DESCRIPTION

Leidos is seeking a Cybersecurity Compliance Audit Intern Reston VA.

A successful CC&G intern will have familiarity or be prepared to learn about security governance principles, compliance, and regulatory acts. For example, cybersecurity laws and regulations in both the U.S. and abroad impacting data protection and the confidentiality, integrity and availability of systems and data, including DFARS 252.204-7012, Cybersecurity Maturity Model Certification (CMMC), NIST Cybersecurity Framework (CSF), NIST Special Publication 800-171, NIST SP 800-53, ISO 27001, and General Data Protection Regulation (GDPR).

The CC&G intern will audit information systems, controls and practices, flag potential gaps or weaknesses and recommend solutions.

PRIMARY RESPONSIBILITIES:

• Audit and assess compliance and governance of information security processes for specific business units, functions or services. evaluate the organization's cybersecurity risk management program.

• Rotate through team functions to gain experience CIS-Compliance and Governance services.

• Implement and administer the Leidos Compliance Management program for continual compliance of internal and external regulations, policies, and laws.

• Monitor emergent changes in regulatory and security compliance and determine the impact of those changes on Information Technology functional processes.

• Facilitate the remediation of the Information Technology control deficiencies, including communication with essential levels of leadership, validate remediation activities and monitoring the progress of remediation efforts.

BASIC QUALIFICATIONS:

• Actively pursuing a Bachelor’s degree in Cybersecurity or related field from an accredited college/university.

• Strong interpersonal and communication skills to foster collaboration on resolution of compliance issues; ability to build strong partnerships and relationships with representatives of various organizational entities.

• US Citizenship and able to obtain security clearance.

• Familiarity or preparedness to learn about auditing compliance of information security to policies and procedures .

• Familiarity or preparedness to learn about security governance principles, compliance, legal and regulatory issues, and regulatory acts.

• Familiarity or preparedness to learn about system security plans, contingency plans, incident response plans, configuration management plans, security control requirements and assessments, Plan of Action, and Milestones (POA&M), and training requirements consistent with frameworks including NIST.

• Familiarity or preparedness to learn how to assess whether security safeguards employed by organizations are implemented correctly, are operating as intended, and satisfy the security requirements.

• Performs other duties as assigned.

• U.S. Citizenship is required.

PREFERRED QUALIFICATIONS:

• 3.0 GPA

• Knowledge and experience with DFARS 252.204-7012, Cybersecurity Maturity Model Certification (CMMC), NIST Cybersecurity Framework (CSF), and NIST Special Publication 800-171r2.

PAY RANGE:

• $36,400.00 - $56,000.00 - $75,600.00

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.

One company, four key markets Our key lines of business — civil, defense, health, and intelligence — are rife with opportunity. With the Leidos Innovations Center (LInC) as the technology-driven core of our business we continue our tradition of solving the toughest scientific and engineering problems for customers. An expanded workforce and capabilities portfolio enables us to compete internationally and provide increased efficiency and affordability to customers. As we grow, we'll maintain our agile and creative reputation.