Information Systems Security Officer

R-00151001

Description

The Digital Modernization Sector at Leidos currently pursuing a new opportunity that has openings for an Information System Security Officer (ISSO) to work in

Tampa, FL. This is an exciting opportunity to use your experience helping the U.S. Special Operations Command (USSOCOM) Enterprise Development, Application, and Training (EDAT) mission. In this mission

we are focused on providing innovative, data-driven solutions and enterprise architecture enhancements to enable seamless operations across USSOCOM's global network. The program emphasizes rapid

development and deployment of technologies to enhance the mobility and readiness of Special Operations Forces (SOF) in both combat and non-combat scenarios. Key tasks include program management,

application development, training support, and technology integration to maintain USSOCOM's operational edge. The EDAT program underscores agility and adaptability, ensuring SOF professionals have access to

the information and tools they need to meet evolving mission requirements.

Primary Responsibilities:

• Implement and maintain information system security measures to protect against cyber threats and
  
• ensure the confidentiality, integrity, and availability of sensitive information.
  
• Conduct vulnerability assessments to identify weaknesses in systems and applications and
  
• recommend remediation strategies to address identified vulnerabilities.
  
• Develop and maintain incident response plans and procedures and provide technical support to respond to and resolve security incidents.
  
• Ensure compliance with industry standards and government regulations, including NIST 800-53 and DISA STIG.
  
• Collaborate with development teams to ensure that security is integrated into the software development lifecycle and provide guidance on secure coding practices and secure development methodologies.
  
• Develop and maintain security documentation, including security plans, risk assessments, and incident response plans.
  
• Provide technical support to ensure the security of systems and applications and stay current with industry trends and emerging technologies to continuously improve security posture.
  
• Implement comprehensive vulnerability management processes, including scanning, assessment, reporting, and mitigation verification.
  
• Ensure the privacy of data throughout its life-cycle, from creation to disposal, and implement measures to protect sensitive information.
  

Basic Qualifications:

• Bachelor’s degree in Computer Science, Cybersecurity, or a related field, with 4+ years of prior relevant experience, or a Master's degree with 2-6 years of prior relevant experience.
  
• Must possess a Top Secret (TS) clearance with eligibility for Sensitive Compartmented Information (SCI).
  
• Relevant technical certifications, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), CompTIA Cybersecurity Analyst (CySA+), or equivalent.
  
• Deep understanding of information system security principles, theories, and concepts.
  
• Broad knowledge of related specialty areas, including compliance reporting, data encryption, and risk management.
  
• Strong skills in security controls, security management, and risk analysis.
  
• Experience with information system security tools and technologies, such as firewalls and encryption technologies.
  
• Familiarity with industry standards, laws, corporate policies, and regulatory requirements, including NIST 800-53 and DISA STIG.
  
• Ability to apply knowledge of security controls and risk management to protect digital information.
  
• Strong analytical and problem-solving skills to identify and mitigate potential risks.
  

Preferred Qualifications:

• Advanced degree in Cybersecurity, Computer Science, or a related field, such as a Master's or Ph.D.
  
• 5+ years of experience in information system security, with a particular focus on risk assessment, vulnerability management, and supporting incident response activities to enhance overall security posture and mitigate threats.
  
• Relevant technical certifications, such as Certified Information Systems Auditor (CISA), GIAC Security Essentials (GSEC), Certified Information Privacy Professional (CIPP), or equivalent.
  
• Experience with leading or participating in security teams, with a focus on developing and implementing comprehensive security strategies.
  
• Strong skills in advanced security tools and technologies, such as artificial intelligence, machine learning, and cloud security.
  
• Experience with agile development methodologies and DevSecOps practices, with a focus on integrating security into the software development lifecycle.
  
• Experience with mentoring and guiding junior security professionals, with a focus on sharing knowledge and expertise to improve team performance.
  
• Familiarity with emerging threats and technologies, such as advanced persistent threats, ransomware, and cloud security, and ability to apply this knowledge to improve security measures and protect against cyber attacks.
  

Original Posting Date: 2025-01-13
While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

Pay Range: Pay Range $85,150.00 - $153,925.00

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.