Information System Security Professionals ISSO- ISSE

Leidos•Bowie, MD

1d•Onsite

About The Position

Looking for an opportunity to make an impact? At Leidos, we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customers’ success. We empower our teams, contribute to our communities, and operate sustainably. Everything we do is built on a commitment to do the right thing for our customers, our people, and our community. Our Mission, Vision, and Values guide the way we do business. Your greatest work is ahead! Leidos’ Defense is seeking a Information System Security Officer (ISSO) ISSE to join our team at our Bowie, MD office. The candidate will be part of a cyber and IT team responsible for the design, deployment, maintenance, configuration management, monitoring, and troubleshooting of an expanding wide area network supporting a multi-site secure network. The work to be performed will require that the candidate be able to work comfortably at several levels of support from supporting IT system administration tickets from installation, configuration, and troubleshooting of Linux workstations to servers’ equipment. Provide updates to ISSM for strategic planning purposes. Projects and tasks will be assigned and at times self-initiated requiring independent judgement in balancing of resources, schedules, work hours, as well as travel to regional sites to obtain results. Work will require ability to manage the risk for PC workstations and peripherals, and ancillary equipment. If this sounds like the kind of environment where you can thrive, keep reading! Leidos Defense Systems Sector provides a diverse portfolio of systems, solutions, and services covering land, sea, air, space, and cyberspace for customers worldwide. Solutions for Defense include enterprise and mission IT, large-scale intelligence systems, command and control, geospatial and data analytics, cybersecurity, logistics, training, and intelligence analysis and operations support. Our team is solving the world’s toughest security challenges for customers with “can’t fail” missions. To explore and learn more, click here! Are you ready to make an impact? Share your resume with us today!

Requirements

BS degree and 4 – 8 years of prior relevant experience. In lieu of a bachelors degree, HS /GED and 10+ years of relevant experience required.
Linux experience (RHSCE certification)
Conduct security and risk assessments using security frameworks (e.g., NIST, RMF, Common Criteria, etc.)
Mitigate risk via security controls, testing and evaluation to certify and accredit commercial security products, ensuring privacy of data throughout its life cycle.
Vulnerability management.
Business continuity and disaster recovery.
US citizen possess and maintain an active Secret clearance.
Must be a resident of Bowie, MD or willing to relocate to the Bowie, MD area.

Nice To Haves

RHSCE certification
Security+ certification

Responsibilities

Coordinate with ISSM for security relevant changes.
Conduct analysis of the Security Impact Analysis of changes to the Linux environments / ATO.
Evaluate configuration management (CM) for information system security software, hardware, and firmware.
Perform and review technical security assessments to identify vulnerabilities and ensure compliance with information assurance (IA) standards and regulations.
Validate and verify system security requirements, establish system security designs, and integrate system security capabilities for various environments.
Build cybersecurity into systems deployed to operational environments, ensuring uniform application of security policies and enterprise solutions.
Assess and mitigate system security threats and risks throughout the program life cycle, contributing to security planning, assessment, risk analysis, and risk management.
Apply system security administration expertise in areas such as system security design, life cycle, risk management, and security testing, using industry security engineering methodologies.
Support security authorization activities in accordance with Government regulations, Department of Defense and National Institute of Standards and Technology (NIST) Risk Management Framework (RMF) standards, and customer-specific information security policies, processes, and procedures.