Skip to main content
Leidos
Search
  • Global
  • Employees
  • News
  • Investors
  • Contact
  • Company
    • Our Business

      We embrace and solve some of the world's toughest challenges.

      • Civil
      • Defense
      • Health
      • Intelligence
      • Dynetics
      • Leidos Innovations Center (LInC)
      IT analysts in discussion over monitors

      Leidos completes acquisition of 1901 Group, expanding digital modernization capabilities.

      Read Press Release

    • Mission, Vision and Values

      Everything we do is built on a commitment to do the right thing for our customers, our people, and our community.

      • Mission
      • Vision
      • Values
      man sitting on bleachers holding soccer ball

      Let’s come together and talk about the changes that are needed

      The Opioid Epidemic: A Call to Action

    • Leadership

      Meet the executive team responsible for leading our forward-thinking employees toward a shared success.

      • Roger Krone
      • James Reagan
      • Paul Engola
      • Roy Stevens
      • Steve Hull
      • Jerry Howe
      • Michele Brown
      • Jim Carlini
      • James Cantor
      • Kamal Dua
      • Jim Moos
      • Gerry Fasano
      • Vicki Schmanske
      • Liz Porter
      • David King
      • Board of Directors
      Roger Krone

      Meeting the challenges of an uncertain world

      An interview with CEO Roger Krone

    • History

      Leidos has a long history of innovative problem-solving and customer service, dating all the way back to 1969 when Dr. J. Robert Beyster founded his "crazy little company".

      • Explore our History
      • Dr. J. Robert Beyster
      • A Kaleidoscope of Innovation: The Story of Leidos
      Dr. Beyster

      Almost 50 years ago, visionary scientist J. Robert Beyster, Ph.D. founded the company that evolved into Leidos.

      Read More

    • Inclusion & Diversity

      Our commitment to inclusion and diversity is reflected in the way we engage our people, our customers, and our external partnerships through our innovative programs, sponsorships, and engagement.

      • CEO Letter
      • Our Commitment to Inclusion
      • An Inclusive Workforce
      • Operation MVP
      35th BEYA conference logo

      The 2021 class of awardees at the Black Engineer of the Year Awards (BEYA) is the largest in Leidos history with 37 employees to be honored.

      Breaking Records at 35th Annual BEYA Conference

    • Responsibility & Sustainability

      We're equally committed to using our time and resources to support people, enrich communities, and protect the environment.

      • CEO Message
      • Executive Summary
      • Community
      • Environment
      • People
      • Inclusion & Diversity
      • Political Activities
      • Suppliers and Small Business Relationships
      • About our Reporting
      • GRI™ Standards
      Leidos CEO Roger Krone

      Our response to COVID-19: A message to our valued customers, partners and colleagues

      Read Message

    • Ethics & Compliance

      We have a strong history of performance that rests on our foundation of integrity.

      • File a Report
      • History of Ethics
      • Ethics Program Structure
      • Code of Conduct
      World's Most Ethical Companies 2020 logo

      Leidos named one of the World’s Most Ethical Companies for third consecutive year

      Read More

    • Rankings & Awards

      Our innovative approach and the services and solutions we deliver frequently earn Leidos recognition from our industry and the media.

      • Enterprise Awards
      • Defense Awards
      • Civil Awards
      • Health Awards
      three award icons

      A frequent honoree on the corporate awards circuit, Leidos is proud of its many industry-specific and corporate-level achievements.

      Read More

    • Partners

      The Leidos Alliance Partner Network emphasizes connections through partnership and collaboration that drive innovation, advance technology and build efficiency.

      • Corporate Strategic Partners
      • Technology Integration Partners
      • Emerging Technology Partners
      D.C. United player Wayne Rooney with soccer ball mid-game with Leidos banner in background

      Leidos partnership with MLS club D.C. United takes the field again.

      Why we're in Black-and-Red's corner

    • Subsidiaries

      Our wholly-owned and majority-owned subsidiaries attract and retain top talent motivated to deliver results for clients.

      • 1901 Group
      • Dynetics, Inc.
      • Leidos Biomedical Research, Inc.
      • Leidos Digital Solutions
      • BEONTRA
      • QTC
      • Leidos Engineering, LLC
      • Systems Made Simple
      • Varec, Inc.
      IT analysts in conversation over monitors

      Leidos completes acquisition of 1901 Group, expanding digital modernization capabilities.

      Read Press Release

    • Contract Vehicles

      Whether you’re a potential government customer or a prospective supplier, through this listing you can find our technical and professional services under pre-negotiated terms and conditions.

      • Governmentwide MACs & IDIQs
      • GSA Schedules
      • Agency Specific IDIQs
      • International
    • Global

      With more than 400 locations in 30 countries, we continue to expand our presence and strengthen our international relationships.

      • United Kingdom & Europe
      • Australia
      • Israel
      • Middle East
      • Canada
      Graphic showing buildings connected by technology

      Meeting UK border management security needs, now and long into the future.

      More On Border Management

    • Trust

      Cybersecurity and data privacy is central to what we do; protecting data, systems, and infrastructure that are critical to our employees, customers, communities, and stakeholders.

      • Commitment to Privacy & Cybersecurity
      • Cybersecurity
      • Data Privacy
      • Privacy Statement
      Citizens walking with data flowing around them

      Today, tomorrow, and every day is Data Privacy Day

      Read the Article

  • Markets
    • Aviation

      Bringing efficiency and modernization to the global aviation market.

      • Air Traffic Management
      • ANSP Professional Services
      • Security Detection & Automation
      • Intelligent Approach
      • Scenario Planning & Forecasting
      • Passenger Flow Measurement
      • FODD & Fuels Management
      • Flight Management & Briefing
      Leidos Smartlane in use at an airport

      Safeguarding travel and trade at a global scale, Leidos completes acquisition of L3Harris Technologies’ Security Detection & Automation businesses.

      Learn About Our Portfolio

    • Defense

      Science for a safer world

      • Airborne
      • Autonomy & Autonomous Solutions
      • Command & Control
      • Cyber
      • Digital Modernization
      • Operations & Logistics
      • Training
      IT analysts in discussion over monitors

      Leidos completes acquisition of 1901 Group, expanding digital modernization capabilities.

      Read Press Release

    • Energy

      Trusted expertise for energy projects and programs

      • Site Management & Operations
      • Power Delivery
      • Integrated Energy Management
      • Project Finance & Development
      • Digital Utilities
      • Manufacturing Systems
      Seattle skyline

      Seattle City Light has been turning to Leidos for their utility industry experience and engineering talent.

      Read The Case Study

    • Government

      Collaborating with government agencies to help citizens thrive

      • Cybersecurity
      • Digital Modernization
      • Health IT
      • Forms Processing
      • Operations & Logistics
      • Mission Software Systems
      IT analysts in discussion over monitors

      Leidos completes acquisition of 1901 Group, expanding digital modernization capabilities.

      Read Press Release

    • Healthcare

      Building a healthy connection between technology and people

      • Hospital Systems
      • Federal Health
      • Military Health
      • Veteran Health
      Healthcare professional using tablet

      Taking a strategic approach to experience true digital transformation in healthcare

      Read White Paper

    • Homeland

      Integrating, applying, and advancing IT to tackle the ever-advancing challenges of protecting our borders.

      • Biometrics
      • Mission Cyber and Network Defense
      • Integrated Systems
      • Digital Modernization
      • Data Analytics
      • Intelligence & Linguistic Services
      • CBRN Defense
      • Human Capital Services
      • Complex Logistics
      Leidos Smartlane in use at an airport

      Safeguarding travel and trade at a global scale, Leidos completes acquisition of L3Harris Technologies’ Security Detection & Automation businesses.

      Learn About Our Portfolio

    • Intelligence

      Rapidly transforming vast and varied data into actionable intelligence

      • Intelligence Community Engineering
      • Collection, Analysis & Reporting
      • Operational Support & Training
      Analysts discussing geospatial data

      Delivering commercial innovations to mission realities for the NGA in St. Louis

      Learn more about digital modernization

    • Science

      Groundbreaking scientific research and environmental management best practices that make headways in the defense, civilian and health markets

      • Life Sciences
      • Autonomous Systems
      • Airborne & Ground ISR
      • Command and Control
      • Electronic Warfare
      • Environmental Science
      • Modeling, Simulation & Training
      • Sensors
      • Specialty Sciences
      Illustration representing health-focused scientific research

      NCI's Frederick National Laboratory has launched three initiatives focused on SARS-CoV-2.

      Read the Article

    • Space

      IT, engineering, and science expertise to execute on the most critical of exploration missions

      • NASA
      • Defense
      • Commercial
      Astronaut planting U.S. flag on the lunar surface

      Take an interactive tour of the Artemis mission and experience our human landing system in augmented reality.

      Learn More About Lunar, our Augmented Reality Experience

    • Surface Transportation

      Engineering and research in support of next generation transportation

      • Connected & Automated Vehicles
      • Human Factors Research
      • Analysis, Modeling & Simulation
      • Transportation Safety
      • Operations
      • Asset Management
      • Accelerated & e-Construction
      • Freight
      • Research Facility Management
      Semi-truck driving on highway

      End-to-end shipment visibility with TransVM

      View Fact Sheet

  • Capabilities
    • Cyber Operations

      We use intelligent automation and AI/ML-driven analytics, combined with detection and mitigation, to protect and defend the nation's largest and most attacked mission-critical networks.

      • Security Operations Center
      • Insider Threat
      • Cyber Analytics
      • Information Assurance
      • Risk Management Framework
      • Accredited Testing & Evaluation
      • EXCITE
      Security on a mission text overlaid on blue graphic

      Outpacing adversaries through the application of IT, engineering, and science.

      More on Securing What’s Important

    • Digital Modernization

      We deliver resilient IT solutions and managed services that leverage trusted AI and full-spectrum cyber to decrease vulnerabilities in complex IT operations.

      • User Engagement
      • Digital Workplace
      • Mobility
      • Cloud
      • Application Modernization
      • Data Center Modernization
      • SecDevOps
      • Network Modernization
      IT analysts in discussion over monitors

      Leidos completes acquisition of 1901 Group, expanding digital modernization capabilities.

      Read Press Release

    • Integrated Systems

      Delivering high-performing hardware and software systems to solve challenges in an array of specializations.

      • Autonomy & Autonomous Solutions
      • Biometrics
      • Command & Control
      • Security Detection & Automation
      • Sensors
      • SE Core
      • Tactical Data Links
      • Advanced Computing
      • Computational Fluid Dynamics
      • TRAPS
      Astronaut planting U.S. flag on the lunar surface

      Take an interactive tour of the Artemis mission and experience our human landing system in augmented reality.

      Learn More About Lunar, our Augmented Reality Experience

    • Mission Operations

      We leverage our in-depth domain knowledge and mission understanding to provide cost-effective tools and enhanced processes that are secure, resilient, and support our customer's critical missions.

      • Antarctic Support Contract
      • ISS Cargo Mission Contract
      • Logistic Commodities & Services Transformation Programme
      • Strategic National Stockpile
      • Defense Logistics Support
      Ice sheet in Antarctica

      Each year, Leidos moves more than six million pounds of cargo and coordinates 100 flight missions to and from Antarctica.

      About Our Role

    • Mission Software Systems

      Through disciplined processes, common tools, reusable frameworks, automation, collaboration, and domain expertise, our mission software systems are designed to deliver secure, mission quality software.

      • LEAF
      • OneSAF
      • Command & Control
      • Data Analytics
      • Healthcare Analytics
      Software on a mission text on blue background

      Mission quality software. Silicon Valley speed.

      More on Building Better Software

    • Enabling Technologies

      Our enabling technologies are the backbone of our core capabilities, supporting our customer's important work from the front lines.

      • Secure, Rapid Software
      • Trusted AI/ML
      • Full-Spectrum Cyber
      • Rapid Prototyping & Manufacturing
      Military radar simulation with green display, showing a glowing grid with coordinates and positioning numbers

      How we are deploying AI to solve the world’s toughest problems.

      Artificial Intelligence in Action

    • Technology Certifications

      Technology certifications with world-class providers.

      • AWS
      • Cisco
      • Microsoft
      • Scaled Agile
      • ServiceNow
      group of coworkers looking at computer monitor

      Helping our partners save money and improve performance.

      How the Cloud Saved Some Coin

  • Insights
    • Insights

      Expertise, industry leadership, unique perspectives, and more - directly from our employees and stakeholders.

      • Latest Insights
      • On A Mission
      • MindSET Podcast
      • Press Releases
      • Heroes of Leidos
      • Our Experts
      • Careers & Culture
      • Community
      • Articles
      • Case Studies
      • Infographics
      • Q&As
      Astronaut planting U.S. flag on the lunar surface

      Take an interactive tour of the Artemis mission and experience our human landing system in augmented reality.

      Learn More About Lunar, our Augmented Reality Experience

  • Careers
    • Latest Opportunities

      Keep up to date on the latest career opportunities at Leidos.

      • Military Veteran Program
      • External Referral Program
      • Intern & New Graduate Jobs
      • Careers with Leidos in the United Kingdom
      • Careers with Leidos in Australia
      • Opportunities for Leidos employees
      five coworkers sitting around a laptop

      Your most important work is still ahead. Explore opportunities at Leidos.

      View our Latest Opportunities

    • Life at Leidos

      A career at Leidos offers meaningful and engaging work, a collaborative culture, support for your career goals, while nurturing a healthy work-life balance.

      • Our Values
      • Our Culture
      • An Inclusive Workforce
      • Build a Career
      five coworkers sitting around a laptop

      Your most important work is still ahead. Explore opportunities at Leidos.

      View our Latest Opportunities

    • Pay & Benefits

      Pay and benefits are fundamental to any career decision, which is why our compensation packages reflect the importance of the work we do for our customers.

      • Compensation
      • Health & Wellness
      • Income Protection
      • Leave
      • Retirement
      • Family Benefits
      five coworkers sitting around a laptop

      Your most important work is still ahead. Explore opportunities at Leidos.

      View our Latest Opportunities

    • Frequently Asked Questions

      Find answers to the most commonly asked questions related to securing a role at Leidos.

      • Searching for a Role
      • Applying for a Job
      • Determining Application Status
      • System Access
      • Job Eligibility Requirements
      • Receiving Job Notifications
      • Our Talent Community
      • Career Insights
      five coworkers sitting around a laptop

      Your most important work is still ahead. Explore opportunities at Leidos.

      View our Latest Opportunities

  • Search Search
  • Company
  • Markets
  • Capabilities
  • Insights
  • Careers
Back to top

Breadcrumb

  1. Home
  2. Company
  3. Trust Center

Cybersecurity

Cyber analysts discussing data
  • Approach
  • Governance
  • Audit and Risk
  • Incident Response

Approach to Cybersecurity

The Leidos Board of Directors’ Technology & Information Security Committee, which meets at least quarterly, provides oversight of matters involving the Company’s overall strategic direction and associated exposure to, and management of, significant business risks in the areas of technology, information, and operational security. 

The Leidos Security Council is responsible for harmonizing effective security strategy, governance, command media, communications, and major initiatives across functional and line of business teams. 

Established in 2019, the team is co-chaired by the Chief Information Security Officer and the Chief Security Officer and is supported by voting representatives from the lines of business, Legal Department, Ethics and Compliance, Corporate Performance Excellence, Enterprise Risk Management, and Global Privacy Office. Nonvoting members include the Chief Audit Executive, Chief Technology Officer, and the Corporate Controller.

Leidos has also formed a Data Governance Steering Council, Data Classification Working Group, Records Retention Working Group, Cyber Regulatory Working Group and Data Privacy Working Group– all of which play a significant role in the continued maturation of Leidos’ global cybersecurity, data protection and privacy strategy.

Commitment to Industry Standards

Leidos uses industry-standard frameworks with which to provide appropriate governance of our cybersecurity efforts.  To that end, the National Institute of Standards and Technology NIST 800-37 Risk Assessment methodology is used every day as our standard methodology for assessing risk related to hardware, software, systems, and cybersecurity controls. 

In 2019, the Defense Contract Management Agency (DCMA) conducted a NIST 800-171 assessment of our Corporate System Security Plan and related controls to ensure that we are compliant with the 800-171 requirements aligned to the Defense Federal Acquisition Regulation Supplement (DFARS) 252.204-7012 clause.  We successfully achieved a perfect score of 110. 

In Q1 2020, we successfully renewed our ISO 27001 certification, which was conducted by an independent, accredited third-party auditor. 

Our compliance with both NIST 800-171 and ISO 27001 standard speaks to our unwavering and industry-leading cybersecurity program. Our business relies entirely on the ability to assure and attest to the confidentiality, security, integrity, and availability of data and systems - that includes our own and those of our customers and partners. 

Audit and Risk Assessments

To further validate our externally-validated standards, Leidos Internal Audit has developed an Information Technology Risk Assessment Framework (IT-RAF) and a Cybersecurity Risk Assessment Framework (CS-RAF).  Both of these frameworks are based on Industry Standard Frameworks (e.g., NIST 800-171) and identify various domains under broader categories, including:

  • Governance and Organization;
  • Policy and Standards;
  • Infrastructure and Architecture;
  • Applications; Operations;
  • Awareness;
  • Continuous Controls Monitoring;
  • Metrics and Reporting; and
  • Compliance.

Internal Audit uses the above frameworks to perform continuous IT and Cybersecurity risk assessments.  Data privacy is a consideration under both frameworks, while cybersecurity risk is predominately covered under CS-RAF. Using these two frameworks; the underlying risk methodology; discussions with the CIO and CISO, other senior executives, and members of both the Technology and Info Security Committee and the Audit and Finance Committee of the Board of Directors; as well as white papers published by both commercial entities and industry trade groups, Internal Audit develops Information Technology and Cybersecurity Internal Audit Plans. 

Types of internal audits that are generally performed include: 

  • Information Security Governance
  • Information Assets Classification and Management
  • Identity and Access Management
  • Change Management
  • Cybersecurity Incident Response
  • Vulnerability Identification and Remediation
  • Business Continuity and Disaster Recovery       

In 2019, Corporate Information Security also conducted its own self-assessment of the Leidos program, based on the Aerospace Industries Association (AIA) National Aerospace Standard (NAS) number 9933.  NAS 9933, mostly derived from the Center for Internet Security Maturity Model, adds further control families that are frequently associated with the Defense industry.  After a baseline of existing practices in each control family, Corporate Information Security established maturity targets aligned against a strategy of becoming a Superior Cybersecurity provider in our marketplace.

In addition, Leidos Global Privacy Office has implemented a software system, which it calls the Global Privacy Management System, to administer various types of data mapping questionnaires and Privacy Impact assessments

Preparedness and Incident Response

Leidos has enterprise-wide an enterprise Incident Response Plan, accompanied by related policies and procedures which address how various types of data are to be protected and handled, and in the event of a cybersecurity or data security incident, the procedures which must be followed. These policies and procedures identify incident response teams and outline accountability for key stakeholder communications.

Additionally, Leidos periodically conducts an external penetration test of our network defenses and continually tests our cybersecurity resilience, while continuing to mature our cybersecurity defenses and incident management practices. 

  • Company
    • Our Business
    • Mission, Vision, and Values
    • Leadership
    • History
    • Inclusion & Diversity
    • Responsibility & Sustainability
    • Ethics & Compliance
    • Rankings & Awards
    • Partners
    • Subsidiaries
    • Contract Vehicles
    • Global
    • Trust
  • Markets
    • Aviation
    • Defense
    • Energy
    • Government
    • Healthcare
    • Homeland
    • Intelligence
    • Science
    • Space
    • Surface Transportation
  • Capabilities
    • Cyber Operations
    • Digital Modernization
    • Integrated Systems
    • Mission Operations
    • Mission Software Systems
    • Enabling Technologies
    • Technology Certifications
  • Insights
    • News
  • Careers
    • Life at Leidos
    • Pay & Benefits
    • Alumni
    • FAQs

Want to know more?

Contact us about product information and pricing, customer feedback, stockholder services, or just to voice a concern.

Get started

  • © 2021 Leidos

  • Trust
  • Privacy Statement
  • Ad Choices
  • Do Not Sell My Personal Information
  • © 2021 Leidos
  • Australian Privacy Statement
  • Australian Whistleblower Policy
  • Ad Choices
  • Do Not Sell My Personal Information

Utility Footer Navigation

  • Products
  • Customers
  • Suppliers
  • Investors
  • Employees
  • Accessibility
  • Twitter
  • Facebook
  • Instagram
  • Linkedin
  • YouTube