The Homeland Security Solutions Operation within Leidos is looking for a Security Engineer to provide leadership on a mission-critical program supporting Passenger Systems Program Directorate (PSPD) in Customs and Border Protection (CBP). PSPD supports the Department of Homeland Security (DHS) and CBP critical missions, specifically screening and processing travelers at the ports of entry (POEs) into the United States.
The Security Engineer plays a key role in Enterprise Architecture team with primary focus on the assigned portfolio The Security Engineer is responsible for doing research, identify, design and implement solutions as well as perform application security vulnerability assessments and scans to identify, evaluate and mitigate security risks, threats and vulnerabilities in Kubernetes clusters in AWS cloud and on-prem environments. Responsible for defining and planning processes for implementing application security initiatives compliant with customer set security requirements and certifications. Document and communicate all security related configuration and guidelines for the portfolio application teams.
•Responsible for design and automation of security scanning as part of daily integration activities to continuously assess code and remediate vulnerabilities early in the development lifecycle.
•Actively involved at all phases of the development lifecycle to promote code reuse which uses inherited preapproved Risk Management Framework (RMF) controls to achieve faster ATO
•Responsible for confirming security-relevant design changes and raise “outPatterns” to CBP ISSM’s and ISSOs for early assessment
•Design integrate custom code to generate security-relevant events for the CBP Security Operations Center (SOC), enhancing operational monitoring
•Perform evaluation and onboarding CBP approved security tools ex SAST, vulnerability and open source scanning into the Security DevOps life cycle
•Define best practices in security hardening, patching, granular role-based access, system administration, and configuration
•10-12 Years of experience in software design and development with atleast 5+ years of experience working in a security role handling on-premise and cloud infrastructures
•Extensive experience integrating Security checks in the CI/CD pipeline alongside the Development team
•The Security Engineer should have extensive Scanning experience and familiarity with Static & Dynamic Code Analysis.
•Strong experience on Continuous Integration/ Continuous Testing/ Continuous Delivery processes and tools
•Proficient in CI/CD toolchain including Git, Junit, Maven/Gradle, Jenkins, SonarQube, Checkmarx, Artifactory, UDeploy, Others
•Experience and expertise in secure coding practices and threat modeling
•Strong scripting skills and proficiency with the following scripting languages strongly preferred: Shell, Python, Ruby
•Excellent communication and written skills
•Ability to obtain a Public Trust clearance
•BA/BS or equivalent experience and 15+ years of prior relevant experience or Masters with 12+ years or prior relevant experience.
•Demonstrated experience in network and cyber security design, engineering and operations with emphasis on DHS capabilities
•Demonstrated experience developing models using Sparx EA, Splunk dashboard configuration
•Experience with NIST SP 800 series or ISO 27000 series documents for information security management and risk assessment
•Demonstrated experience with server virtualization technologies such as VMware, Citrix, or Hyper-V
•Demonstrated experience with operating systems such as RedHat Linux and Windows Server
•Demonstrated experience in ITIL, ISO20000 / ISO27001 implementations
•At least one nationally recognized vendor certification
•Cloud Technical, Business or TCO Accreditation
•Cloud Architect, DevOps or SysOps Associate or Professional Certification
•Active CBP BI
External Referral Bonus:Ineligible
Potential for Telework:No
Clearance Level Required:Public Trust
Travel:Yes, 10% of the time
Scheduled Weekly Hours:40
Job Family:Business Systems Analysis
Leidos is a Fortune 500® information technology, engineering, and science solutions and services leader working to solve the world's toughest challenges in the defense, intelligence, homeland security, civil, and health markets. The company's 33,000 employees support vital missions for government and commercial customers. Headquartered in Reston, Virginia, Leidos reported annual revenues of approximately $10.19 billion for the fiscal year ended December 28, 2018. For more information, visit www.Leidos.com.
Pay and Benefits
Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available here.
Securing Your Data
Leidos will never ask you to provide payment-related information at any part of the employment application process. And Leidos will communicate with you only through emails that are sent from a Leidos.com email address. If you receive an email purporting to be from Leidos that asks for payment-related information or any other personal information, please report the email to [email protected].
Commitment to Diversity
All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.