Cybersecurity Specialist

Leidos•Washington, DC

About The Position

Looking for an opportunity to make an impact? At Leidos, we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customers’ success. We empower our teams, contribute to our communities, and operate sustainable. Everything we do is built on a commitment to do the right thing for our customers, our people, and our community. Our Mission, Vision, and Values guide the way we do business. If this sounds like the kind of environment where you can thrive, keep reading! The Digital Modernization Sector brings together our digital transformation and IT programs, allowing us to better serve our customers through scale and repeatability. (Group Profile/Link to Group page) - https://www.leidos.com/capabilities/digital-modernization Your Next Great Adventure Awaits! Please Note: This position is currently unfunded and contingent upon customer approval.. The selected candidate may not begin work until funding and customer approval received. Leidos is seeking a Cybersecurity Specialist! General program information and/or position overview. The Cybersecurity Specialist will be responsible to implement and execute risk management processes by utilizing National Institute of Standards and Technology (NIST) 800 series special publications, Federal Information Processing Standards (FIPS), and Federal Information Security Modernization Act (FISMA) compliance frameworks. The Cybersecurity Specialist will work in a collaborative unified team environment to monitor, evaluate, and manage the risk posture of systems’ authorization boundary to safeguard information systems by leveraging robust understanding of NIST Risk Management Framework (RMF). This position will involve working closely with the organization’s IT teams to identify vulnerabilities, conduct security control assessments, perform risk analysis and assessments, develop security strategies for mitigating and resolving findings, provide cybersecurity compliance guidance to IT teams and ensure systems remain compliant with federal standards and regulations.

Requirements

Familiarity of networking ports and protocols, architecture of networked and standalone systems, functionality of various operating systems, cloud computing environments and common security tools.
Ability to digest and comprehend information system topology diagrams and Concept of Operations documentation.
Knowledge with federal standards such as NIST, FISMA and FIPS.
Exposure to Security Control Audits.
Proficient with MS Office.
Active (or held within 3 years) Security Clearance.
US Citizenship is required and able to obtain at minimum Public Trust clearance.

Nice To Haves

Relevant certifications (e.g., CompTIA Network+, Security+, CySA+) are a plus.
Exposure to FedRAMP program and standards.
NASA experience.

Responsibilities

Supports the Cybersecurity Program by managing Authorization Packages (AP) to include Privacy Analysis, System Categorizations, Risk Assessment Reports (RAR), System Security Plan (SSP), and general Assessment and Authorization (A&A) oversight to obtain or maintain a system’s Authorization to Operate (ATO).
Focal point for enterprise SSPs managing the security posture by supporting Information System Owners (ISO) and Information System Security Officials (ISSO) with RMF responsibilities.
Develop and maintain accurate and effective Plans of Action & Milestones (POA&Ms) as part of continuous monitoring for implementing cybersecurity improvements.
Collaborate with Information System Administrators (ISA) and various Engineering teams to integrate security measures into new and existing information systems and major applications.
Stay up to date on general information technology innovations and emerging threats and security technologies to continuously improve security posture.