Leidos, the 8th largest defense contractor, with a global workforce of 47k, is summoning Corporate-Level Cybersecurity Compliance and Governance (CC&G) Interns.

Leidos is making smart smarter, and you can contribute. As a CC&G intern, you won’t just sip coffee and shuffle papers. Oh no! You’ll be collaborating to create smarter technology solutions for customers in heavily regulated industries.

You’ll also develop a long list of career building benefits, including professional development, organizational skills, critical thinking and task management. And guess what? You won’t be alone. Our Cybersecurity Compliance and Governance Team is like the Avengers, but with firewalls instead of capes.

A successful CC&G intern will provide compliance guidance, process improvement, reporting, and metrics at the enterprise level. In addition, the CC&G intern will facilitate the involvement of cross-functional teams, surfacing concerns and building improvements to our compliance strategies across all lines of business and global locations. A successful CC&G intern will work closely with the Senior Compliance Principal and other Governance, Risk Management, and Compliance staff to oversee the development and advancement of our CC&G program.

So, dust off your keyboard, polish your mouse, and apply now! The world needs more cyber heroes, and you could be the one to save the day (and the data).

Primary Responsibilities

Rotate through team functions to gain experience CIS-Compliance and Governance services.

Implement and administer the Leidos Compliance Management program for continual compliance of internal and external regulations, policies, and laws.

Audit and assess compliance and governance of information security processes for specific business units, functions or services. evaluate the organization's cybersecurity risk management program.

Monitor emergent changes in regulatory and security compliance and determine the impact of those changes on Information Technology functional processes.

Define and communicate CC&G priorities.

Facilitate the remediation of the Information Technology control deficiencies, including communication with essential levels of leadership, validate remediation activities and monitoring the progress of remediation efforts.

Facilitate cross-organizational council meetings and lead the activities of compliance stewards across the enterprise.

Develop and deliver Compliance Management program educational, awareness, and mentoring materials.

Establish, maintain, and review Compliance Management policies, standards, guidelines, and procedures. Assure alignment with Company policies to meet the Company’s regulatory and operational obligations.

Define Compliance Management metrics for periodic release; conduct assessments to ensure that policies, procedures, and metrics are in place for maintaining/improving the program.

Help develop, maintain, evaluate, and implement policies and procedures in line with both business requirements and national and international legislative changes.

Work with Line of Business, Cybersecurity, and Information Technology personnel to ensure awareness and alignment of ongoing industry and best practice compliance obligations.

Basic Qualifications

Must be enrolled in a bachelor’s or master’s degree in a related field.

Strong interpersonal and communication skills to foster collaboration on resolution of compliance issues; ability to build strong partnerships and relationships with representatives of various organizational entities.

US Citizenship and able to obtain security clearance.

Familiarity or preparedness to learn about auditing compliance of information security to policies and procedures.

Familiarity or preparedness to learn about security governance principles, compliance, legal and regulatory issues, and regulatory acts. For example, cybersecurity laws and regulations in both the U.S. and abroad impacting data protection and the confidentiality, integrity and availability of systems and data, including DFARS 252.204-7012, Cybersecurity Maturity Model Certification (CMMC), NIST Cybersecurity Framework (CSF), NIST Special Publication 800-171, NIST SP 800-53, ISO 27001, and General Data Protection Regulation (GDPR). 

Familiarity or preparedness to learn about system security plans, contingency plans, incident response plans, configuration management plans, security control requirements and assessments, Plan of Action, and Milestones (POA&M), and training requirements consistent with frameworks including NIST.

Familiarity or preparedness to learn how to assess whether security safeguards employed by organizations are implemented correctly, are operating as intended, and satisfy the security requirements.

Performs other duties as assigned.

Preferred Qualifications

Awareness, knowledge and / or experience with DFARS 252.204-7012, Cybersecurity Maturity Model Certification (CMMC), NIST Cybersecurity Framework (CSF), and NIST Special Publication 800-171r2.

Original Posting Date:2025-01-17

While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

Pay Range:Pay Range $39,000.00 - $70,500.00

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.