Information Systems Security Officer
Leidos
- Colorado Springs, CO
- $81,250-146,875 per year
- Permanent
- Full-time
- Responsible for meeting both regulatory and non-regulatory compliance demands.
- Responsible for management and enforcement of information security policies, conducting security and risk assessments using security frameworks (e.g., NIST, RMF, Common Criteria, etc.), mitigating risk via security controls, vulnerability management (scanning, assessment, reporting, and mitigation verification).
- Responsible for the protection of information and maintain security controls for TF2200 systems in order to reduce risk.
- Support IA continuous monitoring tasks (auditing, security patching, scanning) to ensure compliance with security policies and procedures.
- Respond to and perform IT troubleshooting of TF2200 systems as required.
- Assist with maintaining the security posture of TF2200 systems by performing regular cybersecurity updates to systems.
- Support the Risk Management Framework (RMF) authorization process to include developing and maintaining artifacts for the IS Body of Evidence (BoE).
- Perform in-office IT tasks as required and assist team members with issues as they arise.
- Candidate must be a U.S. Citizen and hold an active TS/SCI security clearance.
- A relevant BS degree with 4 – 8 years of applicable ISSM or ISSO experience is required, or a relevant MS with 2-6 years of relevant experience.
- Solid understanding of the Risk Management Framework (RMF).
- Candidate must demonstrate experience interpreting and applying government security regulations such as NIST SP 800.53 Rev 4, DCSA NISPOM to information systems.
- DoDM 8570.01 IAM Level II Certificate (CISSP, CASP+ CE) is required.
- Candidate must be highly organized and self-motivated with excellent documentation skills. Candidate should be able to communicate effectively with customers and team members at all levels.
- Some travel may be required, up to 10%.
- Candidate must be a resident of the Colorado Springs, CO area.
- Candidate should have significant hands-on experience implementing security, hardware, software, and network components.
- Candidate should possess strong technical writing.
- Experience with configuring Windows systems IAW DISA STIGs, and using automated STIG tools (SCAP, Evaluate-STIG).
- Experience with Army Space Control systems.
- Experience with DoD customers and their requirements, primarily USASMDC.