Security Engineer

Description

At Leidos, we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customers success. We empower our teams, contribute to our communities, and operate sustainable practices. Everything we do is built on a commitment to do the right thing for our customers, our people, and our community. Our Mission, Vision, and Values guide the way we do business. Employees enjoy career enrichment opportunities available through mobility and development and experience rewarding relationships with supportive supervisors and talented colleagues and customers. Your most important work is ahead.

If this sounds like the kind of environment where you can thrive, keep reading!

Leidos is seeking a Security Engineer to support the National Media Exploitation Center (NMEC). This role will be responsible for analyzing and assessing computer/network architecture security requirements and determine optimum, cost-effective solutions. The individual will work effectively with cross-functional teams to define technical requirements and identify and resolve technical design issues. This role will collaborate with client, server and other internal/external teams to identify support and technology advancements to meet current and future security requirements. The work location is in Bethesda at the Intelligence Community Campus.

This is a 100% on-site position. All work must be performed at the customer site in Bethesda at the Intelligence Community Campus.

Primary Responsibilities

• Review C&A documentation providing feedback on completeness and compliance of its content

• Perform system installation, configuration maintenance, account maintenance, signature maintenance, patch management, and troubleshooting of operational IA and CND systems

• Apply system security engineering expertise in one or more of the following: system security design process; engineering life cycle; information domain; cross domain solutions; commercial off-the-shelf and government off-the-shelf cryptography; identification; authentication; and authorization; system integration; risk management; intrusion detection; contingency planning; incident handling; configuration control; change management; auditing; certification and accreditation process; principles of IA (confidentiality, integrity, non-repudiation, availability, and access control); and security testing

• Work closely with other systems architects and project managers to develop, plan and implement system enhancements and upgrades to meet security requirements based on STIG and NIST 800.53.

• Provide technical support, troubleshooting and complex problem resolution on escalated issues related to security enhancements implemented within the infrastructure.

• Ensure that security requirements and objectives are identified, implemented, automatically monitored, automatically reported in compliance with NMEC2 RMF and other security directives as detailed by the NMEC2 ISSM.

• Ensure all applicable security requirements are met in accordance with existing and evolving IA reference security documents.

• Provide written input to the ISSMs when a security relevant change is required for existing systems or contractors.

• Assist the ISSMs in performing systems security requirements analysis where needed in preparation for security compliance and relay findings through the ISSMs that may impact design, operations and/or performance to the relevant engineering or operations groups.

• At Government direction, assist ISSMs to enhance and deploy security services architecture.

• As directed by the Government, participate in customer Technical Exchange Meetings (TEMs) to gather requirements, and participate in Security TEMs in relation to systems security and system accreditation as required.

• Maintain currency on system security documentation (body of evidence) for all accreditation documentation in accordance with all specified National Institute of Standards and Technology (NIST) 800-53 controls for all project and service activities in support of ATO.

• Collaborate on IA activities with NMEC2, the ISSMS, and the appropriate Cyber Security Program Offices to ensure incorporation of NMEC2 RMF strategic goals and objectives.

• Work with ISSMs as ATO authority within the NMEC and with NMEC IT customers to:

  • Verify that security measures are taken, maintained, reported on and updated as required

  • Notify Government in writing (via assigned ISSM(s)) assisting ISSM(s) to edit JAVA and POA&M documentation when expected measures have not been implemented

  • Meet mission objectives in accordance with applicable security policies and directives.

• Collaborate with NMEC2 ISSM and security engineering to ensure that all systems are compliant with ICD-503 and other security directives as designated by the NMEC2 ISSM to include:

  • Design/enhancement of firewalls and controlled interface security architectures (based on requirements provided by NMEC2 ISSM and appropriate security organization(s))

  • Identify, implement, automated management, automated monitoring, and automated reporting of detailed ongoing security hardening, patching, and virus-checking

  • Implement procedural protective measures, fully automating repeatable processes and reporting to maintain systems compliance toward ATO

• Manage, supervisor, and/or mentor security and technical staff

Basic Qualifications

• Bachelors degree in Computer Science, Information Technology, or a related field, or equivalent work experience.

• Experience with application performance and latency problems related to security requirements from front, middle, and back end

• Working experience with Windows Server 2016/2019, Active Directory, IIS, DNS, DHCP, Exchange, DFS

• Experience implementing security controls on common network services such as file, email, and active directory across multiple geographically dispersed sites.

• Experience with networking technologies and security assessment to include, but not limited to, STIGs.

• Experience implementing and supporting enterprise system security and malware monitoring and prevention tools such as Splunk, McAfee HBSS, and ACAS

• Solid network and systems troubleshooting experience with TCP/IP, Internet security, and encryption (data at rest, data in transit)

• Ability to produce clear and concise documents and diagrams capturing networking and operational procedures and LAN/WAN topology using MS Visio, MS Project, MS Excel and MS Word.

• Candidate must, at a minimum, meet DoD 8570.11- IAT Level II certification requirements (currently Security+ CE, CCNA-Security, GSEC, or SSCP along with an appropriate computing environment (CE) certification)

Education/Experience Requirements

• Candidate must have a Bachelor's, with at least 8 years of relevant experience. Additional years of experience may be considered in lieu of degree.

Clearance

• Active TS/SCI clearance with Polygraph required OR active TS/SCI and willingness to get a Poly.

• US Citizenship is required due to the nature of the government contracts we support.

Preferred Qualifications

• Experience managing and/or supervising a team of technical professionals

• CISSP or CASP Certification

For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.