Description The Health and Civil Sector is actively seeking Information Systems Security Engineers (ISSE) with a minimum of five (5) years' experience. This opportunity is supporting the customer's Accreditation and Authorization (A&A) projects at the Group organizational level and is therefore supporting across various levels within the customer organization. Role requires US Citizen with the ability to obtain a Public Trust level 4 clearance. MUST be local to the DC Metro area for onsite meetings in Washington, DC as needed Role will primarily telecommute, onsite requirement may vary.
- Possess multi-tasking skills, be able to handle multiple A&A systems / projects simultaneously, as well as being a good communicator / facilitator. Comfortable communicating at all levels from developer / engineer to senior contractor / customer staff.
- Knowledge of complex network environments involving shared networks and multiple security enclaves
- Possess the ability to bridge the technical implementation (i.e. engineering talk) into commonly understood security verbiage. Often this is a skillset and is not an actual language, frequent translation or a basic understand needs to be conveyed by the ISSE when speaking with others or when communicating in writing in order to ensure it's easy to understand at all levels.
- Document the various security control implementations as well as gather the artifacts that support the Risk Management Framework (RMF) and ICD 503 Security Accreditation for the various Assessment and Authorization (A&A) efforts
- Document and obtain a general understanding of the architecture being developed or that was developed for each project in order to write the Systems Security Plans (SSP) / CONOPS
- Gather the information by working with various systems owners, project managers, and engineering team members in order to write various additional A&A related documents such as Contingency Plan (CP), General User Guide (GUG), Privileged User Guide (PUG), Standard Operating Procedures (SOP's), etc.
- Document the Plans of Actions and Milestones (POA&Ms) implementation responses or mitigations, as well as provide all required artifacts (i.e. evidence gathering from the system owners, PMs, and engineering teams)
- Coordinating with various contractor and customer personnel to obtain the A&A content, as well as working with various customer security organizations to navigate the customer's A&A process to achieve Authority to Develop (ATD), Interim Authority to Operation (IATT), and Authority to Operate (ATO) for each of the primary and secondary assigned systems
- Provide appropriate support for ATO'ed systems that are in continuous monitoring
- Education, Experience & Skills
- BA/BS and 5+ years' experience
- Previous ISSE experience directly supporting the customer
- Public, private and hybrid Cloud experience (AWS, Microsoft Azure, etc.)
- Certifications:At least 1 is required
- CISSP or GSLC certifications
- hhsnih
Original Posting Date:2024-09-12
While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.
Pay Range:Pay Range $81,250.00 - $146,875.00
The Leidos pay range for this job level is a general guideline onlyand not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law. #Remote
|