Description

Leidos has an exciting opportunity for a Cybersecurity Information System Security officer (ISSO) located in Beavercreek, Ohio. As part of the Leidos Beavercreek Security Team you will collaborate with Information System Security Managers and System Owners to help ensure IT systems remain compliant to government regulations, frameworks, and standards such as DFARS NIST 800-53A and NIST 800-171. Qualified candidates have knowledge, experience, and demonstrated ability to perform tasks related to assessing, securing, and monitoring IT systems. Candidates will have the ability to work independently and apply the proper procedures and process related to their area of expertise. The ISSO will assist in the development of information system documentation such as system security plans, security control assessments, and any relevant plans of action and milestones.

Primary Responsibilities

• Using knowledge of the Information System (IS) and understanding of established Information Assurance (IA) and Cybersecurity requirements of NIST 800-53A and 800-171, validate security policies and procedures outlined in the System Security Plan (SSP), customer policies & regulations, and ensure local policies are followed.
• Conduct ongoing security reviews and tests of Windows and Linux systems to verify security features and controls are functional and effective. Take corrective action to resolve identified vulnerabilities.
• Promote awareness of security issues and communicate deficiencies to ISSMs and ISOs.
• Recommend and implement training programs to ensure data users are aware of, understand, and adhere to systems security policies and procedures.
• Ensure the rigorous application of information security/cybersecurity policies, principles, and practices in the delivery of all IT services,

Basic Qualifications:

• Must be experienced in auditing Linux and Windows Operating Systems
• Possess or ability to obtain a security+ 8570 certification within 6 months date of hire.

• Bachelor of Science in Technical field and at least 4 years of relevant work experience - Additional years' experience may be considered in lieu of a degree.
• Active DoD SECRET clearance.
• A strong understanding of security controls contained within NIST 800-53A and NIST 800-171 publications.
• Experienced with policies and procedures to ensure information systems confidentiality, integrity, and accessibility.
• User level experience in traversing Linux directories and executing scripts.
• Experience in identifying risks and vulnerabilities of information systems.
• Experience in documenting system deficiencies and recommending solutions for remediation.
• Familiar with automated vulnerability scans using Tenable Nessus, SCAP, or other similar applications.
• Have participated in systems security evaluations, audits, and reviews.
• Be able to learn new technologies and skills that are essential to ISSO roles and responsibilities.

Preferred Qualifications

• System Administration Experience with Linux, Windows, or Network Devices
• Experience developing RMF packages to attain an ATO declaration.
• As an IA Subject Matter Expert (SME), provide critical thinking to ensure system security requirements are addressed during all phases of the System Development Life Cycle (SDLC).

While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

The Leidos pay range for this job level is a general guideline onlyand not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.