Information Security Officer
The Defense & Intelligence Group of Leidos has a career opening for an Information Security Officer to support the Defense Threat Reduction Agency (DTRA) in Ft. Belvoir, VA.
Information Security Officer to offer support for a Defense Threat Reduction Agency (DTRA) program. This position is for an ISSO for an enclave at DTRA. The candidate is primarily responsible for managing system development, operations, and maintenance at the program level. As part of these responsibilities, the ISSO must work with all DTRA cybersecurity personnel (e.g., ISSO, ISSM, PM, AO, etc.) to ensure compliance with DoDI 8510.01 for the systems which they own.to support DTRA.
•Categorize the information system, in coordination with the information owner (IO), and in accordance with (IAW) Committee on National Security Systems Instruction (CNSSI) 1253. The ISO must sign the required DTRA Categorization Worksheet, and formally submit the results within eMASS.
•Appoint a user representative (UR) for assigned IS and PIT systems.
•Develop, maintain, and track the security plan for assigned IS and PIT systems.
•Describe the information system (including system boundary) and document the description in the security plan.
•Register the information system with appropriate organizational program/management offices.
•Identify security controls provided by the organization as common controls for organizational information systems and document the controls in a security plan (or equivalent document).
•Select the security controls for the information system and document the controlin the security plan.
•Develop a strategy for the continuous monitoring of security control effectiveness and any proposed or actual changes to the information system and its environment of operation.
•Implement the security controls specified in the security plan.
•Document the security control implementation, as appropriate, in the security plan, providing a functional description of the control implementation (including planned inputs, expected behavior, and expected outputs).
•Conduct initial remediation actions on security controls based on the findings and recommendations of the security assessment report and reassess remediated control(s), as appropriate.
•Prepare the plan of action and milestones based on the findings and recommendations of the security assessment report excluding any remediation actions taken.
•Assemble the security authorization package and submit the package to the authorizing official for adjudication.
•Determine the security impact of proposed or actual changes to the information system and its environment of operation.
•Conduct remediation actions based on the results of ongoing monitoring activities, assessment of risk, and outstanding items in the plan of action and milestones.
•Update the security plan, security assessment report, and plan of action and milestones based on the results of the continuous monitoring process.
•Report the security status of the information system (including the effectiveness of security controls employed within and inherited by the system) to the authorizing official and other appropriate organizational officials on an ongoing basis in accordance with the monitoring strategy.
•Implement an information system decommissioning strategy, when needed, which executes required actions when removing a system from service.
Successful candidate should have at least 2-3 years' experience in each of the qualifications (8 years of IT experience total).
•Bachelor’s Degree and/or years of experience
•IAT II Certified
•Top Secret clearance and be able to obtain a TS/SCI
•IAM III Certified
Leidos is a global science and technology solutions leader working to solve the world’s toughest challenges in the defense, intelligence, homeland security, civil, and health markets. The company’s 33,000 employees support vital missions for government and commercial customers. Headquartered in Reston, Virginia, Leidos reported pro forma annual revenues of approximately $10 billion for the fiscal year ended January 1, 2016 after giving effect to the recently completed combination of Leidos with Lockheed Martin's Information Systems & Global Solutions business (IS&GS). For more information, visit www.Leidos.com. The company’s diverse employees support vital missions for government and commercial customers. Qualified women, minorities, individuals with disabilities and protected veterans are encouraged to apply. Leidos will consider qualified applicants with criminal histories for employment in accordance with relevant Laws. Leidos is an Equal Opportunity Employer.