Logo
Leidos Inc

Cybersecurity Specialist II Job at Leidos Inc in Huntsville

Leidos Inc, Huntsville, AL, United States, 35824

Description

The Cybersecurity Specialist will be responsible for implementing and executing risk management processes by utilizing National Institute of Standards and Technology (NIST) 800 series special publications, Federal Information Processing Standards (FIPS), and Federal Information Security Modernization Act (FISMA) compliance frameworks. The Cybersecurity Specialist will work in a collaborative unified team environment to monitor, evaluate, and manage the risk posture of systems' authorization boundary to safeguard information systems by leveraging a robust understanding of the NIST Risk Management Framework (RMF). This position will involve working closely with the organization's IT teams to identify vulnerabilities, conduct security control assessments, perform risk analysis and assessments, develop security strategies for mitigating and resolving findings, provide cybersecurity compliance guidance to IT teams, and ensure systems remain compliant with federal standards and regulations.

Primary Responsibilities:

  • Supports the Cybersecurity Program by managing Authorization Packages (AP) to include Privacy Analysis, System Categorizations, Risk Assessment Reports (RAR), System Security Plan (SSP), and general Assessment and Authorization (A&A) oversight to obtain or maintain a system's Authorization to Operate (ATO).
  • Acts as the focal point for enterprise SSPs, managing the security posture by supporting Information System Owners (ISO) and Information System Security Officials (ISSO) with RMF responsibilities.
  • Develops and maintains accurate and effective Plans of Action & Milestones (POA&Ms) as part of continuous monitoring for implementing cybersecurity improvements.
  • Collaborates with Information System Administrators (ISA) and various Engineering teams to integrate security measures into new and existing information systems and major applications.
  • Stays up to date on general information technology innovations and emerging threats and security technologies to continuously improve security posture.

Basic Qualifications:

  • Bachelor's degree in Cybersecurity, Management of Information Technology, or a related field.
  • 5-10 years of experience in information security or related roles.
  • Familiarity with networking ports and protocols, architecture of networked and standalone systems, functionality of various operating systems, cloud computing environments, and common security tools.
  • Ability to digest and comprehend information system topology diagrams and Concept of Operations documentation.
  • Knowledge of federal standards such as NIST, FISMA, and FIPS.
  • Exposure to Security Control Audits.
  • Proficient with MS Office.
  • Active (or held within 3 years) Security Clearance.

Preferred Qualifications:

  • Relevant certifications (e.g., CompTIA Network+, Security+, CySA+) are a plus.
  • Exposure to FedRAMP program and standards.
  • NASA experience.

Specific position requirements include:

Must be within commuting distance to MSFC (Huntsville, AL) and willing to transition to on-site work if required by the program or customer.

#J-18808-Ljbffr