Leidos is seeking a talented Information System Security Officer (ISSO) to join a diverse team to create unique solutions for complex problems. With offices across the United States engaging in the defense, space, cyber and commercial fields, Leidos provides responsive, cost-effective engineering, scientific and IT solutions.

The Information System Security Officer (ISSO) will be responsible for supporting our Classified Information System Cybersecurity/Information Assurance Program. The ISSO will report to the Information System Security Manager (ISSM) on all aspects of classified information system security compliance

Primary Responsibilities

Assessing and monitoring system compliance, auditing, security plan development and delivering information systems security education and awarenessInvestigating information system security violations and help prepare reports specifying corrective and preventative actionsConducting technical and administrative assessmentsIntegrating new cybersecurity processes, procedures, and toolsSupport the creation, review and update of cybersecurity documentation and other technical writingThe ISSO's primary duties will consist of managing the day-to-day compliance of our classified information systems by:Auditing information systems to ensure compliance with security policies and procedures while reporting any discrepancies to the ISSM, ISO or FSO.Assisting in the Risk Management Framework (RMF) authorization process by developing and maintaining artifacts for the IS Body of Evidence (BoE).Reviewing and approving (within authority) Configuration Management (CM) requests of all associated hardware, software, and security relevant functions is maintained and documented as part of CCB approval process.Assisting with sanitization and release of hardware in accordance with security policies or Authorizing Official (AO) guidance.Testing/evaluation and application of required technical security controls and periodic inspections of information systems.

Basic Qualifications

An active Secret clearance is required to be considered, with the ability to obtain a Top Secret clearance if hired. Position requires having and maintaining a Security+ or equivalent certification to be considered.BS degree and at least 4 years of applicable, related experience in a computer-related discipline. Additional years of experience may be considered in lieu of degree.

Relevant Experience Considered:

Cybersecurity, systems security or hardening, Information TechnologyCompliance-based auditing using the Risk Management Framework (RMF), DCSA Assessment and Authorization Process Manual (DAAPM), National Industrial Security Program Operating Manual (NISPOM) or Joint Special Access Program (SAP) Implementation Guide (JSIG)Experience working with and/or supporting computer technologies (such as: databases, operating systems, computer network hardware, software programs, hardware troubleshooting or electronics)Physical security, project or program management, office management, senior administration, or account managementExperience with security configurations across multiple operating systems in various environments, to include Windows, Linux, UNIX, utilizing Active Directory/Group Policy, Centrify, etc. is required.Candidate must be highly organized and self-motivated with excellent documentation skills and the ability to work with minimal supervision.

Preferred Qualifications

Experience with IT (Windows, Linux) is preferred.Experience working in DoD classified operating and/or laboratory environmentsExperience with various information system security tools that address vulnerability analysis and mitigation. These may include Solarwinds, Tenable, SCAP.Familiarity with implementation of Government directives and policies derived from NIST, STIG, DoD, or other Government Regulatory compliance standards within a professional industryExperience in the execution of the Assessment & Authorization processes, as defined within the Risk Managed Framework (RMF)Experience providing technical security consultation for complex, cross-domain, heterogeneous classified networked environments in collaboration with internal/external Customers, Information Technology (IT)Familiarity with the execution and management of cyber incident response; preservation, containment, and eradicationOriginal Posting Date:2025-02-05

While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

Pay Range:Pay Range $85,150.00 - $153,925.00

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.