​​Cybersecurity ISSO​

Looking for an opportunity to make an impact? 

Leidos is dedicated to making the world a safer place. This starts with helping our customers in the Defense Industry achieve their critical missions. Our dedicated Defense Group employees are solving critical challenges across the globe. At Leidos, we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customers’ success.  We empower our teams, contribute to our communities, and operate sustainably. Everything we do is built on a commitment to do the right thing for our customers, our people, and our community. Our Mission, Vision, and Values guide the way we do business.   

Are you ready for your next career challenge? 

The Airborne Systems Business Area, part of the Defense Sector at Leidos, currently has an opening for a cleared Cybersecurity Information System Security Officer (ISSO) to work in our Tewksbury, MA office near Hanscom AFB. This is an exciting opportunity to use your experience helping the Air Force Research Lab, Air Force Lifecycle Management Center, and other DoD missions. Your role will be to support our diverse portfolio of programs through a combination of software design and development, hardware interfacing and integration, laboratory experimentation, ground and flight testing to deploy cutting edge, next generation solutions. 

Primary Responsibilities

As part of the Leidos Security Team, you will collaborate with the Information System Security Manager (ISSM) and System Owners to help ensure IT systems remain compliant with government regulations, frameworks, and standards pertaining to SP NIST 800-53A. Qualified candidates will have knowledge, experience and demonstrated ability to perform tasks related to assessing, securing, and monitoring IT systems. Candidates will have the ability to work independently and apply the proper procedures and process related to their area of expertise. The ISSO will assist the ISSM in the development of Risk Management Framework (RMF) security package documentation such as System Security Plans (SSP), standard operating procedures, security control assessments, self-inspections and any relevant Plans of Action and Milestones (POAMs). 

• Perform ISSO duties of establishing and administering appropriate security systems, policies, standards, and procedures in compliance with applicable government and corporate directives, guidelines, and customer contractual requirements 

• Perform security audits in accordance with corporate and government compliance policies NIST 800-53A. 

• Conduct risk and vulnerability assessments of planned and installed information systems to identify vulnerabilities, risks, and protection needs of Windows and Linux systems 

• Promote awareness of security issues and communicate deficiencies to ISSMs and ISOs. 

• Recommend and implement programs to ensure that systems, networks, and data users are aware of, understand, and adhere to systems security policies and procedures 

• Assess security events to determine impact and implementing corrective actions 

• Ensure the rigorous application of information security/cybersecurity policies, principles, and practices in the delivery of all IT services. 

Basic Qualifications

• Bachelor’s degree with 12 years of prior experience in the Cybersecurity ISSO technical/professional discipline. Additional years of experience and/or certifications may be considered in lieu of a degree/prior work experience requirement. 

• Must be a US Citizen. 

• Must have an active DoD TS clearance with the ability to obtain TS/SCI 

• Experience working in a SIL environment 

• Strong understanding of information security and cybersecurity policies, principles, and practices in the delivery of all IT services. 

• Experience in writing RMF package documentation.  

• Possess a Security+ 8570 certification. 

• Well versed in the understanding and implementation of security controls within the NIST SP 800-53A. 

• Experienced with policies and procedures to ensure information systems confidentiality, integrity, and accessibility. 

• User level experience in traversing Linux directories and executing scripts.    

• Experience in risk and vulnerability assessments of information systems to identify vulnerabilities, risks, and protection needs. 

• Experience in documenting system deficiencies and recommending solutions for remediation.   

• Familiar with automated vulnerability scans using Tenable Nessus, SCAP, or other similar applications. 

• Experience with participating in security evaluations, audits, and reviews. 

• Be able to learn new technologies and skills that are essential to ISSO roles and responsibilities. 

• Strong desire to grow and learn new technologies. 

• Ability to communicate effectively in writing and verbally from informal one-on-one discussions or in a small group environment.  

• Ability to work within a dynamic work environment, ability to handle multiple tasks at once (multi-task) 

Preferred Qualifications

• Active DoD TS/SCI clearance 

• Familiar with Agile Methodologies, preferably SCRUM or Kanban 

• Experience with Atlassian tools such as JIRA, Confluence, Bitbucket 

• Experienced with Splunk, Tenable Nessus, SCAP applications and tools 

• Experienced in basic Linux and Windows administration