Leidos is looking for a Lead Security Manager to support the Defense Health Agency (DHA) Military Health Services (MHS) Enterprise Information Technology Services Integrator (EITSI) program.
The DHA MHS EITSI program is a critical program to modernize, standardize and optimize the Defense Health Agency’s IT infrastructure by establishing an Enterprise IT Services (EITS) environment using a Multi-sourcing Services Integrator (MSI) approach.
The services integrator will manage the EITS environment and assist the government in providing oversight of the Service Providers (SPs) for the benefit of the DHA, MHS, and mission partners. The EITSI will provide independent end-to-end accountability through coordination and validation of IT services delivered by separately contracted SPs. The EITSI will also deliver Service Desk and Global Operations (Network Operations Center, Performance Management) services to DHA.
The IT infrastructure and operations framework will support a global data communications network, and enterprise services infrastructure, including data center(s), server hosting, and end-user platform capabilities enabling more than 150K military personnel to support the continuum of health services.
As a member of the Leidos EITSI team program providing Industrial Security support position will coordinate industrial security activities with the Leidos EITSI Security Officer, EITSI Program Management staff and leads, and subcontractor management and industrial security staff. Also will support industrial security initiatives within the EITSI program, including projects to ensure industrial security, compliance with legal, Department of Defense (DoD), and corporate regulations. Must be familiar with the requirements of the National Industrial Security Program Operating Manual (NISPOM) and understand the requirements for operational security, handling of For Official Use Only (FOUO) and Controlled Unclassified Information (CUI), and compliance with DoD requirements for clearances and handling classified information.
Will be involved in the security planning process, creating industrial security plans and coordinating them with stakeholders to ensure their completeness and viability. Also entails the building development of a program security plan to cover the HIPAA requirements and limited classified information requirements for the program, per Leidos internal security and protected information requirements, and contract requirements. Plan will be reviewed by internal security reviewers and then provided to the customer for review and comment.
Will play a performance role in auditing the EITSI security program, working with program Quality Assurance (QA), Leidos Internal Audit, and customer auditors to verify the integrity of security planning and ensure security plans are being complied with, both by corporate personal as well as by subcontractors. Security lead will conduct period reviews and audits to ensure compliance with the established Security Plan. Items such as ensuring compliance with staff clearance requirements, OPSEC and HIPAA annual training requirements, and ongoing risk and issue management of program security related items.
Will also support the collection and reporting of operational security metrics regarding personnel, clearances, visit requests, and other security-related activities.
- Master’s degree and/or equivalency
- 8+ years’ experience in industrial security.
- Demonstrated knowledge and proficiency in industrial security concepts, laws, regulations, policies and procedures.
- Demonstrated understanding of operational security requirements and processes.
- Familiarity with the government’s Risk Management Framework (RMF) for identifying and managing enterprise risks.
- Understanding of the National Industrial Security Program Operating Manual (NISPOM) and its requirements for handling clearances and classified data.
- Understanding of the Health Insurance Portability and Accountability Act (HIPAA) and its regulatory requirements for healthcare security.
- Demonstrated ability to analyze and understand contract requirements, analyze contract requirement flow-down to subcontractors, and perform contract compliance audits against operational processes.
- Requires understanding and interpretation of contract requirements and technical documents including requirements and design specifications;
- Requires experience and proficiency with the Microsoft Office Suite, including expert knowledge of Excel.
- Requires experience and proficiency with Sharepoint, SIMS and JPAS.
- Candidate must be able to effectively communicate; must be proficient in oral communication and technical writing and editing.
- Experience developing security policy and procedure as well as defining process improvements.
- Experience with incident investigation and reporting
- Experience with data analysis and organization
- Experience with Public Trust processing
- Experience with Common Access Card processing
- Experience with Fingerprinting
- Experience with Security Training Compliance
- Ability to develop and maintain industrial security tracking systems and perform process audits against those systems.
- Experience with interacting and communicating with all organizational levels, with skill in dealing with others in person-to-person work relationships.
- Experience in cross-functional settings, especially an Integrated Product Team environment.
- Experience managing small teams.
- NISPOM certification as a Facilities Security Officer (FSO).
- Security Certifications, including Certified Information Systems Security Professional (CISSP), Industrial Security Professional Certification (ISP), the Global Information Assurance Certification (GIAC) organization, or equivalents would be a plus.
- Experience working in a company operating under an ISO 9001 or similar Quality System,
- Working knowledge of security auditing tools
External Referral Bonus:Ineligible
External Referral Bonus $:
Potential for Telework:No
Clearance Level Required:Public Trust
Travel:Yes, 10% of the time
Scheduled Weekly Hours:40
Job Family:Business Systems Analysis
Leidos is a Fortune 500® information technology, engineering, and science solutions and services leader working to solve the world’s toughest challenges in the defense, intelligence, homeland security, civil, and health markets. The company’s 40,000 employees support vital missions for government and commercial customers. Headquartered in Reston, Virginia, Leidos reported annual revenues of approximately $12.30 billion for the fiscal year ended January 1, 2021. For more information, visit www.Leidos.com.
Pay and Benefits
Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available here.
Securing Your Data
Leidos will never ask you to provide payment-related information at any part of the employment application process. And Leidos will communicate with you only through emails that are sent from a Leidos.com email address. If you receive an email purporting to be from Leidos that asks for payment-related information or any other personal information, please report the email to [email protected].
Commitment to Diversity
All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.