Cyber Security Engineer
$101,400 - $183,300/Yr
Leidos - Bethesda, MD
posted 2 months ago
Full-time - Mid Level
Remote - Bethesda, MD
Professional, Scientific, and Technical Services
About the position
The Cyber Security Engineer at Leidos will provide technical security expertise for both cloud and on-premises infrastructure as part of the DOMEX Technology Platform contract supporting the National Media Exploitation Center. This role involves collaborating with various teams to ensure compliance with cybersecurity standards and regulations while employing effective security solutions. The position offers opportunities for professional development and certification advancement in a mission-focused environment.
Responsibilities
- Perform review and analysis of cybersecurity event logs
- Conduct and review technical cybersecurity assessments
- Coordinate with security personnel and recommend mitigation strategies
- Identify points of vulnerability and non-compliance with established cybersecurity standards and regulations
- Collaborate with the DevOpsSec team to analyze scan results and remediate findings
- Manage and maintain a library of security audit tools and processes for system security testing and incident response
- Perform and maintain vulnerability scans using Assured Compliance Assessment Solution (ACAS) and create reports
- Track and report Information Assurance Vulnerability Management (IAVM) compliance using ACAS
- Maintain Authorization to Operate (ATO) records in XACTA system
- Manage and report Plan of Actions and Milestones (POA&M) compliance
- Review certification and accreditation (C&A) documentation for completeness and compliance
- Perform system installation, configuration maintenance, account maintenance, signature maintenance, patch management, and troubleshooting of operational IA and CND systems
- Apply system security engineering expertise in various areas including system security design, risk management, and incident handling.
Requirements
- BS degree and 4+ years of prior relevant experience
- An active TS/SCI clearance with ability to obtain a Poly
- At least one DoD 8570.01-M IAT Level II or higher certification (e.g., CCNA Security, CySA+, Security+ CE, SSCP, CISSP or Associate)
- 1 year of experience developing and reviewing security concept of operations, systems security plans, security risk assessments, contingency plans, configuration management plans
- Experience configuring, running, and analyzing vulnerability scans
- Experience with XACTA, EMass, or similar tool
- Experience with NIST Special Publications (e.g., NIST SP 800-27, 30, 37, 53, 60)
- Experience with CNSS publication CNSSI 1253
- Experience with incident response plans, plan of actions and milestones, risk management plans, and vulnerability management plans
- Strong analytical, communication, problem solving, and interpersonal skills
- Experience establishing a System Security Engineering (SSE) management process.
Nice-to-haves
- Software development/coding experience with programming languages such as Python, Java, and React
- Experience with DevOpsSec pipelines and tools
- Experience with database systems, search engines, web applications
- Experience in a Linux Red Hat and Centos environment
- Experience with big data applications
- Experience with Jira and Confluence
- Experience working in an Agile environment
- Experience with NIST SP 800-171
Benefits
- Flexible schedule
- Professional development opportunities
- Exposure to challenging technical work
