Logo
Leidos

Cybersecurity Information Systems Specialist Job at Leidos in Cardiff by the Sea

Leidos, Cardiff by the Sea, CA, United States, 92007


Description

The Digital Modernization Sector at Leidos is excited to offer an opportunity for Cybersecurity Information Systems Specialists. In this pivotal role, you will be integral to supporting the U.S. Special Operations Command (USSOCOM) Enterprise Development, Application, and Training (EDAT) mission. We focus on delivering innovative, data-driven solutions and enhancing enterprise architecture to support seamless operations across USSOCOM's global network. This program emphasizes the rapid development and deployment of technologies that enhance the mobility and readiness of Special Operations Forces (SOF) in a variety of contexts. Key activities include program management, application development, training support, and technology integration to ensure USSOCOM maintains its operational advantage. The EDAT program prioritizes agility and adaptability, ensuring SOF professionals have the necessary information and tools to meet evolving mission requirements.

Positions will be onsite, and candidates located near Tampa, FL, San Diego, CA, or Fayetteville, NC will be considered.

Primary Responsibilities:

  • Facilitate the creation, implementation, and upkeep of the EDAT program's information system security policies and procedures, ensuring compliance with DoD and USSOCOM security standards.

  • Assist in the preparation, review, and maintenance of Authorization and Accreditation (A&A) documentation in accordance with the Risk Management Framework (RMF) and NIST 800-53 controls.

  • Design, implement, and maintain secure system architectures, both cloud-based and on-premise, in line with DISA STIGs, Zero Trust (ZT) principles, and DoD cybersecurity standards.

  • Conduct vulnerability assessments, penetration tests, and risk analyses to identify and address security threats within USSOCOM systems.

  • Monitor and analyze system activity to detect, report, and respond to security incidents and events.

  • Provide incident management support, including conducting root cause analysis, suggesting corrective actions, and reporting findings to senior leadership.

  • Implement and manage security frameworks such as Public Key Infrastructure (PKI), Identity and Credential Management (ICAM), Attribute-Based Access Control (ABAC), and Role-Based Access Control (RBAC) to secure data and user access.

  • Ensure compliance with USSOCOM data classification and protection requirements, including the implementation of Data Loss Prevention (DLP) measures.

  • Collaborate with cross-functional teams, including system engineers and developers, to integrate security considerations throughout all program activities.

  • Provide training and mentorship on cybersecurity best practices, policies, and tools to teams and stakeholders.

  • Conduct regular audits, assessments, and reviews to ensure compliance with security standards and contractual commitments.

  • Prepare and present security status reports, metrics, and risk assessments to leadership and stakeholders.

Basic Qualifications:

  • Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related discipline. Additional training and experience may substitute for a degree.

  • Relevant cybersecurity certifications may be required, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or CompTIA Advanced Security Practitioner (CASP+).

  • Experience in implementing and managing security controls aligned with RMF, NIST 800-53, and DISA STIG standards.

  • Familiarity with security tools and technologies, such as vulnerability scanners (e.g., Nessus, Qualys), SIEM platforms, and endpoint protection solutions.

  • 4-7 years of experience in information system security roles, including roles as an ISSM, ISSO, or ISSE.

  • Solid understanding of secure system design, implementation, and maintenance in DoD environments.

  • Must possess a Top Secret clearance.

Preferred Qualifications:

  • Master's degree in Cybersecurity, Information Technology, Computer Science, or a related field.

  • Technical certifications such as GIAC Security Essentials (GSEC) or Certified Information Systems Auditor (CISA) are preferred.

  • Experience with implementing Zero Trust (ZT) principles and secure cloud solutions in operational settings.

  • Expertise in advanced security frameworks, including PKI, ICAM, ABAC, and RBAC, to enhance data security and sovereignty.

  • Familiarity with USSOCOM's operational environment and the SOF Information Environment (SIE) along with its security requisites.

  • Experience supporting DoD cybersecurity programs requiring strict compliance and reporting.

  • Demonstrated ability to conduct risk assessments, develop mitigation strategies, and implement corrective actions.

  • Experience leading or contributing to incident response efforts in high-security environments.

  • Ability to effectively convey technical security concepts to non-technical stakeholders and leadership.

  • Experience collaborating with cross-functional teams to align security initiatives with program objectives.

Please note that the pay range listed does not reflect a guarantee of compensation; salary will be determined based on position level, experience, and overall fit.

Original Posting Date: 2024-11-27

The position will remain open for a minimum of 3 days, with the anticipated close no earlier than 3 days post-original posting date.

Pay Range:

Pay Range: $81,250.00 - $146,875.00. The range provided is a general guideline only and not a guarantee of compensation. Additional factors considered include responsibilities of the role, experience, knowledge, skills, abilities, and alignment with market data.