Department of Homeland Security (DHS), Customs and Border Protection (CBP) Security Operations Center (SOC) is a US Government program responsible to prevent, identify, contain and eradicate cyber threats to CBP networks through monitoring, intrusion detection and protective security services to CBP information systems including local area networks/wide area networks (LAN/WAN), commercial Internet connection, public facing websites, wireless, mobile/cellular, cloud, security devices, servers and workstations. The CBP SOC is responsible for the overall security of CBP Enterprise-wide information systems, and collects, investigates and reports any suspected and confirmed security violations. Leidos has an immediate need for a Mid Level Software Assurance (SA) Security Engineer to join our CBP Team.
The Software Assurance Security Engineer duties will include:
- Apply coding and testing standards, security testing tools, threat modeling and conduct code reviews.
- Conduct trial runs of programs and software applications to ensure the desired information is produced and instructions are correct. Identify common coding flaws.
- Perform integrated quality assurance testing for security functionality and resiliency attacks.
- Perform penetration testing as required for new or updated applications.Apply defense functions (ie: encryption, access control, identity management) to reduce exploitation opportunities of supply chain vulnerabilities.
Required Skills and Education:
BS degree in Science, Technology, Engineering, Math or related field and 8 to 10 years of prior relevant experience with a focus on cyber security or Masters with 6 to 10 years of prior relevant experience.
Must have an active Secret Clearance. In addition to the specific clearance requirement, all personnel supporting CBP must have a current background investigation (BI) or obtain a favorable BI before joining the program.
Must have comprehensive knowledge of Information Security issues to include: Cloud technology, Internet servers, Web-enabled database application, Data integrity, Intrusion detection, Firewalls management, Forensic and legal information security, Virtual private networks, Public key/infrastructure/digital signature, Encryption, Network security architecture.
Network Security background and Cloud/AWS experience