Leidos is seeking Information Security Professionals for programs in our Intelligence Sector, Cyber & Analytics Business Area (CABA). Our talented team is at the forefront in Security Engineering, Computer Network Operations (CNO), Mission Software, Analytical Methods and Modeling, Signals Intelligence (SIGINT), and Cryptographic Key Management. At Leidos, we offer competitive benefits, including Paid Time Off, 11 paid Holidays, 401K with a 6% company match and immediate vesting, Flexible Schedules, Discounted Stock Purchase Plans, Technical Upskilling, Education and Training Support, Parental Paid Leave, and much more. Join us and make a difference in National Security!
Information Systems Security Officers (ISSO) and Information Systems Security Engineers (ISSE) will support our Leidos-led Prime Programs supporting the Ft. Meade, MD customer. Our work locations range from North and South Laurel, Columbia, Annapolis Junction, Linthicum and Ft. Meade, MD.
ISSO Job Summary: The Information System Security Officer (ISSO) is integral to our mission of safeguarding our information systems. The ISSO collaborates with cross-functional teams to develop and maintain a robust security framework, protecting our systems against threats and vulnerabilities. This role requires a proactive approach to managing security policies, performing assessments, and supporting security authorization processes.
Primary Responsibilities: Propose, coordinate, implement, and enforce information systems security policies, standards, and methodologies. Maintain the operational security posture for information systems to ensure policies, standards, and procedures are established and followed. Manage security aspects of information systems and perform daily security operations. Evaluate security solutions to ensure they meet requirements for processing classified information and perform vulnerability/risk assessments to support certification and accreditation. Provide configuration management for information system security software, hardware, and firmware, and manage changes to systems, assessing their security impact. Prepare and review security documentation, including System Security Plans (SSPs) and Assessment and Authorization packages. Manage and coordinate security authorization activities in accordance with Government regulations, Department of Defense and National Institute of Standards and Technology Risk Management Framework and standards, and customer-specific information security policies, processes, and procedures.
ISSE Job Summary: The Information Systems Security Engineer (ISSE) is crucial in designing, developing, and implementing secure information systems. The ISSE collaborates with architects and developers to integrate robust security measures into systems, ensuring they are resilient against threats and vulnerabilities. This role requires a deep understanding of security engineering principles and a proactive approach to risk management throughout the system lifecycle.
Primary Responsibilities: Perform and review technical security assessments to identify vulnerabilities and ensure compliance with information assurance (IA) standards and regulations. Validate and verify system security requirements, establish system security designs, and integrate system security capabilities for various environments. Build cybersecurity into systems deployed to operational environments, ensuring uniform application of security policies and enterprise solutions. Assess and mitigate system security threats and risks throughout the program life cycle, contributing to security planning, assessment, risk analysis, and risk management. Apply system security engineering expertise in areas such as system security design, life cycle, risk management, and security testing, using industry system security engineering methodologies. Enforce the design and implementation of trusted relations among external systems and architectures and manage changes to systems while assessing security impact. Support security authorization activities in accordance with Government regulations, Department of Defense and National Institute of Standards and Technology (NIST) Risk Management Framework (RMF) standards, and customer-specific information security policies, processes, and procedures.
Basic Qualifications: This posting is for multiple opportunities ranging in years of experience. Level of opportunity, including compensation, will be matched to a candidate's experience.
Bachelors Degree or Masters Degree in related field of study and 12 or more years of related experience.
Candidates with out Bachelors Degrees will be considered on a case by case basis and will be required to have an additional 4 years of related information security experience.
Level 1 - Bachelors and 7-14 years of experience
Level 2 - Bachelors and 14-20 years of experience
Level 3 - Bachelors and 20 or more years of experience
DoD 8570 Certification compliance related to level of position. This could include one or more of the following:
Security+, CISSP, CASP+ CE, ISSEPClearance Required: Must have an active TS/SCI with Polygraph.
At Leidos, we don't want someone who "fits the mold"-we want someone who melts it down and builds something better. This is a role for the restless, the over-caffeinated, the ones who ask, "what's next?" before the dust settles on "what's now." If you're already scheming step 20 while everyone else is still debating step 2… good. You'll fit right in.
Original Posting: January 5, 2026
For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.
Pay Range: The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.