Leidos is seeking a Cybersecurity Contingency/Disaster Recovery Planning Analyst in Reston, VA.
The CIO Services Contingency Planning/Disaster Recovery Planning (CP/DRP) Analyst will work with the CIO Services leadership and functional teams in designing, developing and deploying security related systems as it relates to the BC/DRP as well as activities that DR capabilities will meet the Recovery Time Objectives (RTO) and Recovery Point Objectives (RPO). The program is meant to handle all aspects of a DR program, from ensuring backup and off-site strategies adequately protect the company to implementation of leading-edge capabilities such as data replication, cloud, and geo-redundant failover.
The Analyst will specify security requirements and countermeasures to provide technical support working within the Contingency Planning/Disaster Recovery Planning (CP/DRP) team and facilitating CP/DRP information assurance oversight duties such as (but not limited to) tabletop exercises to functionally test the systems against documented RTO and RPOs. This role is also responsible for management of information security policies, training and educating end-users on proper security practices, conducting security and CP/DRP assessments using cybersecurity frameworks (e.g., NIST, RMF, Common Criteria, etc.), mitigating risk via CP/DRP related security controls, testing and evaluation to support certification and accreditation of Leidos facilities, Business Protected Environments (BPE) and systems. This role may also review and recommend commercial security products, ensuring privacy of data throughout the CP/DRP life-cycle, business continuity and disaster recovery. Candidates are primarily engaged in the technical or scientific disciplines through the course of college study.
•Work with the CP/DRP team and other key stakeholders to increase the maturity level of the Disaster Recovery program for the Leidos enterprise.
•Designing, developing and deploying security related systems as it relates to the BC/DRP as well as activities that DR capabilities will meet the Recovery Time Objectives (RTO) and Recovery Point Objectives (RPO).
•Specify security requirements and countermeasures to provide technical support working within the Contingency Planning/Disaster Recovery Planning (CP/DRP) team and facilitating CP/DRP information assurance oversight duties such as (but not limited to) tabletop exercises to functionally test the systems against documented RTO and RPOs.
•Integration of disaster recovery and business continuity for efficient and effective recovery following an interruption in service caused by a prolonged system outage or declared disaster.
•Collaborate with Business Units and Service Line teams to identify and recommend mitigation efforts, business continuity recovery strategies and necessary resources to execute continuity procedures. Ensure that resources, dependencies, risks and constraints are aggressively managed in a timely fashion.
•Collect and organize information about current systems to create an inventory of systems and application, with hardware, software, and network requirements, as well as inter-system dependencies clearly identified for DR purposes.
•Coordinate the implementation and reporting of recovery infrastructure and processes.
•Conduct DR operation review meetings with delivery and business key stakeholders.
•Ensuring that IT support applications, where appropriate, have a fully documented, and executable recovery plans that contains all of the required information, reflects current conditions from an IT infrastructure recovery standpoint, and is able to support the recovery objectives of the organization.
•Coordinates and manages actual scenario-driven DR exercises as well as table-top or simulated exercises with both business and technical staff.
•Actively manage and coordinate testing schedules, objectives, exercises, and post mortem reviews.
•Manage scope, identify and track milestones and budget across program and projects to ensure completion of program/project goals.
•Develop and provide direction and guidance to teams in developing appropriately structured and detailed program/project plans.
•Recent BS Degree in Computer Science, Cybersecurity, Information Assurance, Business Administration, or equivalent education with a minimum 3.0 GPA.
•Ability to plan and organize tasks independently
•Exercise sound operational judgment
•Strong written and oral communication, organization, and interpersonal skills
•Ability to pose creative solutions to operational challenges
•Responsible, punctual, reliable, efficient, and flexible to changing priorities
•Ability to work in a fast-paced, intense environment smoothly
•Ability to elicit confidence and build positive rapport
•Quick learner, eager to further knowledge and skills
•Meticulous worker; attentive to quality and detail of work products
•Able and willing to work with co-workers, supervisors, and clients in a cooperative manner
•Committed to providing high quality work
•Sound judgement and business acumen to recommend new or modifications to existing controls, mitigations, or management processes to lower risks and increase organizational resiliency against the most likely and highest impact events
•Proficient in Microsoft Word, Excel, PowerPoint, and Visio
•Novice level expertise of the cyber security domain to include; governance and risk management, compliance, business continuity and disaster recovery, encryption, software development security, access control, network security / secure architecture, and security operations
•Understanding of National Institute of Standards in Technology (NIST) Cybersecurity Framework, NIST special publications (SP) including, but not limited to, NIST SP 800-171, 800-53 current revision, and corresponding control families
with a minimum 3.0 GPA.
•U.S. Citizenship is required.
•In depth understanding of data center configuration management to include network and system components.
•Background and understanding of Cloud infrastructure and application services.
•Understanding of IT Systems Project Life Cycle methodologies.
•Currently studying governance, risk, and policy or have a strong desire to learn these security disciplines.
•Knowledge of securing network technologies, client, and server operating systems.
•Understanding of different threat actors such as the Advanced Persistent Threat and the threat landscape
•Desired soft skills
•Analytical mind with creative problem-solving ability
•Ability to handle multiple tasks
•Curious and agile learner
•Desire to learn how things work
•Early adopter of new technology
•Ability to clearly and concisely summarize information
External Referral Bonus:Ineligible
External Referral Bonus $:
Potential for Telework:No
Clearance Level Required:None
Scheduled Weekly Hours:40
Job Family:Information Assurance
Please note that effective October 1, to enter Leidos facilities in the U.S. and to attend Leidos business events outside of our facilities, employees, vendors, subcontractors, and visitors will be required to be vaccinated or maintain proof of a weekly negative COVID-19 test. In addition, we are receiving guidance from certain customers that onsite contractor personnel will need to be fully vaccinated or able to show negative COVID-19 test results to access facilities. If you are not vaccinated, please consider getting your COVID-19 vaccination as soon as possible.
Leidos is a Fortune 500® information technology, engineering, and science solutions and services leader working to solve the world’s toughest challenges in the defense, intelligence, civil, and health markets. The company’s 43,000 employees support vital missions for government and commercial customers. Headquartered in Reston, Virginia, Leidos reported annual revenues of approximately $12.30 billion for the fiscal year ended January 1, 2021. For more information, visit www.Leidos.com.
Pay and Benefits
Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available here.
Securing Your Data
Leidos will never ask you to provide payment-related information at any part of the employment application process. And Leidos will communicate with you only through emails that are sent from a Leidos.com email address. If you receive an email purporting to be from Leidos that asks for payment-related information or any other personal information, please report the email to [email protected].
Commitment to Diversity
All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.