Cybersecurity Engineer

Description

Looking for an opportunity to make an impact?

The Leidos National Security Sector combines technology-enabled services and mission software capabilities in the areas of cyber, logistics, security operations, and decision analytics to support our defense and intel customers' mission to defend against evolving threats around the world. Our team's focus is to ensure our customers have the right tools, technologies, and tactics to keep pace with an ever-evolving security landscape and succeed in their pursuit to protect people and critical assets.

Your greatest work is ahead!

The National Security Sector at Leidos is currently hiring for a Cybersecurity Engineer for an Agile, cloud-based data, and analytics platform contract. As the Cybersecurity Engineer, you will provide support for an Agile, cloud-based data, and analytics platform contract. The Cybersecurity Engineer, Lead will need to be a self-starter with excellent analytical and problem-solving skills, flexibility, good judgment, and the ability to coordinate multiple, concurrent tasks in an effective manner. This individual will work with internal team members to ensure that systems and infrastructure are functional, secure, and scalable. The Cybersecurity Engineer, Lead will support the design and development of cybersecurity tools and technology along with integration of new architectural features into existing infrastructures while maintaining the integrity and security of enterprise-wide systems and networks. This role is expected to be on-site at a Leidos facility in Gaithersburg, MD, with travel to various government sites in the Washington Metro Area. This opportunity is contingent upon contract award.

What you'll be doing:

• Design and implement robust security architectures for the agency's IT infrastructure, including networks, servers, cloud environments, and endpoints. This involves implementing security controls, encryption mechanisms, access controls, and other measures to safeguard against unauthorized access and data breaches.

• Identify potential cybersecurity risks and vulnerabilities within the agency's systems, networks, and applications.

• Conduct risk assessments to prioritize threats and develop strategies to mitigate them effectively.

• Monitor the agency's networks and systems for signs of security breaches or suspicious activities.

• Develop and implement incident response plans to investigate security incidents, contain threats, and minimize the impact of cyberattacks. This may involve coordinating with internal teams and external stakeholders such as law enforcement or cybersecurity experts.

• Experience working with Identity and Access Management (IAM).

• Develop, implement, and enforce cybersecurity policies, standards, and procedures to ensure compliance with regulatory requirements and industry standards (e.g., NIST, DISA STIGs Agency Standards).

• Regularly review and update security policies to address emerging threats and changes in the agency's IT environment.

• Evaluate, deploy, and manage security tools and technologies such as firewalls, intrusion detection/prevention systems (IDS/IPS), endpoint security solutions, security information and event management (SIEM) systems, and vulnerability management tools.

• Stay abreast of new security technologies and trends to enhance the agency's security posture.

• Stay informed about the latest cybersecurity threats, trends, and best practices through ongoing training, certifications, and participation in industry conferences and forums.

• Continuously assess and improve the agency's cybersecurity posture based on evolving threats and emerging technologies.

• Maintain a current working knowledge of IT development methodology, architecture design, security best practices, and technical standards.

• Communicate with other technical leads, IT groups, and customer reps so they understand all aspects of proposed changes/solutions.

• Manage multiple assignments and work independently with minimal oversight.

What does Leidos need from me?

• Must be a U.S. citizen or have a Green Card.

• Must be able to obtain a Public Trust clearance (Background Investigation).

• BS degree in Science, Technology, Engineering, Math or related field and four to eight years of prior relevant experience with a focus on cybersecurity OR Masters with two to six years of prior relevant experience.

• Two to four years of experience with Microsoft Azure, including at least one to two years of experience with securely configuring/engineering Microsoft Azure

• Strong understanding of Azure security features and services.

• Proficiency in configuring and managing Azure security solutions such as Azure Security Center, Azure Sentinel, Azure Active Directory (AAD), Azure Firewall, and Azure Information Protection.

• Experience with hybrid cloud environments and securing both on-premise and Azure resources.

• Experience installing, configuring, and maintaining tools such as Tanium, Nessus, Forescout, and Cyberark in a hybrid-cloud environment

• Knowledge and understanding of the potential impacts associated with security features on network devices to minimize impacts to operational systems.

• Experience using common vulnerability scanning tools (e.g., Nessus) to discover weaknesses.

• Experience configuring/managing/tuning security event monitoring tools (SIEM).

• Strong written and oral communications required.

• Strong understanding of cybersecurity principles, practices, and technologies.

• Proficiency in risk assessment, incident detection and response, security architecture design, and compliance.

• Excellent communication and interpersonal skills, with the ability to collaborate effectively with cross-functional teams.

• Relevant certifications such as CompTIA Security+, Certified Information Systems Security Professional (CISSP), or Certified Ethical Hacker (CEH) preferred.

Favorable if you have:

• Experience automating management tasks with Ansible, Puppet, or Chef.

• Experience working among different Cloud Provider environments (Azure).

• Experience developing in Powershell.

• Experience working with SIEM tools such as Splunk to ingest, normalize, store, and maintain data from endpoint, network, and application sourcetypes.

Original Posting Date:

2024-04-10

While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

Pay Range:

Pay Range $81,250.00 - $146,875.00

The Leidos pay range for this job level is a general guideline onlyand not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.

REQNUMBER: R-00133226

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status. Leidos will consider qualified applicants with criminal histories for employment in accordance with relevant Laws. Leidos is an equal opportunity employer/disability/vet.