Prepare and review security documentation, including System Security Plans (SSPs) and Assessment and Authorization packages.
• Manage and coordinate security authorization activities in accordance with Government regulations, Department of Defense and National Institute of Standards and Technology Risk Management Framework and standards, and customer-specific information security policies, processes, and procedures.

ISSE Job Summary

The Information Systems Security Engineer (ISSE) is crucial in designing, developing, and implementing secure information systems. The ISSE collaborates with architects and developers to integrate robust security measures into systems, ensuring they are resilient against threats and vulnerabilities. This role requires a deep understanding of security engineering principles and a proactive approach to risk management throughout the system lifecycle.

Primary Responsibilities:

• Perform and review technical security assessments to identify vulnerabilities and ensure compliance with information assurance (IA) standards and regulations.
• Validate and verify system security requirements, establish system security designs, and integrate system security capabilities for various environments.
• Build cybersecurity into systems deployed to operational environments, ensuring uniform application of security policies and enterprise solutions.
• Assess and mitigate system security threats and risks throughout the program life cycle, contributing to security planning, assessment, risk analysis, and risk management.
• Apply system security engineering expertise in areas such as system security design, life cycle, risk management, and security testing, using industry system security engineering methodologies.
• Enforce the design and implementation of trusted relations among external systems and architectures and manage changes to systems while assessing security impact.
• Support security authorization activities in accordance with Government regulations, Department of Defense and National Institute of Standards and Technology (NIST) Risk Management Framework (RMF) standards, and customer-specific information security policies, processes, and procedures.

Basic Qualifications

Bachelors Degree, candidates with out higher level education will be considered if they have extensive relevant ISSO or ISSE experience

DoD 8570 Certification compliance related to level of position. This could include one or more of the following IAT II, IAM I, II or III or IASAE I, II or III:

• Security+ CE
• CISSP
• CASP+ CE
• ISSEP

Five (5) or more years of experience as an ISSO or ISSE

Five (5) or more years of experience with MD customer security suite

Clearance Required:  Must have an active TS/SCI with Polygraph.

CONMD

KQW

Original Posting Date:

While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

Pay Range:

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.