To our valued Leidos candidates:

Coronavirus is on everyone's mind with the effects being felt around the world. The markets are volatile, and we're all concerned for the health and safety of our families, friends, and colleagues. Please know that we're taking all necessary measures to safeguard our employees, customers and the communities in which we live, including following all recommended best practices around social distancing.

With that in mind, in an abundance of caution, we are canceling all face to face career events, such as job fairs and open house events. In the coming days and weeks, we will be hosting career events virtually, using our online chat tools so that we may continue our hiring practice safely and securely. You can find available virtual career events at

We are using telephone meetings and online chats via Brazen to conduct interviews and hiring discussions, and we are offering options for video interviews so that you can have a virtual face to face meeting with your potential new leader. We do not conduct interviews or extend offers via text or chat based social media, such as WhatsApp or MySpace.

Leidos will never ask you to provide payment-related information at any part of the employment application process, nor will Leidos ever advance money as part of the hiring process. And Leidos will communicate with you only through emails that are generated by automated system. If you receive an email purporting to be from Leidos that asks for payment-related information or any other personal information, please report the email to Chris Scalia, Leidos’ Senior Vice President of Talent Acquisition, at [email protected].

As a company, as a country, as a world, we have confronted challenging moments before. We are confident that, guided by our values and the strength of our community as well as the commitment we have to the important work we do each day, we will find our way through this time together. We will do this with the care and concern for one another and the common good that defines. Please keep those impacted by the virus in your thoughts.

Close Window
Join our talent network

Job #: R-00071578
Location: Suitland, MD
Category: Information Assurance
Schedule (FT/PT): Full Time
Travel Required: Yes, 10% of the time
Shift: Day
Potential for Telework: No
Clearance: Top Secret/SCI
Referral Eligibility: Eligible
Referral Bonus Amount: $5,000
Group: Defense

This job posting is no longer active.

Share: mail twitter linkedin


Job Description:

Leidos is hiring a SCI SCA Rep A&A Specialist (Level 3). All work will be performed onsite at the National Maritime Intelligence Center in Suitland, MD. An active TS/SCI clearance is required to be considered for this role.

The Hopper Information Services Center (ISC) is an IT service provider for the Office of Naval Intelligence (ONI) and for 70+ Navy Intelligence Community (IC) ashore organizations across the globe with mission to deploy and operate classified information systems, networks, communications systems, and cybersecurity capabilities.  Within Hopper ISC, the Cybersecurity Department  is comprised of four divisions (Defensive Cybersecurity Operations, Cybersecurity Mission Operations, Assessment & Validation , and Cybersecurity Engineering), and these divisions collectively secure, protect, assess, and monitor fielded Information Technology (IT) capabilities against a full range of internal and external threats. 

Candidate will provide operations, engineering, technical and program management support services and associated supplies to support the cyber related requirements and operations and will routinely work independently to achieve critical mission objectives necessary to continue smooth operations for Hopper, and other internal and external agencies. Routinely will collaborate with different internal and external customers and other experts to develop technical solutions to problems that are complex and not always immediately identifiable in order to timely meet mission objectives.

The Security Controls Assessment (SCA) division executes cybersecurity IT assessments and provides professional SME in the area of cybersecurity assessment for Navy Intelligence funded systems and networks in accordance with Federal, DoD, and IC information security standards to include compliance with NIST SP 800-53 controls.  The division is responsible for conducting system assessments and validations in accordance with the Naval Intelligence (NAVINTEL) AO/DAO guidance and in accordance with the Fleet Cyber Comma nd (FLTCYBERCOM) Navy Authorizing Official (NAO) guidance for Sensitive Compartmented Information (SCI) systems and Collateral systems (SIPRNet and NIPRNet) respectively.  Additionally, provides recommendations on Cybersecurity program deficiencies and shortfalls as they relate to policy directives, program and procedures, and develops assessment and validation strategies for all Navy Intelligence stakeholders.

Candidate will be recognized subject matter expert and will have a thorough understanding of advanced technical principles, theories, and concepts in Security Controls Assessment. Will be relied upon to influence development of solutions that impact mission goals and objectives. Will be expected to work independently and resolves highly complex problems using significant application of technical knowledge, conceptualizing, reasoning and interpretation of facts and requirements.

Primary Responsibilities

- Support the Security Controls Assessment (SCA) of complex IT requirements and security assessment of operational, management, and technical controls for information systems within the Navy Intelligence operational environment and in accordance with Navy Risk Management Framework (RMF) guidance, NIST SP 800-37, and NIST SP 800-53.

- Execute SCA activities such as Laboratory Security Assessments, Operational Security Assessments, Cross Domain Solutions [CDS] assessments, Baseline Change Request assessments, Interim Authority to Test (IATT) assessments, documentation reviews, etc. and shall provide accurate and comprehensive security assessment results and risk posture.  This information shall be provided in the form of a Security Assessment Report (SAR) via classified communication channels or other format as directed by government.

- Perform Cybersecurity related research and risk assessments for new technologies that are proposed for use within the Navy Intelligence operational environment and shall provide best practice methods for accomplishing assessments using automated tools that comply with Security Content Automation Protocol (SCAP). The format of the research, results, and recommendations is determined by management and may take the form of a briefing, presentation, white paper, or memorandum-type correspondence.

- Maintain in-depth knowledge and employ DISA Security Technical Implementation Guidance (STIG), STIG technologies such as Tenable Nessus, STIG Viewer, Security Requirements Guides (SRG), Security Content Checker (SCC), STIG benchmarks, open-source tools such as Vulnerator, and other automated tools to assist with the assessment of security controls and the presentation of security assessment results.

- Develop test procedures for security controls, processes, training materials, and assessment documentation in accordance with DoD and IC cybersecurity policies, directives, and instructions with minimal to no re-work.

- Provide support functions of the NAVINTEL Customer Support Desk (CSD) such as: Provide RMF knowledge in response to customer inquiries in a timely manner; Submit, update, track, and close-out RMF incident tickets within the helpdesk ticketing system; Collaborate with Regional ISSMs (RISSM) on a weekly basis and maintain RMF information in the Navy’s Systems of Record; Perform high-level quality check and completeness check of RMF workflow steps (6-steps) in Xacta as directed by government; Prepare, draft, and format authorization letters, Plan of Action and Milestones (POA&M), and other Authorizing Official (AO) guidance on behalf of the AO; Monitor official command message traffic using the ONI M3 messaging system and take action accordingly in response to Interim Authority to Test (IATT) requests, Baseline Change Requests, Trusted Agent requests, Authorization and Re-authorization requests; Develop cybersecurity dashboards, compile metrics, and use databases and tools in order to provide situational awareness of cybersecurity health status; Update information web portal with RMF information using Content Management System.

Basic Qualifications

- Active TS/SCI Clearance

- BA/BS in IT, IA or related field and 12+ years of related experience with lCD-503, and/or NIST Framework; additional experience may be considered in lieu of degree

- 3 Years of project management experience.

- Must adhere to the DOD Information Assurance Workforce Improvement Program requirements, DOD 8570.01-M

- Must have one of the following: CAP, GIAC, GSLC, CISM, CISSP or CASP.

- Experience with DoD, DISA, Navy Network Warfare Command

(NNWC), DoDIIS, and IC tools, systems, and reporting mechanisms and requirements for A&A. Experience and education in information assurance, e.g., accreditation, security testing and evaluation. Knowledge of the DoD, IC, and national level system security initiatives and secure Information/LAN/WAN technologies.

- Experience establishing and managing high performing A&A teams, including adapting industry, DOD, and IC standards to create ISC "best practices".

- Experience in interpersonal and customer relations expertise and teambuilding

Pay Range:

COVID Response

In order to enter Leidos facilities in the U.S. and to attend Leidos events outside our facilities, employees are required to be vaccinated for COVID-19 or maintain proof of a negative COVID-19 test within 96 hours of entry. In addition, we are receiving guidance from certain customers that onsite contractor personnel will need to be fully vaccinated to access customer facilities. If you are not vaccinated, please consider getting your COVID-19 vaccination as soon as possible. If you have any questions, please contact your Talent Acquisition POC. 

About Leidos

Leidos is a Fortune 500® information technology, engineering, and science solutions and services leader working to solve the world’s toughest challenges in the defense, intelligence, civil, and health markets. The company’s 43,000 employees support vital missions for government and commercial customers. Headquartered in Reston, Virginia, Leidos reported annual revenues of approximately $12.30 billion for the fiscal year ended January 1, 2021.  For more information, visit

Pay and Benefits

Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available here.

Securing Your Data

Leidos will never ask you to provide payment-related information at any part of the employment application process. And Leidos will communicate with you only through emails that are sent from a email address. If you receive an email purporting to be from Leidos that asks for payment-related information or any other personal information, please report the email to [email protected].

Commitment to Diversity

All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.

This job posting is no longer active.

Talent Community

Join our Talent Community to create a profile, enabling a streamlined application process and to help our recruiters better understand your areas of expertise and interest.

Join our Talent Community