Do you want to grow your career and be part of a team solving critical challenges that affect the world? Leidos Civil is leading the way in solving internationally pressing issues, including: -Aviation - Guiding the world's air traffic, managing 43,000+ flights for 2.5 million passengers per day -Logistics & infrastructure support - Operating infrastructure for large-scale nuclear cleanup efforts -Cybersecurity - Monitoring advanced threats; managing security services and utility command and control centers -Facility management & operations - Operating the world's longest supply chain to Antarctica -Energy engineering - Restoring power during hurricane efforts; helping communities achieve significant energy savings -Environmental management - Delivering innovative environmental solutions and wildlife conservation plans -IT infrastructure modernization - Helping 2+ million citizens recover from identity theft; maintaining global biometrics systems -Transportation security solutions - Securing U.S. borders with 1200+ radiation and explosive monitors; designing vehicle solutions that save lives, reduce congestion, and boost fuel efficiency If you desire to be an integral part of a dynamic team of science and technology leaders, then Leidos Civil is the place for you! Protect yourself and your family, with the benefits of working for a world-class employer. When you join Leidos, you join a Fortune 500 company and one of Ethisphere Institute's "World's Most Ethical Companies" Leidos...Practical Answers for a Complicated World
Security Engineer/Security Administrator Job Description Security Engineer/Administrator: Builds and maintains Wide Area and Local Area network security solutions in collaboration with the security architect. The security engineer/administrator is responsible for the implementation of security assets, configurations, and addressing technical problems as they occur throughout the lifecycle of a program. This includes direct support in achieving Authorization to Operate (ATO) software and hardware configurations and remediating non-compliant (insufficiently hardened assets). The security engineer/administrator is responsible for creating and executing test scripts that reflect the mission of the program based on use cases developed by the security architect. The security engineer/administrator develops and manages security configurations and patch compliance with requirements and Service Level Agreements (SLA's) using SecDevOps processes and tools for assets under the control of the program. Security Engineer/Administrator Job Responsibilities: • Develops and applies SecDevOps operational processes and implements orchestration and scripting configuration deployments to apply updates, changes, patches, etc. for compliance with security requirements and business/security rules. • Develop and maintain a SecDevOps playbook. • In concert with the security architect and analysts, develops DevOps testing scripts and executes tests, debugs and resolves issues prior to changes being introduced to the operational system. • Create new ways to solve and optimize existing operational security issues to reduce program risk. Develop and maintain documentation for all security solutions. • Respond to information security issues during each stage of a project's lifecycle. • Developing and maintain security as code integrated with the SecDevOps team. • Develop scripts to automate security testing and implement tools to detect security defects to validate release builds before they are deployed. • Develop automated security audit solutions using scripts and analysis techniques for a human-over-the loop. • Develop processes, methodology and tools/scripts to screen and validate the security and reliability of build packages and the platforms they are built on. • Develop processes/methods and instrumentation to validate the infrastructure is operating in compliance with requirements and SLA's and identify and remediate defects. • Install/deploy firewalls, encryption, intrusion prevention/detection systems, security tools and platforms and automate software configuration testing/validation and software deployment using SecDevOps methodologies. • Automate compliance testing, risk analyses and security assessments to minimize human-in-the-loop labor. • Document, track and resolve security incidents in concert with security analysts and the security architect. • Investigate intrusion incidents, conduct forensic investigations and mount incident responses in collaboration with the security analyst. • Test and document security solutions using SecDevOps automation and industry standard analysis criteria. • Configure the security dashboard views to support real-time, historical and forecasting report objectives for multiple stakeholder roles • Implement changes in software, hardware, facilities, telecommunications and user needs • Implement and monitor security policies as defined by security governance • Analyze and advise on new security technologies and program conformance to security controls and SLA's • Evaluate new technologies and processes that enhance security capabilities in collaboration with the security architect • Provide log analysis support to security analysts as required. • Enhances organization reputation by accepting ownership for accomplishing new and different requests; exploring opportunities to add value to job accomplishments. • Enhances security team accomplishments and competence by planning delivery of solutions; answering technical and procedural questions for less experienced team members; teaching improved processes; mentoring team members. Preferred Skills and Qualifications • Bachelor of Science in Cybersecurity with minor in computer science or mathematics • Proven track record in SecDevOps state of the practice network security for large networks • Applied knowledge of SDN/NFV through either a security implementation or through applied study/testing • Demonstrated in-depth knowledge of security technology platforms and tools • Has applied SecDevOps or is working toward evolving SecDevOps for a mission system or enterprise • Worked successfully with Federal Agency organization or DoD organization on achieving a security ATO • 3+ Years working with NIST 800-53 and FISMA High security control based program infrastructures • Working knowledge of the FAA and FAA security practices and standards • Certified Information Systems Security Professional certification • CompTIA Security+ certification • Public Trust clearance or higher level clearance attained • Excellent communication and writing skills to work with all levels of an organization Security Engineer/Administrator Skills and Qualifications: SecDevOps, SDN/NFV, Network Security, Networking Standards, Network Protocols, NIST/FISMA standards and controls, SIEM platforms and security tools, Network Hardware Configurations, Decision Making, Informing Others, Functional and Technical Skills, Dependability, Information Security Practices and Policies LeadGenLeadGenCyber
EDUCATION & EXPERIENCE: Typically requires BS degree and 12 - 15 years of prior relevant experience or Masters with 10 - 13 years of prior relevant experience. May possess a Doctorate in technical domain.
External Referral Bonus:
Potential for Telework:
Clearance Level Required:
Yes, 10% of the time
Scheduled Weekly Hours: