Job Requirements
Remote
Public Trust Polygraph Unspecified
Career Level not specified
$87,100 - $157,450
Job Description
R-00183445
Description
The Security Specialist-_Mid supports the SEC ISS contract by helping maintain a secure and compliant IT infrastructure through disciplined POAM and vulnerability management. This role identifies, tracks, and assists with remediation of security vulnerabilities across infrastructure systems. The position supports risk management activities, including documentation, reporting, and audit remediation support required to sustain operational authorization and security posture. The specialist also coordinates with technical teams to plan mitigation actions, drive POAM closure, and reduce recurring security risk.
PRIMARY RESPONSIBILITIES POAM Development and Management - Support development, implementation, and management of POAMs for IT infrastructure security findings. - Track POAM milestones, ownership, due dates, and dependencies; escalate risks to closure timelines. - Validate remediation evidence and update POAM records to reflect status and completion. - Maintain accurate POAM reporting to support contract deliverables and SEC oversight. Vulnerability Identification and Remediation Support - Review vulnerability findings and assist with severity/impact assessment and prioritization. - Coordinate with infrastructure and operations teams to implement timely remediation actions. - Assist in resolving vulnerabilities through patching, configuration correction, and compensating controls. - Help monitor open vulnerabilities and promote proactive measures to reduce reintroduction of findings. Risk, Compliance, and Audit Readiness - Support security risk and compliance activities for ISS-supported systems. - Assist with security documentation aligned to SOPs, change control, and system baselines. - Provide support for audit remediation activities, including internal reviews and external oversight audits. - Help align vulnerability remediation efforts with federal and agency security policy expectations. Reporting and Stakeholder Coordination - Prepare recurring status updates on vulnerability trends, POAM health, and mitigation progress. - Record remediation actions and supporting evidence in approved workflows. - Coordinate with cross-functional teams to resolve blockers affecting remediation timelines. - Support surge and incident follow-up activities only as directed by contract tasking.
REQUIRED QUALIFICATIONS Citizenship/Work Authorization: Must meet contract requirements. Clearance: Ability to obtain and maintain SEC Public Trust (or higher if required). Education: Bachelors degree in a relevant field (e.g., Information Technology, Cybersecurity, Computer Science, Engineering). Experience: 4-8 years of experience identifying and resolving IT security vulnerabilities. Additional experience may be considered in lieu of a degree.
Preferred Qualifications
Experience supporting federal civilian IT environments and contract-based service delivery.
Experience owning NIST RMF/FISMA security assessment or audit artifact packages.
Experience using ServiceNow security workflows for vulnerability and POAM tracking/reporting.
If you're looking for comfort, keep scrolling. At Leidos, we outthink, outbuild, and outpace the status quo — because the mission demands it. We're not hiring followers. We're recruiting the ones who disrupt, provoke, and refuse to fail. Step 10 is ancient history. We're already at step 30 — and moving faster than anyone else dares.
Original Posting: May 15, 2026
For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.
Pay Range: Pay Range $87,100.00 - $157,450.00
The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
About Leidos
Leidos is an industry and technology leader serving government and commercial customers with smarter, more efficient digital and mission innovations. Headquartered in Reston, Virginia, with 47,000 global employees, Leidos reported annual revenues of approximately $16.7 billion for the fiscal year ended January 3, 2025. For more information, visit www.Leidos.com .
Pay and Benefits
Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available at www.leidos.com/careers/pay-benefits .
Securing Your Data
Beware of fake employment opportunities using Leidos’ name. Leidos will never ask you to provide payment-related information during any part of the employment application process (i.e., ask you for money), nor will Leidos ever advance money as part of the hiring process (i.e., send you a check or money order before doing any work). Further, Leidos will only communicate with you through emails that are generated by the Leidos.com automated system – never from free commercial services (e.g., Gmail, Yahoo, Hotmail) or via WhatsApp, Telegram, etc. If you received an email purporting to be from Leidos that asks for payment-related information or any other personal information (e.g., about you or your previous employer), and you are concerned about its legitimacy, please make us aware immediately by emailing us at LeidosCareersFraud@leidos.com .
If you believe you are the victim of a scam, contact your local law enforcement and report the incident to the U.S. Federal Trade Commission .
Commitment to Non-Discrimination
All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.
#Remote
Description
The Security Specialist-_Mid supports the SEC ISS contract by helping maintain a secure and compliant IT infrastructure through disciplined POAM and vulnerability management. This role identifies, tracks, and assists with remediation of security vulnerabilities across infrastructure systems. The position supports risk management activities, including documentation, reporting, and audit remediation support required to sustain operational authorization and security posture. The specialist also coordinates with technical teams to plan mitigation actions, drive POAM closure, and reduce recurring security risk.
PRIMARY RESPONSIBILITIES POAM Development and Management - Support development, implementation, and management of POAMs for IT infrastructure security findings. - Track POAM milestones, ownership, due dates, and dependencies; escalate risks to closure timelines. - Validate remediation evidence and update POAM records to reflect status and completion. - Maintain accurate POAM reporting to support contract deliverables and SEC oversight. Vulnerability Identification and Remediation Support - Review vulnerability findings and assist with severity/impact assessment and prioritization. - Coordinate with infrastructure and operations teams to implement timely remediation actions. - Assist in resolving vulnerabilities through patching, configuration correction, and compensating controls. - Help monitor open vulnerabilities and promote proactive measures to reduce reintroduction of findings. Risk, Compliance, and Audit Readiness - Support security risk and compliance activities for ISS-supported systems. - Assist with security documentation aligned to SOPs, change control, and system baselines. - Provide support for audit remediation activities, including internal reviews and external oversight audits. - Help align vulnerability remediation efforts with federal and agency security policy expectations. Reporting and Stakeholder Coordination - Prepare recurring status updates on vulnerability trends, POAM health, and mitigation progress. - Record remediation actions and supporting evidence in approved workflows. - Coordinate with cross-functional teams to resolve blockers affecting remediation timelines. - Support surge and incident follow-up activities only as directed by contract tasking.
REQUIRED QUALIFICATIONS Citizenship/Work Authorization: Must meet contract requirements. Clearance: Ability to obtain and maintain SEC Public Trust (or higher if required). Education: Bachelors degree in a relevant field (e.g., Information Technology, Cybersecurity, Computer Science, Engineering). Experience: 4-8 years of experience identifying and resolving IT security vulnerabilities. Additional experience may be considered in lieu of a degree.
- Experience supporting development, implementation, and management of POAMs for IT infrastructure systems.
- Experience planning and coordinating mitigation of POAM findings in enterprise IT environments. Technical Skills:
- IT vulnerability identification, analysis, tracking, and remediation support. POAM lifecycle support, milestone tracking, and closure documentation. - Mitigation planning for POAM findings affecting IT infrastructure systems.
- Security documentation and status reporting for vulnerability and POAM remediation activities.
Preferred Qualifications
Experience supporting federal civilian IT environments and contract-based service delivery.
Experience owning NIST RMF/FISMA security assessment or audit artifact packages.
Experience using ServiceNow security workflows for vulnerability and POAM tracking/reporting.
- Strong written communication for remediation status, milestone tracking, and closure evidence. - Professional security certification such as Security+, CySA+, CISM, or CISSP. - Certifications (preferred): CompTIA Security+, ISC2 CISSP, ISACA CISM. WORK ENVIRONMENT / OTHER Operational Support: May require participation in on-call, surge, or incident follow-up support as directed by contract tasking. Location: Telework Travel: As required per contract direction.
If you're looking for comfort, keep scrolling. At Leidos, we outthink, outbuild, and outpace the status quo — because the mission demands it. We're not hiring followers. We're recruiting the ones who disrupt, provoke, and refuse to fail. Step 10 is ancient history. We're already at step 30 — and moving faster than anyone else dares.
Original Posting: May 15, 2026
For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.
Pay Range: Pay Range $87,100.00 - $157,450.00
The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
About Leidos
Leidos is an industry and technology leader serving government and commercial customers with smarter, more efficient digital and mission innovations. Headquartered in Reston, Virginia, with 47,000 global employees, Leidos reported annual revenues of approximately $16.7 billion for the fiscal year ended January 3, 2025. For more information, visit www.Leidos.com .
Pay and Benefits
Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available at www.leidos.com/careers/pay-benefits .
Securing Your Data
Beware of fake employment opportunities using Leidos’ name. Leidos will never ask you to provide payment-related information during any part of the employment application process (i.e., ask you for money), nor will Leidos ever advance money as part of the hiring process (i.e., send you a check or money order before doing any work). Further, Leidos will only communicate with you through emails that are generated by the Leidos.com automated system – never from free commercial services (e.g., Gmail, Yahoo, Hotmail) or via WhatsApp, Telegram, etc. If you received an email purporting to be from Leidos that asks for payment-related information or any other personal information (e.g., about you or your previous employer), and you are concerned about its legitimacy, please make us aware immediately by emailing us at LeidosCareersFraud@leidos.com .
If you believe you are the victim of a scam, contact your local law enforcement and report the incident to the U.S. Federal Trade Commission .
Commitment to Non-Discrimination
All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.
#Remote
group id: SCNCAPI2
Introducing the Next Level of Leidos
