ISSO CTO

About the Role

The Department of Homeland Security (DHS), Customs and Border Protection (CBP) Security Operations Center (SOC) is responsible for preventing, identifying, containing, and eradicating cyber threats to CBP networks. Leidos is seeking an Information System Security Officer (ISSO) Chief Technology Officer (CTO) who will provide cybersecurity oversight and secure modernization of infrastructure and applications.

• Provide cybersecurity oversight for major CBP applications and general support systems.
• Apply ISSO expertise across hybrid enterprise environments, including AWS, Azure, Google Cloud Platform, containerized workloads, and virtualized infrastructure.
• Integrate AI/ML‑driven security tools (threat detection, anomaly detection, behavioral analytics, predictive risk modeling) into security operations and compliance frameworks.
• Develop, draft, review, and endorse all information systems security plans and authorization artifacts, including Standards for Security Categorization (FIPS 199), E-Authentication Determination, Privacy Threshold Analysis, Privacy Impact Assessment, Risk Assessment Plan, System Security Plan (SSP), Configuration Management Plan, Contingency Plan and testing, Section 508 plan, POA&Ms, waivers, and risk acceptance requests.
• Ensure systems are operated, maintained, and disposed of in accordance with NIST SP 800‑37, DHS 4300A Policy, CBP Information Systems Security Policies and Procedures Handbook.
• Provide system security documentation via the DHS FISMA system management tool and maintain authorization under the DHS Ongoing Authorization (OA) Program.
• Assist the Government with reporting, managing security violations, incidents, vulnerability scanning, patch management, and flaw remediation.
• Develop cyber security SOPs, playbooks, work instructions, and other procedures to mature SOC capabilities, including cloud security architectures and AI‑enabled systems.
• Ensure cloud‑based systems and AI applications align with Zero Trust principles and CBP policy.
• Lead technical security evaluations of threats, vulnerabilities, and risks specific to cloud workloads and AI‑driven technologies.
• Support the development of cybersecurity SOPs, playbooks, and AI/automation‑enhanced workflows for the SOC.

• Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or related discipline (Master’s preferred).
• 12+ years of IT/cybersecurity experience (or 6+ years with a Master’s).
• 5+ years as an ISSO supporting major federal information systems/applications.
• Strong systems engineering foundation with proven cloud computing expertise (AWS, Azure, GCP, or equivalent).
• Hands‑on experience with AI/ML tools for cybersecurity such as anomaly detection, automated risk scoring, or AI‑driven SOC platforms.
• Working knowledge of auditing security controls, risk management, and compliance reporting.
• Superior writing, communication, and critical analysis skills.
• Deep understanding of Information Assurance, Information Management, and the NIST Risk Management Framework (RMF).

• ISC² Certified Information Systems Security Professional (CISSP)
• ISC² Certified in Governance, Risk and Compliance (CGRC)
• ISACA Certified Information Security Manager (CISM)
• CompTIA Certified Advanced Security Practitioner (CASP+)
• Cloud certifications (AWS Certified Security, Azure Security Engineer Associate, Google Professional Cloud Security Engineer).
• Experience designing/assessing AI governance frameworks, bias/risk mitigation, and secure AI model deployment.

• All CBP SOC employees must complete a CBP Background Investigation.

$ – $ (general guideline; final compensation depends on responsibilities, education, experience, skills, and internal equity).

All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, disability, medical condition, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity, veteran status, or any other basis prohibited by law. Qualified applicants with criminal histories consistent with relevant laws may also be considered.