Apply on Employer Site

Leidos · 2 hours ago

Information Systems Security Manager (ISSM)

Lorton, VA

Full-time

Onsite

Mid, Senior Level

$108K/yr - $195K/yr

6+ years exp

Leidos is an industry and technology leader serving government and commercial customers with smarter, more efficient digital and mission innovations. They are seeking an Information Systems Security Manager (ISSM) to oversee the cybersecurity posture of DoD information systems and ensure compliance with DoD security standards. The ISSM will develop security policies, conduct risk assessments, and manage incident response while collaborating with cross-functional teams.

ComputerGovernmentInformation ServicesInformation TechnologyNational SecuritySoftware

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Act as a Subject Matter Expert guiding and assisting teams through different phases of network connection processes from initial request to sustained network operations

Facilitate approval process for Authorization to Operate (ATO), Authority to Extend (ATE), Authorization to Connect (ATC), and Interconnection Security Agreement (ISA), working with the customer and stakeholders to receive SCA/AO endorsement

Develop, implement, and maintain security policies, procedures, and documentation to ensure compliance with DoD security standards and regulations (e.g., NIST, RMF, FISMA)

Oversee the security posture of DoD information systems, ensuring they meet cybersecurity requirements for confidentiality, integrity, and availability

Perform risk assessments, vulnerability assessments, and security audits to identify system vulnerabilities and provide remediation strategies

Manage and conduct continuous monitoring of security controls, ensuring the protection of classified and unclassified data

Coordinate with cross-functional teams (engineering, IT, operations) to implement and enforce security protocols and best practices

Ensure the accreditation process for DoD systems (e.g., RMF accreditation) is completed and maintained in compliance with all applicable requirements

Act as the primary point of contact for security-related issues, coordinating incident response and reporting to senior management and government customers

Provide security training and awareness programs for personnel involved in the operation of DoD systems

Maintain and track security documentation, including system security plans (SSPs), risk assessments, and Plan of Actions & Milestones (POA&Ms)

Stay current with emerging cybersecurity threats, vulnerabilities, and trends to ensure the program adapts to evolving security challenges

Qualification

CISSPDoD cybersecurity policiesRisk managementVulnerability assessmentsCloud securitySecurity controlsIncident responseSecurity trainingCommunication skillsCollaboration

Required

US Citizen with at least a Top Secret clearance and the ability to obtain a SCI prior to your start date. In addition the ability to maintain your clearance during your employment with Leidos

Bachelor's Degree with 8+ years of experience or Master's degree with 6+ years of experience. Additional experience may be considered in lieu of a degree

CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), or similar cybersecurity certification

In-depth knowledge of DoD cybersecurity policies, frameworks, and compliance standards (e.g., NIST 800-53, RMF, FISMA, ICD 503)

Experience with system security engineering, risk management, and vulnerability assessments

Strong understanding of cloud security, network security, security controls, and common cybersecurity tools (e.g., firewalls, IDS/IPS, SIEM, endpoint protection)

Ability to work independently and collaborate effectively with cross-functional teams

Strong communication skills, including the ability to create and present detailed security reports to stakeholders