Leidos
Department of Homeland Security (DHS), Customs and Border Protection (CBP) Security Operations Center (SOC) is a U.S. Government program responsible for preventing, identifying, containing, and eradicating cyber threats to CBP networks through monitoring, intrusion detection, and protective security services for CBP information systems, including LAN/WAN, commercial Internet connections, public-facing websites, wireless, mobile/cellular, cloud, security devices, servers, and workstations. The CBP SOC is responsible for the overall security of CBP Enterprise-wide information systems and collects, investigates, and reports any suspected or confirmed security violations.
Primary Responsibilities
Conduct risk assessment of CBP systems including data gathering, research, and coordination.
Analyze control applicability and implementation statuses for enterprise risk assessments.
Integrate the NIST Cybersecurity Framework (CSF) into NIST 800-53 controls analysis.
Conduct analysis on the effectiveness of POA&M management when conducting risk assessments.
Analyze MITRE Tactics and Techniques for CBP’s CTI Threat Actors and additional threat actors targeting the system.
Prioritize system assets based on impact levels.
Identify response activities, including contingency plan, data backups, and alternate processing sites.
Prioritize recommendations to mitigate risk levels.
Apply knowledge of the Risk Management Framework (RMF) and the System Development Life Cycle (SDLC) to daily activities.
Analyze SSPs, risk assessment reports, and other security-related documentation.
Formulate security compliance requirements for systems.
Identify security issues when reviewing security documents.
Utilize CBP’s intelligence/security tools (Axonius, CrowdStrike, Swimlane, CSAM, Splunk, ARM—Active Risk Manager, Digital Guardian, Recorded Future) to capture data points for risk assessments.
Support CBP Component – Cybersecurity Acquisition Risk Management (C-CARM) in establishing an effective security infrastructure by ensuring CBP program cybersecurity threats and risks are identified, assessed, and documented throughout the acquisition lifecycle.
Monitor Body of Evidence (BoE) for each Acquisition Decision Event (ADE) and actively communicate concerns to promote program milestone success.
Organize and secure program BoE by regulating the Teams channel.
Communicate between programs and cybersecurity risk assessment functionaries.
Support C-CARM in guiding programs on the methodology and sequence for consistent and concise threat assessment.
Ensure the C-CARM SOP is up-to-date and consistent with current processes.
Create various PowerPoint presentation briefs for the respective government leads.
Basic Qualifications
Bachelor’s degree in Computer Science, Engineering, Information Technology, Cyber Security, or a related field and 8 years of related experience (additional years of experience and cyber certifications may be considered in lieu of a degree).
Familiar with the management, operational, and technical aspects of IT security in a complex enterprise environment.
Demonstrated knowledge of and experience with several of the following: current security tools; hardware/software security implementation; communication protocols; encryption techniques/tools.
In-depth experience completing security evaluations of software systems or architectures to ensure they meet security requirements.
In-depth experience proposing, coordinating, implementing, and enforcing information systems security policies, standards, and methodologies, preferably on a large software or IT program.
Must be able to obtain and maintain a Public Trust clearance specific to this customer.
Preferred Qualifications
Experience in reviewing results from operating system, application, and database scans.
Experience in vulnerability reviewing, analysis, and management.
Preferred Certifications
CAP
CISM
CISSP
CISA
CASP
CEH
GCED
CRISC
Sec+
Pay Range Pay Range $107,900.00 - $195,050.00
The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
Commitment to Non-Discrimination All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.
#J-18808-Ljbffr
Primary Responsibilities
Conduct risk assessment of CBP systems including data gathering, research, and coordination.
Analyze control applicability and implementation statuses for enterprise risk assessments.
Integrate the NIST Cybersecurity Framework (CSF) into NIST 800-53 controls analysis.
Conduct analysis on the effectiveness of POA&M management when conducting risk assessments.
Analyze MITRE Tactics and Techniques for CBP’s CTI Threat Actors and additional threat actors targeting the system.
Prioritize system assets based on impact levels.
Identify response activities, including contingency plan, data backups, and alternate processing sites.
Prioritize recommendations to mitigate risk levels.
Apply knowledge of the Risk Management Framework (RMF) and the System Development Life Cycle (SDLC) to daily activities.
Analyze SSPs, risk assessment reports, and other security-related documentation.
Formulate security compliance requirements for systems.
Identify security issues when reviewing security documents.
Utilize CBP’s intelligence/security tools (Axonius, CrowdStrike, Swimlane, CSAM, Splunk, ARM—Active Risk Manager, Digital Guardian, Recorded Future) to capture data points for risk assessments.
Support CBP Component – Cybersecurity Acquisition Risk Management (C-CARM) in establishing an effective security infrastructure by ensuring CBP program cybersecurity threats and risks are identified, assessed, and documented throughout the acquisition lifecycle.
Monitor Body of Evidence (BoE) for each Acquisition Decision Event (ADE) and actively communicate concerns to promote program milestone success.
Organize and secure program BoE by regulating the Teams channel.
Communicate between programs and cybersecurity risk assessment functionaries.
Support C-CARM in guiding programs on the methodology and sequence for consistent and concise threat assessment.
Ensure the C-CARM SOP is up-to-date and consistent with current processes.
Create various PowerPoint presentation briefs for the respective government leads.
Basic Qualifications
Bachelor’s degree in Computer Science, Engineering, Information Technology, Cyber Security, or a related field and 8 years of related experience (additional years of experience and cyber certifications may be considered in lieu of a degree).
Familiar with the management, operational, and technical aspects of IT security in a complex enterprise environment.
Demonstrated knowledge of and experience with several of the following: current security tools; hardware/software security implementation; communication protocols; encryption techniques/tools.
In-depth experience completing security evaluations of software systems or architectures to ensure they meet security requirements.
In-depth experience proposing, coordinating, implementing, and enforcing information systems security policies, standards, and methodologies, preferably on a large software or IT program.
Must be able to obtain and maintain a Public Trust clearance specific to this customer.
Preferred Qualifications
Experience in reviewing results from operating system, application, and database scans.
Experience in vulnerability reviewing, analysis, and management.
Preferred Certifications
CAP
CISM
CISSP
CISA
CASP
CEH
GCED
CRISC
Sec+
Pay Range Pay Range $107,900.00 - $195,050.00
The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
Commitment to Non-Discrimination All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.
#J-18808-Ljbffr