Information Assurance/System Security Architect
Are you ready to make an impact and join a creative, forward-thinking team?
The Leidos DES (Defense Enclave Services) team is supporting an extensive digital modernization program critical to DISA and Fourth Estate Agencies and currently has an opening for an experienced Information Assurance/System Security Architect at Ft. Meade, MD.
The Defense Enclave Services contract will unify the DOD Fourth Estate Defense Agencies and Field Activities’ common use information technology systems, personnel, functions and program elements under the direction of DISA’s Fourth Estate Network Optimization program office. Your role is critical to the overall operational and end User Experience (UX) as automation capabilities impacts each user across the global enterprise.
•Must hold an active Secret clearance prior to start and be able to obtain and maintain a TS/SCI. (US Citizenship required)
•Possess, lead, and apply knowledge for the development of security solutions and architectures for clients.
•Evaluate information assurance/security standards and procedures.
•Support Authorizing Official (AO) actions by developing and delivering accreditation packages with supporting documents and artifacts in accordance with RMF as defined in NIST 800-37 revision 2 and related agency specific RMF requirements
•Provide input into an Audit and Accountability Plan containing methods, procedures, and planned reviews for the continuing accreditation and authorization against AU (Audit and Accountability) family controls per NIST SP 800-53 guidance
•Provide input and implements an organizational access control policy and plan in compliance with risk-levels defined in the National Institute of Standards and Technology (NIST) 800-53, rev 4, Access Control family of controls to include auditing annually, at a minimum
•Develop processes and procedures for evaluating and documenting information system security vulnerabilities IAW DoD Instruction (DoDI) 8510.01 (RMF for DoD IT)
•Support implementation of Multi-Factor Authentication (MFA) and single sign-on (SSO) IAW DoDI 8520.02, DoDI 8520.03, and other applicable policies and regulations
•Develop security architectures and designs using existing and emerging technologies to provide secure enterprise solutions.
•Bachelor’s degree and 12+ years of relevant experience; additional years of experience may be substituted in lieu of a degree.
•Certified Information Systems Security Professional (CISSP).
•5+ years hands-on experience designing or implementing security solutions.
•Analytical ability, problem-solving skills, and ability to break down complex problems into actionable steps.
•Extensive experience in design and development of enterprise security architectures. Experience must include a wide range of work in creating diagrams and documentation with all components that comprise IT systems including network topology.
•Excellent knowledge and experience in secure enterprise architecture design and IDS/IPS tools.
•Exercises good judgment in selecting methods, techniques, and evaluation criteria for obtaining results.
•Understanding of federal cybersecurity guidance such as FISMA NIST SP 800-37 - Guide for Applying the Risk Management Framework to Federal Information Systems: a Security Life Cycle Approach and NIST 800-137 - Information Security Continuous Monitoring (ISCM) for Federal Information Systems and Organizations.
•Previous experience developing architectures, strategies, strategic plans, roadmaps, and technical standards for the federal IT enterprise environment.
•Business case development supporting security technology solutions.
•Experience running ACAS scans.
External Referral Eligible
The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.