JOB DESCRIPTION:

Leidos is seeking a Cybersecurity Compliance and Governance Intern.

Leidos has an immediate opportunity for a corporate level Cybersecurity Compliance and Governance (CC&G) Intern. As a CC&G intern, you’ll be able to advance your technical skills and knowledge and understanding of cybersecurity compliance and governance by using risk frameworks, as well as best practices, policies, and procedures. You’ll also develop a long list of career building benefits, including professional development, organizational skills, critical thinking and task management. The successful candidate will work collaboratively with an outstanding Cybersecurity Compliance and Governance team.

A successful CC&G intern will provide compliance guidance, process improvement, reporting and metrics at the enterprise level. In addition, the CC&G intern will facilitate the involvement of cross-functional teams, surfacing concerns and building improvements to our compliance strategies across all lines of business and global locations. A successful CC&G intern will work closely with the Senior Compliance Principal and other Governance, Risk Management, and Compliance staff to oversee the development and advancement of our CC&G program.

PRIMARY RESPONSIBILITIES:

• Rotate through team functions to gain experience CIS-Compliance and Governance services.

• Implement and administer the Leidos Compliance Management program for continual compliance of internal and external regulations, policies, and laws.

• Audit and assess compliance and governance of information security processes for specific business units, functions or services. evaluate the organization's cybersecurity risk management program.

• Monitor emergent changes in regulatory and security compliance and determine the impact of those changes on Information Technology functional processes.

• Define and communicate CC&G priorities.

• Facilitate the remediation of the Information Technology control deficiencies, including communication with essential levels of leadership, validate remediation activities and monitoring the progress of remediation efforts.

• Facilitate cross-organizational council meetings and lead the activities of compliance stewards across the enterprise.

• Develop and deliver Compliance Management program educational, awareness, and mentoring materials.

• Establish, maintain, and review Compliance Management policies, standards, guidelines, and procedures. Assure alignment with Company policies to meet the Company’s regulatory and operational obligations.

• Define Compliance Management metrics for periodic release; conduct assessments to ensure that policies, procedures and metrics are in place for maintaining/improving the program.

• Help develop, maintain, evaluate and implement policies and procedures in line with both business requirements and national and international legislative changes.

• Work with Line of Business, Cybersecurity and Information Technology personnel to ensure awareness and alignment of ongoing industry and best practice compliance obligations.

BASIC QUALIFICATIONS:

• Actively pursuing a Bachelor's or Master's degree in Cyber, IT, or related field.

• Strong interpersonal and communication skills to foster collaboration on resolution of compliance issues; ability to build strong partnerships and relationships with representatives of various organizational entities.

• Familiarity or preparedness to learn about auditing compliance of information security topolicies and procedures .

• Familiarity or preparedness to learn about security governance principles, compliance, legal and regulatory issues, and regulatory acts. For example, cybersecurity laws and regulations in both the U.S. and abroad impacting data protection and the confidentiality, integrity and availability of systems and data, including DFARS 252.204-7012, Cybersecurity Maturity Model Certification (CMMC), NIST Cybersecurity Framework (CSF), NIST Special Publication 800-171, NIST SP 800-53, ISO 27001, and General Data Protection Regulation (GDPR).

• Familiarity or preparedness to learn about system security plans, contingency plans, incident response plans, configuration management plans, security control requirements and assessments, Plan of Action, and Milestones (POA&M), and training requirements consistent with frameworks including NIST.

• Familiarity or preparedness to learn how to assess whether security safeguards employed by organizations are implemented correctly, are operating as intended, and satisfy the security requirements.

• Performs other duties as assigned.

• Ability to obtain DoD security clearance.

• U.S. Citizenship is required.

PREFERRED QUALIFICATIONS:

• 3.0 GPA.

• Knowledge and experience with DFARS 252.204-7012, Cybersecurity Maturity Model Certification (CMMC), NIST Cybersecurity Framework (CSF), and NIST Special Publication 800-171r2.

PAY RANGE:

• $44,200.00 - $68,000.00 - $91,800.00

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.

One company, four key markets Our key lines of business — civil, defense, health, and intelligence — are rife with opportunity. With the Leidos Innovations Center (LInC) as the technology-driven core of our business we continue our tradition of solving the toughest scientific and engineering problems for customers. An expanded workforce and capabilities portfolio enables us to compete internationally and provide increased efficiency and affordability to customers. As we grow, we'll maintain our agile and creative reputation.