Information Security Systems Officer at Leidos

Department of Homeland Security (DHS) Customs and Border Protection (CBP) Security Operations Center (SOC) is a US Government program responsible to prevent identify contain and eradicate cyber threats to CBP networks through monitoring intrusion detection and protective security services to CBP information systems including local area networks/wide area networks (LAN/WAN) commercial Internet connection public facing websites wireless mobile/cellular cloud security devices servers and workstations. The CBP SOC is responsible for the overall security of CBP Enterprise-wide information systems and collects investigates and reports any suspected and confirmed security violations.Primary Responsibilities:The contractor shall provide a qualified individual(s) to serve as an Information Systems Security Officer (ISSO) providing cyber security oversight for several major CBP applications and general support systems as assigned by the Government Information Systems Security Manager. The contractor ISSO must be an acknowledged expert concerning current Federal National DHS and CBP standards policies requirements and procedures and shall provide technical security expertise in planning coordinating preparing and authoring security authorization documentation necessary to ensure OPR meets all Federal Information Systems Modernization Act (FISMA) regulatory requirements and DHS 4300-A Sensitive Systems Policy and CBP 1400-05D Information Security Policy.The ISSO will manage the overall security related policies procedures laws and regulations; create document and implement various security plans and compliance documents to enforce Information Assurance attaining this goal the contractor shall support the Government Information Systems Security Manager by performing the following duties:Develop draft review and endorse all information systems security plans and other security authorization artifacts and documents such as:Standards for Security Categorization of Federal Information and Information Systems (FIPS 199) AssessmenE-Authentication DeterminationPrivacy Threshold Analysis (PTA)Privacy Impact Assessment (PIA)Risk Assessment PlanSystem Security Plan (SSP)Configuration Management PlanContingency PlanContingency Plan Test and Test ResultsSection 508 of the Rehabilitation Act PlanPlan of Action & Milestones (POA&Ms)Policy waiver and Risk Acceptance requestEnsure that assigned systems are operated maintained and disposed of in accordance with applicable policies and procedures NIST SP 800-37 Rev 2 Risk Management Framework for Information Systems and Organizations: A System Life Cycle Approach for Security and Privacy DHS 4300A Policy and Handbook CBP Information Systems Security Policies and Procedures Handbook (HB 1400-05D) and internal CBP (i.e. Office of Information Technology Security Operations Division etc.) security policies and practicesDevelop review maintain and provide system security documentation for assigned systems including System Security Plans Interconnection Security Agreements Contingency Plans Plans of Action and Milestones (POA&M) Waivers and Exceptions through the DHS FISMA system management tool in use to implement and manage the NIST Risk Management Framework.Complete all activities required by the DHS Ongoing Authorization (OA) Program to transition assigned systems into the DHS OA Program and perform all required actions to maintain system authorization under OA once the system is admitted to the ProgramAssist the Government with the reporting and management of system level security violations and incidents.Assist the Government with the technical security evaluation of threats and vulnerabilities involving new/enhanced technology.Assist the Government with providing oversight to vulnerability scanning processes and procedures.Assist the Government with providing oversight to security patch management/flaw remediation processes and procedures.Assist with development of cyber security SOPs playbooks work instructions and other procedures and processes to mature cyber security capabilities.Basic Qualifications:A minimum of a Bachelors degree coupled with 5 - 8 years experience in the Information Technology arena or Masters Degree with 3 years of relevant experience.Minimum of 5 years of experience as an ISSO supporting major federal information systems/applicationsBachelor Degree in Computer Science IT Information/Cyber Security field from an accredited college or universityKnowledge with auditing security controls and financial processesSuperior writing communication and critical analysis skillsDeep understanding of Information Assurance Information Technology and Information Management concepts processes and proceduresWorking knowledge of the following policies: NIST SP 800-37 Rev 2 Risk Management Framework for Information Systems and Organizations: A System Life Cycle Approach for Security and Privacy DHS 4300A Policy and Handbook CBP Information Systems Security Policies and Procedures Handbook (HB 1400-05D)Preferred Qualifications:ISC2 Certified in Governance Risk and Compliance Certification (CGRC)ISC2 Certified Information Systems Security Professional (CISSP)ISACA Certified Information Security Manager (CISM)CompTIA Certified Advanced Security Practitioner (CASP)Clearance: All CBP SOC employees are required to successfully complete a CBP Background Investigation to support this programIf youre looking for comfort keep scrolling. At Leidos we outthink outbuild and outpace the status quo because the mission demands it. Were not hiring followers. Were recruiting the ones who disrupt provoke and refuse to fail. Step 10 is ancient history. Were already at step 30 and moving faster than anyone else dares.Original Posting:December 3 2025For U.S. Positions: While subject to change based on business needs Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.Pay Range:Pay Range $85150.00 - $153925.00The Leidos pay range for this job level is a general guideline onlyand not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job education experience knowledge skills and abilities as well as internal equity alignment with market data applicable bargaining agreement (if any) or other law.Required Experience:Unclear Seniority Key Skills International Development,Information Systems,Community,Information Technology Sales,Corporate Recruitment Employment Type : Full-Time Experience: years Vacancy: 1 Monthly Salary Salary: 85150 - 153925