Description
Unleash your potential at Leidos, we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customer’s success. We empower our teams, contribute to our communities, and operate sustainably. Everything we do is built on a commitment to do the right thing for our customers, our people, and our community. Our Mission, Vision, and Values guide the way we do business. With Leidos, you will enjoy competitive benefits such as Paid Time Off, Flexible Schedules, Discounted Stock Purchase Plans, Education and Training Support, Parental Paid Leave, and more!
If this sounds like an environment where you can thrive, keep reading!
Are you ready to join an incredible team? This contract is critical to the government and allows team members to work independently and in a team environment to achieve success. If you are passionate, motivated, and want to be part of an organization that values your contributions, we want to hear from you. Apply today!
Your greatest work is ahead!
The Mission The Leidos National Security Sector uses a wide range of capabilities to support our customers’ mission to defend against evolving threats around the world.
This Lead Security Engineer opening is a challenging and rewarding opportunity on a mission-critical program for a seasoned security engineer who likes to be hands on in the technical area. The selected individual will be responsible for leading all security engineering efforts on a large, complex network environment with geographically distributed systems. She/he will lead a diverse team of Information Systems Security Officer (ISSO) and Information Systems Security Engineer (ISSE) personnel and provide technical leadership and direction in support of program requirements. The selected individual will provide mentorship and direction to support sound information systems security engineering concepts and will be heavily involved in testing the system. The candidate will collaborate with other engineers and technical experts to provide improvements to the operational, test, integration, and development systems. Responsibilities also include ensuring authorization to operate (ATOs) for numerous system security plans (SSPs), and compliance with Secure the Enterprise/Secure the Network (STE/STN) requirements.
Primary Responsibilities
·Responsible for the overall security architecture, ensuring all security related requirements are met.
·Communicate with multiple system owners across multiple networks regarding the various system and security requirements.
·Provide subject matter expert (SME) support for the overall security architecture.
·Set security strategy, including risk assessment, risk management, security control assessment, continuous monitoring, service design, and general cybersecurity program support functions.
·Identify security issues throughout complicated and challenging systems and environments in order to make recommendations to remediate those issues.
·Develop and implement static and dynamic application security tests and penetration tests.
·Work with development teams to enrich understanding of different types of vulnerabilities, attack vectors and remediation approaches.
·Lead a team of program security engineers in day-to-day activities.
·Work with program security team to ensure STE/STN and continuous monitoring requirements are being met for Test and Integration, and Development systems.
·Effectively communicate program requirements and challenges for system compliance with multiple customer points of contact.
·Coordinate internally with multiple teams for planning and remediation activities.
Basic Qualifications
·Master's Degree and 15-20 years of relevant experience. Additional years of relevant professional experience may be considered in lieu of a degree.
·In-depth knowledge of and experience with current security tools, hardware/software security implementation, communication protocols, encryption techniques/tools, and web services.
·In-depth understanding of security vulnerabilities and remediation approaches; as well as risk assessment/management, and security strategy/design.
·Extensive experience formulating and assessing IT security policy.
·Solid understanding of AOTs, SSPs, and STE/STN requirements.
·Extensive experience working with and/or leading ISSO and ISSE teams.
·Direct experience collaborating with software developers; software testers; and integration, deployment, and/or sustainment personnel.
·Must be a good communicator and have excellent interpersonal skills.
·Must be committed to developing and adhering to best practices.
·Must be a solutions-oriented team player and possess a high level of self-initiative.
Preferred Qualifications
·At least twelve (12) years of experience with defense-in-depth principals/technology (including access control, authorization, identification and authentication, public key infrastructure, network and enterprise security architecture) and applying risk assessment methodology to system development.
·Experience developing/implementing integrated security services management processes, such as assessing and auditing network penetration tests, anti-virus planning assistance, risk analysis, and incident response.
·Experience providing information assurance support for application development that includes system security certifications and project evaluations for firewalls that encompass the development, design, and implementation.
Original Posting Date:2024-09-27While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.
Pay Range:Pay Range $144,300.00 - $260,850.00The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.