Information Systems Security Engineer (ISSE)

Description

We are actively seeking Information Systems Security Engineers (ISSE) with a minimum of five (5) years’ experience in the role of an ISSE. This opportunity is supporting the customer’s Accreditation and Authorization (A&A) projects at the Group organizational level and is therefore supporting across various levels within the customer organization.

CLEARANCE REQUIREMENT: Must be US Citizen or US Person (Green Card Holder) with the ability to obtain a level 4 Public Trust Clearance.

This role is primarily remote, with occasional onsite requirements. Candidates must be local to the DC Metro area and available to attend in-person meetings in Washington, DC as needed.

• Possess multi-tasking skills, be able to handle multiple A&A systems / projects simultaneously, as well as being a good communicator / facilitator. Comfortable communicating at all levels from developer / engineer to senior contractor / customer staff.

• Knowledge of complex network environments involving shared networks and multiple security enclaves

• Possess the ability to bridge the technical implementation (i.e. engineering talk) into commonly understood security verbiage. Often this is a skillset and is not an actual language, frequent translation or a basic understand needs to be conveyed by the ISSE when speaking with others or when communicating in writing in order to ensure it’s easy to understand at all levels.

• Document the various security control implementations as well as gather the artifacts that support the Risk Management Framework (RMF) and ICD 503 Security Accreditation for the various Assessment and Authorization (A&A) efforts

• Document and obtain a general understanding of the architecture being developed or that was developed for each project in order to write the Systems Security Plans (SSP) / CONOPS

• Gather the information by working with various systems owners, project managers, and engineering team members in order to write various additional A&A related documents such as Contingency Plan (CP), General User Guide (GUG), Privileged User Guide (PUG), Standard Operating Procedures (SOP’s), etc.

• Document the Plans of Actions and Milestones (POA&Ms) implementation responses or mitigations, as well as provide all required artifacts (i.e. evidence gathering from the system owners, PMs, and engineering teams)

• Coordinating with various contractor and customer personnel to obtain the A&A content, as well as working with various customer security organizations to navigate the customer’s A&A process to achieve Authority to Develop (ATD), Interim Authority to Operation (IATT), and Authority to Operate (ATO) for each of the primary and secondary assigned systems

• Provide appropriate support for ATO'ed systems that are in continuous monitoring

• Education, Experience & Skills

  • 8+ years’ experience and a Bachelor’s Degree minimum required

  • Previous ISSE experience directly supporting the customer

  • SaaS applications along with Public, private and/or hybrid Cloud experience is a must (AWS, Microsoft Azure, etc.)

• Certifications:At least 1 is required

  • CISSP or GSLC certifications

The Mission

The Digital Modernization Sector is focused on delivering performance-based IT services and repeatable solutions to include applying cloud-factory and aaS (as a Service) capabilities and integrating commercial products to provide a comprehensive digital engineering approach to IT transformation. Our team is solving the world’s toughest security challenges for customers with “can’t fail” missions. To explore and learn more, click here!

Come join our rapidly growing team and enjoy these benefits:

• Paid Time Off (PTO) accrued based on Leidos policy, up to 3 weeks a year.

• Eleven (11) paid holidays per year.

• Access to benefits on day one including medical and dental insurance, 401K, Life, AD&D, Voluntary Disability plans.

• Ongoing training to support your success.

• Discounted Leidos stock purchase and other Employee Discounts.

For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

The Leidos pay range for this job level is a general guideline onlyand not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.

#Remote