Leidos is looking for a Chief Cybersecurity Engineer to support a large opportunity for Leidos supporting operations for Integrated Information & Cyber Security Services including Enterprise Operations, End User Support, Software Engineering, Cloud technologies and Cyber Security. The Senior Engineer maintains a system engineering life-cycle, including requirements analysis, design, development, integration, scripting, test, documentation, and implementation following defined best practices and operational workflows. The work includes scheduling and prioritizing in accordance with organizational needs and establishing buy-in for the prioritization and activities. The engineer engages infrastructure solution design and architecture, information assurance, advisory, compliance, and risk management support. In addition, the position involves establishing and maintaining the schedule for delivery, deliver regular reporting, and track improvements across the environment.
Responsible for the following tasks:
• Conceptualize, Design, Build, and Maintain current and future ESOC supported tools and platforms.
• Serve as the senior engineer/architect to build the capabilities of the GSOC.
• Establish the rhythm for developing, deploying, tuning, and improving infrastructure; track and report on the progress and improvements; and partner with the program management to deliver continual improvements.
• Manage multiple assignments, changing priorities, and work independently with little oversight.
• Support the onboarding of data into Splunk via forwarder, scripted inputs, TCP/UDP and modular inputs from sources such as FireEye, BlueCoat proxies, Big IP, Cisco, Palo Alto, and host syslogs.
• Deliver support and guidance and develop processes to evaluate and improve all operating systems, hardware support, software, firmware solutions and provide advisement concerning future purchase of the same.
• Create, manage, and support automation solutions for Splunk deployment and orchestration within a Cloud environment.
• Work closely with senior engineers, other team members and application owners to solve technical problems at the network, system and application levels.
• Conduct periodic architectural reviews of installed sensors to assess effectiveness and propose optimal installation alternatives as required.
• Conduct network security architecture reviews to determine the size, and placement of intrusion monitoring equipment during the customer onboarding process.
• Conduct periodic reviews of sensor metric reports to evaluate and prioritize sensors for review and assessment.
• Identify and make recommendations for security tools, systems and capabilities to meet customer security requirements.
• Documentation and reporting along with presentation, teamwork and DoE NNSA wide collaboration are among the expected duties and mission of the task order.
• Active TOP SECRET SCI clearance and/or U.S. Department of Energy Q clearance
• U. S. Citizen
• Bachelor’s degree in an information technology discipline from an accredited college or university is required and 8 years of experience on IT/cybersecurity.
• At least 5 years of experience working in a SOC or similar monitoring center.
• Staff shall meet DoD 8570 SD 205.1
• IAT III Certified
• Prefer at least one of the following certifications (or similar relevant certification): CASP, GCIH, GCWN, GISF, GISP, GSSP, GICSP, GSSP, SEI, CISSP, CCSP, CSSLP, SSCP, CCNP, CCNP Security, CCIE Security, CEH, ECSP, MCSE, RHCA, RHCE, VCP, VCAP, VCIX, VCDX
• Cyber threat intelligence
• Network traffic analysis and packet capture inspection
• Malware analysis, advance analysis, analytic and methods development
• Hunting/discovery analysis
• Incident response and triage
• Alerts, incident handling and notifications
• Digital media analysis
• Network signature development
• MS Project, SharePoint, EPM Live, Visio and MS Office
• Information Technology Infrastructure Library (ITIL) capabilities
• Excellent verbal and written communication skills required.
• Experience administering Linux OS, particularly RedHat Enterprise
• Deep packet analysis skills using such tools like; Wireshark, Bro, etc. for layer 7 intelligence.
• Cloud and VMWare skills – Understanding of cloud terminology, architecture, and tools to include: installing, provisioning and monitoring
• Strong capabilities to assist with automating manual installation and maintenance/patching tasks and utilization of such tools as provisioning environments with Ansible, and Docker
• Experience with VMware & Ansible/Ansible Tower and/or Terraform
• Experience with data administration automating management of large (multi PB) S3 storage pools
• Experience working in AWS and Azure
• Experience working in an Agile development environment.
• Extensive database experience with two of SQL Server, MySQL, or Oracle
In order to enter Leidos facilities in the U.S. and to attend Leidos events outside our facilities, employees are required to be vaccinated for COVID-19 or maintain proof of a negative COVID-19 test within 96 hours of entry. In addition, we are receiving guidance from certain customers that onsite contractor personnel will need to be fully vaccinated to access customer facilities. If you are not vaccinated, please consider getting your COVID-19 vaccination as soon as possible. If you have any questions, please contact your Talent Acquisition POC.
Leidos is a Fortune 500® technology, engineering, and science solutions and services leader working to solve the world’s toughest challenges in the defense, intelligence, civil, and health markets. The company’s 43,000 employees support vital missions for government and commercial customers. Headquartered in Reston, Virginia, Leidos reported annual revenues of approximately $13.7 billion for the fiscal year ended December 31, 2021. For more information, visit www.Leidos.com.
Pay and Benefits
Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available here.
Securing Your Data
Leidos will never ask you to provide payment-related information at any part of the employment application process. And Leidos will communicate with you only through emails that are sent from a Leidos.com email address. If you receive an email purporting to be from Leidos that asks for payment-related information or any other personal information, please report the email to [email protected].
Commitment to Diversity
All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.