Join our talent network

Job #: R-00013953
Location: WASHINGTON, DC
Category: Info Security
Schedule (FT/PT): Full time
Travel Required: No
Shift: Day
Potential for Telework: No
Clearance Required: None
Referral Eligibility: Ineligible
Group: Civil

Job Description:

Leidos is seeking an IT Security Engineer for the ESA IV program. The ESA IV Security team supports multiple DOJ components (ATF, USTP, ATR). This position will primarily support the DOJ Alcohol Tobacco Firearms and Explosives (ATF) component.

This position is for an Information Assurance Analyst focused on security compliance reviews. This includes but is not limited to annual audits (e.g. OMB, A123, FISMA) and maintenance of records in the compliance management system (e.g. POAMs, waivers, registered assets).

The candidate may also be involved in other security assessment activities including but not limited to: Risk Management Framework elements, assessment of security controls, and assessment of new functions. The candidate may act as the interface between auditors and system subject matter experts. This will require the candidate to understand the target systems to appropriately decompose inquiries to actionable items for SMEs, then validate the SME responses. The candidate should understand how to document system compliance with government security controls (e.g. 800-53, FISMA). The candidate may also support Security Operations, e.g. conducting security scans.

Required Qualifications:
  • Bachelor's degree and less than 2 years of experience, additional years of experience will be considered in lieu of degree
  • Clear verbal and written communication skills are essential
  • Project planning skills to identify how to meet schedules, identify dependencies, and identify risks and work arounds
  • Experience with supporting assessment of IT systems compliance with Federal IT Security standards (e.g. NIST 800-53, FISMA)
  • Working knowledge of Federal Certification and Accreditation practices
  • Ability to respond to security audits and compliance assessments including decomposing auditor requests to actionable items, compiling and presenting security audit artifacts
  • Ability to evaluate IT system compliance with government and commercial security practices (e.g. DISA STIGS, SANS Top 25)
  • General knowledge of enterprise scale IT systems, architectures and components (servers, and virtualization, networking, security appliances, SAAS, IAAS) particularly the system integration challenges balancing secure operations with operational need
  • Solid communication and documentation skills


Desired Qualifications:
  • Experience with DOJ compliance environment and related tools (CSAM, Tenable Security Center, application scanners, database scanners)
  • Ability to compile and update system accreditation packages
  • Basic experience or familiarity with cloud computing and applicable security practices (e.g. FedRAMP, SAAS, IAAS)
  • Ability to recognize security risks, document risk, and clearly communicate findings and recommendations.
  • Basic cyber security knowledge supporting Incident Response events


This position requires a security investigation completed by the ATF and ATR to permit access to customer-sensitive information.

Leidos is a Fortune 500® information technology, engineering, and science solutions and services leader working to solve the world's toughest challenges in the defense, intelligence, homeland security, civil, and health markets. The company's 32,000 employees support vital missions for government and commercial customers. Headquartered in Reston, Virginia, Leidos reported annual revenues of approximately $10.19 billion for the fiscal year ended December 28, 2018. For more information, visit www.Leidos.com .

Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available here .

Leidos will never ask you to provide payment-related information at any part of the employment application process. And Leidos will communicate with you only through emails that are sent from a Leidos.com email address. If you receive an email purporting to be from Leidos that asks for payment-related information or any other personal information, please report the email to spam.leidos@leidos.com .

All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.

Talent Community

Join our Talent Community to create a profile, enabling a streamlined application process and to help our recruiters better understand your areas of expertise and interest.

Join our Talent Community