Cybersecurity Inspection Analyst
Description The Defense Group at Leidos as an exciting opportunity as a Cybersecurity Inspection Analyst on our GSM-O II IDIQ contract's Joint Service Provider (JSP) Cyber Security Task Order in Alexandria, VA.
JSP provides a full range of IT products, services, and solutions and customer services to the Office of the Secretary of Defense (OSD), Chairman of the Joint Chiefs of Staff (CJCS) and the Joint Staff (JS), Director of Administration (DA), Pentagon Force Protection Agency (PFPA), Washington Headquarters Services (WHS), and other OSD offices for them to meet mission and business requirements.
Through the JSP Cyber Security program, JSP performs a wide variety of services and functions required to secure the information security posture for DoD services.
This is a hybrid position allowing 50% remote work after a brief ramp-up period (first 2-3 weeks will be 100% onsite, then your time will be split 50/50 onsite vs remote).
Primary Responsibilities Conduct cybersecurity related audits, inspections, vulnerability assessments, compliance assessments, Security Readiness Review (SRR), and ensure compliance with Cyber Security Service Provider (CSSP) and Command Cyber Readiness Inspection (CCRI) evaluation criteria.
Assist with Site Assistance Visits (SAVs) to ensure regulatory compliance with Command Cyber Operational Readiness Inspection (CCORI), Public Key Infrastructure (PKI), North Atlantic Treaty Organization (NATO), and Balanced Survivability Assessment (BSA).
Track and report completion/closure of inspection findings documented in POA&Ms and other action item in the Inspection Findings Reports Identify systems and assets that are not sufficiently assessed through automated scanning or routine, periodic assessments and recommend and/or conduct customized, manual assessments of systems as required to ensure proper evaluation for compliance Track and maintain Post Inspection Finding Remediation and Plan of Actions and Milestones (POA&M) Status Report for all inspections Validate remediation of the findings or submit the artifacts/or POA&Ms to inspecting organization for approval Perform technical, operational, and non-technical CCRI evaluation areas including, internal and external network infrastructure, Domain Name System (DNS), internal network vulnerability scan, wireless and mobile security, enclave security, Host Based Security System (HBSS), configuration reviews, traditional/physical security, releasable (REL) networks, database security, cross domain solutions, Voice over Internet Protocol (VoIP), Voice over Secure Internet Protocol (VoSIP), Video Teleconference (VTC), exchange services, different operating systems (specifically UNIX, Windows, Linux), web servers, REL networks and compliance directives.
Qualifications Active Secret clearance or higher (program can support up to TS/SCI) DoD 8570 IAT II compliant certification (ie, Security+, etc.
) Bachelor's degree and 2
years' directly relevant experience (additional experience may be considered in lieu of degree) Excellent presentation skills and communication skills and the ability to develop and present briefings to leadership Pay Range:
Pay Range $63,050.
00 - $113,975.
00The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary.
Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
Recommended Skills Administration Assessments Auditing Business Requirements Communication Computer Security Estimated Salary: $20 to $28 per hour based on qualifications.
JSP provides a full range of IT products, services, and solutions and customer services to the Office of the Secretary of Defense (OSD), Chairman of the Joint Chiefs of Staff (CJCS) and the Joint Staff (JS), Director of Administration (DA), Pentagon Force Protection Agency (PFPA), Washington Headquarters Services (WHS), and other OSD offices for them to meet mission and business requirements.
Through the JSP Cyber Security program, JSP performs a wide variety of services and functions required to secure the information security posture for DoD services.
This is a hybrid position allowing 50% remote work after a brief ramp-up period (first 2-3 weeks will be 100% onsite, then your time will be split 50/50 onsite vs remote).
Primary Responsibilities Conduct cybersecurity related audits, inspections, vulnerability assessments, compliance assessments, Security Readiness Review (SRR), and ensure compliance with Cyber Security Service Provider (CSSP) and Command Cyber Readiness Inspection (CCRI) evaluation criteria.
Assist with Site Assistance Visits (SAVs) to ensure regulatory compliance with Command Cyber Operational Readiness Inspection (CCORI), Public Key Infrastructure (PKI), North Atlantic Treaty Organization (NATO), and Balanced Survivability Assessment (BSA).
Track and report completion/closure of inspection findings documented in POA&Ms and other action item in the Inspection Findings Reports Identify systems and assets that are not sufficiently assessed through automated scanning or routine, periodic assessments and recommend and/or conduct customized, manual assessments of systems as required to ensure proper evaluation for compliance Track and maintain Post Inspection Finding Remediation and Plan of Actions and Milestones (POA&M) Status Report for all inspections Validate remediation of the findings or submit the artifacts/or POA&Ms to inspecting organization for approval Perform technical, operational, and non-technical CCRI evaluation areas including, internal and external network infrastructure, Domain Name System (DNS), internal network vulnerability scan, wireless and mobile security, enclave security, Host Based Security System (HBSS), configuration reviews, traditional/physical security, releasable (REL) networks, database security, cross domain solutions, Voice over Internet Protocol (VoIP), Voice over Secure Internet Protocol (VoSIP), Video Teleconference (VTC), exchange services, different operating systems (specifically UNIX, Windows, Linux), web servers, REL networks and compliance directives.
Qualifications Active Secret clearance or higher (program can support up to TS/SCI) DoD 8570 IAT II compliant certification (ie, Security+, etc.
) Bachelor's degree and 2
years' directly relevant experience (additional experience may be considered in lieu of degree) Excellent presentation skills and communication skills and the ability to develop and present briefings to leadership Pay Range:
Pay Range $63,050.
00 - $113,975.
00The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary.
Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
Recommended Skills Administration Assessments Auditing Business Requirements Communication Computer Security Estimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
