Leidos is looking for a SIEM (Security Information and Event Management) Tools Architect to join a high performing agile team using the Scaled Agile Framework (SAFe) methodology to support a nationally significant and fast-paced program. Program execution follows DEVOPS best practices and employs robust development, test and production environments. We are using Behavior Driven Development (BDD) and test automation tools alongside a full suite of team collaboration tools. Leidos is the prime contractor providing system engineering, development, test, integration and operational support. The program focused on injecting new technology and adding advanced capabilities while continuing to support an on-going mission and operational system.
The SIEM Architect is responsible for collecting, parsing, and correlating events for a critical operational system. The successful candidate will demonstrate strong skills in system administration, log management, event correlation, and threat detection.
The SIEM Architect will support building and maintaining a system that analyzes collected data and derives facts, inferences, and projections to determine if the systems being monitored are operating normally or being attacked by an adversary. This individual will be responsible for overseeing best practice in configuring and architecting the systems which support analysts and end-users. The successful candidate will support the collection and extraction of data used to refine existing and new reports, analytics, and dashboards, and will be involved with the drafting and creation of reports and dashboards based on end-user requirements. She/he will also work with System Engineers and System Administrators to better define the audit data being collected to eliminate false positives and false negatives from the data.
-A Bachelor’s Degree in Information Assurance or related field and 12 years of relevant experience are required. Additional experience may be substituted for a degree.
-Possess active TS/SCI with Polygraph clearance to be considered for this role.
-At least 3 years of experience with one or more of the following: StealthWatch, TripWire, Zenoss, ArcSight, Splunk.
-Experience configuring and deploying data collection for a variety of operating systems and networking platforms.
-Experience creating Dashboards and Analytics within SIEM tools.
-Experience building and maintaining systems dedicated to storing and parsing large amounts of data.
-Experience building monitoring systems supporting auditing, incident response, and system health.
-Must possess excellent troubleshooting skills.
· Network Security Operations Center (SOC) experience preferred.
· Experience and talent in data visualization.
· Experience creating workflows for Incident Response within a SIEM Tool.
· CISSP Certification.
· GIAC Certified Incident Handler Certification.
· GIAC Cyber Threat Intelligence Certification.
· Splunk Enterprise Certified Architect.
In order to enter Leidos facilities in the U.S. and to attend Leidos events outside our facilities, employees are required to be vaccinated for COVID-19 or maintain proof of a negative COVID-19 test within 96 hours of entry. In addition, we are receiving guidance from certain customers that onsite contractor personnel will need to be fully vaccinated to access customer facilities. If you are not vaccinated, please consider getting your COVID-19 vaccination as soon as possible. If you have any questions, please contact your Talent Acquisition POC.
Leidos is a Fortune 500® technology, engineering, and science solutions and services leader working to solve the world’s toughest challenges in the defense, intelligence, civil, and health markets. The company’s 43,000 employees support vital missions for government and commercial customers. Headquartered in Reston, Virginia, Leidos reported annual revenues of approximately $13.7 billion for the fiscal year ended December 31, 2021. For more information, visit www.Leidos.com.
Pay and Benefits
Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available here.
Securing Your Data
Leidos will never ask you to provide payment-related information at any part of the employment application process. And Leidos will communicate with you only through emails that are sent from a Leidos.com email address. If you receive an email purporting to be from Leidos that asks for payment-related information or any other personal information, please report the email to [email protected].
Commitment to Diversity
All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.