ISSO Information Systems Security Officer Lead

Description

Leidos Digital Modernization Sector has a career opportunity for an ISSO Lead to support the Air Force National Capital Region IT Services program.

The AFNCR IT Services program provides support services for information systems for Headquarters Air Force (HAF), Air Force District of Washington (AFDW), Office of the Secretary of Defense (OSD), Joint Chiefs of Staff, and other Air Force activities within the AFNCR, including missions at the Pentagon, Joint Base Andrews (JBA), Joint Base Anacostia-Bolling (JBAB), and other locations, leased spaces, and alternate sites. The major support areas include IT Operations and Maintenance; Plans, Projects, and Engineering (PP&E); and National Military Command Center (NMCC). The operations support critical national defense missions that require uninterrupted service, creating a fast-paced, challenging, but rewarding environment.

If this sounds like the environment where you can thrive, keep reading!

Digital Modernization aims to deliver enterprise IT, digital modernization, and cyber capabilities to meet critical Air Force, Space Force, and Defense Agency operational and mission objectives.

Are you ready to make an impact? Begin your journey of a flourishing and meaningful career by sharing your resume with us today!

POSITION SUMMARY:

This position will serve as the Vulnerability Management Team lead for ISSO supporting staff responsible for ACAS Analysis and remediation. The role is 100% on-site at Joint Base Andrews, MD, overseeing and directing work across the Pentagon, JBA, and JBAB.

PRIMARY RESPONSIBILITIES:

1. Lead team in monitoring and maintaining ACAS (Tenable Nessus/Security Center/Nessus Manager) for CORA (formerly CCRI) compliance.
2. Ensure weekly vulnerability analysis reports are delivered on time.
3. Coordinate with DAOs, System Owners, SAs, and ISSM regarding security-relevant changes to PMOs.
4. Maintain POAM via ELICSAR.
5. Conduct security impact analysis for network environment changes and ATO updates.
6. Provide RMF SME support to the team and government customers.
7. Maintain eMASS posture.
8. Assess 800-53 Control Status for multiple ATOs.
9. Create SARs, maintain eMASS POAMs, and prepare ATO packages.
10. Ensure assessment and authorization packages meet timelines and customer requirements.
11. Report to the program manager and communicate top-down information to the team.
12. Ensure timely, high-quality submission of contract deliverables.
13. Monitor, track, and report daily and weekly team activities.
14. Evaluate configuration management for security software, hardware, and firmware.
15. Review relevant STIGs and ACAS scans for systems undergoing changes.

BASIC QUALIFICATIONS:

1. Bachelor's degree with 12+ years of relevant experience or Master's with 10+ years; additional experience may substitute for degree.
2. Experience with eMASS.
3. Active DoD Secret clearance.
4. DoD 8140 ISSM role certification (e.g., CompTIA Security+).
5. Expertise in NIST SP 800-37, NIST SP 800-53, and DoD policies such as 8510.01.
6. Experience with risk and vulnerability assessments for change management (SIA).
7. POAM management experience.
8. Deep understanding of RMF and authorization processes.
9. Experience in security infrastructure design and implementation.
10. Policy implementation experience within organizations.
11. Project management skills.
12. Technical writing skills, including SOPs, work instructions, and senior briefs.
13. Experience with STIGViewer and DISA STIGs.
14. Familiarity with Nessus/ACAS.
15. Familiarity with PowerShell/Python.

PREFERRED QUALIFICATIONS:

1. DoD 8140 ISSM experienced role (e.g., ISC2 CISSP).
2. Strong oral and written communication skills for technical information.
3. Experience supporting AFNCR, DoD, DISA, or other Pentagon programs.
4. Excellent project, technical, and problem-solving skills.