Information Assurance Engineer

Information Assurance Engineer

Join a mission-driven team at Leidos. The Leidos Digital Modernization Sector, within the Chief Information Security Office, is seeking an experienced Information Assurance Engineer to support the Program Executive Office Integrated Warfare Systems (PEO IWS 5B) program. In this role, you will collaborate with the Information System Security Manager and the broader security team to ensure compliance with NIST 800-53 controls and maintain the integrity of critical information systems. You'll play a key role in conducting security assessments, implementing security controls, and supporting the authorization process within the Enterprise Mission Assurance Support Service (eMASS). Location: Chesapeake, VA Clearance Requirement: U.S. Citizenship is required. Must currently hold an active DoD Secret Clearance.

What You'll Do

• Perform risk assessments and vulnerability analyses to identify and mitigate security risks.
• Support security authorization activities, including Assessment & Authorization (A&A) and Authority to Operate (ATO) processes.
• Conduct weekly audits and maintain comprehensive security documentation (SSPs, POA&Ms, Security Assessment Reports).
• Monitor and maintain security controls through continuous monitoring practices.
• Operate and manage security tools such as SIEM, IDS/IPS, and vulnerability scanners.
• Respond to security incidents and coordinate remediation efforts.
• Conduct compliance audits and reviews to ensure adherence to security policies.
• Stay informed on emerging cybersecurity threats, vulnerabilities, and industry best practices.

Required Qualifications

• Associate's degree in Computer Science, Information Systems, Cybersecurity, or a related field (or equivalent experience) with 4+ years of related experience. Additional experience, training, and/or certifications may substitute education requirement.
• Minimum of 4 years of relevant experience in cybersecurity or information assurance.
• Certifications: IAT II Certifications to meet DoD 8140 compliance: (i.e., CompTIA Security+)
• Strong ability to research, learn, and collaborate effectively.

Preferred Qualifications

• Additional certifications such as MCP or Linux+.
• In-depth knowledge of DAAPM, NISPOM CFR Part 32 117.18, and NIST 800-53.
• Experience with Risk Management Framework (RMF), eMASS, and A&A processes.
• Proficiency in scripting or programming within Unix/Linux environments.
• Hands-on experience with vulnerability assessment tools such as SCAP, ACAS/Nessus, and DISA STIGs.

Come break things (in a good way). Then build them smarter. We're the tech company everyone calls when things get weird. We don't wear capes (they're a safety hazard), but we do solve high-stakes problems with code, caffeine, and a healthy disregard for "how it's always been done."