Job Description

Salary: $87,100 - 157,450 per year Requirements:

• Bachelors degree in Cybersecurity, Information Security, IT, Electrical Engineering, Network Engineering, Computer Science, or a related field with 4 years of relevant experience, or a Masters degree with 2 years of relevant experience.
• Must be a U.S. Citizen and possess a DoD Secret Clearance.
• Active security certification that complies with DOD 8570 IAT Level III or higher.
• Comprehensive understanding of the Risk Management Framework (RMF) steps, particularly from Steps 4 to 7.
• Capability to identify security technical implementation guidelines (STIGs) relevant to system authorization boundaries.
• Proficient in deconstructing security controls and ensured compliance of artifacts or test results.
• Familiarity with techniques used for system exploitation (e.g., MITRE ATT&CK framework) to assess risks and potential mitigations.
• Ability to utilize appropriate technical mitigating resources.
• Experience with eMASS functionalities including control inheritance and POAM imports.
• Familiarity with cybersecurity authorization activities according to current manuals, instructions, and guidelines.
• Skills to monitor patch compliance using tools such as ACAS and Microsoft Defender for Endpoints.
• Experience in developing and executing security procedures and reviewing Security Technical Implementation Guide (STIG) checklists.
• Capacity to create, edit, and maintain security documentation, Standard Operating Procedures (SOP), and Plans of Action and Milestones (POA&M).
• Experience with site audits, including System Readiness Reviews (SRR).
• Knowledge of cybersecurity assessment and authorization processes compliant with DoDI 8500.01 and applicable NIST standards.
• Attention to detail and ability to manage multiple tasks in a fast-paced environment.
• Strong analytical, communication, and troubleshooting skills for effective collaboration with teams.
• Background in cybersecurity assessments, vulnerability scanning, or security operations with a focus on compliance.
• Experience in leading cybersecurity initiatives and coordinating with clients and stakeholders.
• Effective written and verbal communication skills to articulate complex subjects clearly to diverse teams.

• Act as the primary Information System Security Engineer (ISSE) for Authorization to Operate (ATO) packages, following the Risk Management Framework (RMF).
• Aid in the creation and assessment of ATO documentation, ensuring all updates and corrections are coordinated properly for assessment and authorization artifacts.
• Assess software and hardware to confirm adherence to minimum security criteria based on NIST SP 800-53 Rev4 controls.
• Prepare, verify, and submit required cybersecurity authorization documentation to eMASS, achieving milestones like Interim Authority to Test (IATT) and ATO.
• Conduct cybersecurity authorization tasks in line with all pertinent DoD manuals and procedures.
• Monitor system resources via automated scanning and manage automated reporting streams supporting cybersecurity compliance.
• Ensure patch compliance through solutions such as ACAS and available IAVA compliance dashboards.
• Collaborate with local administrators to swiftly resolve patching issues and meet timelines.
• Facilitate the application of security requirements and ensure compliance through STIG checklist execution and review processes.
• Independently create and maintain comprehensive system security documentation, including SOPs and TTPs.
• Engage in regular updates with clients regarding cybersecurity status, including preparing necessary briefing materials.
• Support site visits and audits, including conducting System Readiness Reviews (SRR).
• Ensure the streamlined operation of network systems and infrastructure.
• Contribute to the development of business processes guaranteeing adequate security measures.
• Participate in strategic planning for network, security, and operational technologies.
• Provide expertise in cybersecurity authorization services to assist engineering management in adopting layered defense principles.
• Document and discuss Ports, Protocols, and Services (PPS) for compliant data flows and assurance with the Authorizing Official.

• Hardware
• Support
• Network
• Security
• Backbone
• Cloud
• DevOps
• ITIL
• Matrix

More:

At Leidos, we are excited to welcome an experienced Information Assurance Engineer to our team dedicated to enhancing cybersecurity for the Navy and Marine Corps. Our project, the Service Management, Integration, and Transport (SMIT), focuses on delivering essential IT services and improving operational effectiveness. As part of our commitment to excellence, we offer competitive salaries, robust benefits including health and wellness programs, income protection, paid leave, and retirement options. With around 47,000 employees globally and a revenue of approximately $16.7 billion in our last fiscal year, we are set in Reston, Virginia. Our mission demands dedication and innovation, and we are looking for candidates who are ready to disrupt the status quo and drive advancement.

last updated 14 week of 2026

Job Tags

Similar Jobs