SME Cybersecurity Systems Engineer

Leidos Airports, Borders, and Security is seeking a highly motivated Cybersecurity Engineer to support TSA on a nationwide program. The successful candidate will join an existing team supporting cloud-based infrastructure and devices deployed throughout the US and US Territories. The team is highly integrated, and the successful candidate will be expected to learn the existing architecture and provide support both during normal hours, after hour patching, and on call as needed. The individual will be expected to be able to work with minimal supervision and be self-directed in the areas of their responsibility.

In addition to responsibilities on program this candidate will provide their specialized knowledge to help push forward Transportation Security Administration (TSA) Modernization efforts. This role serves as a bridge between Leidos' innovative solutions and TSA's specific mission to protect the nation's transportation systems and ensure freedom of movement for people and commerce. As part of the team, the Security Engineer will design and implement network monitoring and identity management solutions, conduct threat modeling, and ensure compliance with security standards. The ideal candidate brings experience with security accreditation, vulnerability assessment, and hands-on technical implementation.

Primary Responsibilities:

• Administer and harden Cloud based environment.
• Administer and harden servers and workstations (e.g., RHEL, Windows) including OS configuration, patching, and security baseline enforcement.
• Administer and harden network appliances (e.g. VPN, SWG, NGFW) including configuration, patching, and security baseline enforcement.
• Generate compliance and vulnerability reports for leadership, auditors, and governance teams; track remediation progress and aging.
• Interpret technical vulnerabilities (CVEs, CVSS) and clearly communicate risk and remediation options to technical and non-technical stakeholders.
• Design, implement and maintain secure system architectures in accordance with organizational policies and industry best practices.
• Provide support for Active Directory and networking issues.
• Provide user support and training, managing system access, permissions, and issue resolution.
• Manage account creation, modification, and termination in compliance with security protocols.
• Implement/configure IT equipment per DISA STIGs and resolve compliance issues
• Run vulnerability and compliance scans and remediate findings
• Design and implement network monitoring and maintenance solutions
• Implement centralized account management for TSS Common Workstation (CW) users
• Create threat models for Leidos airport offerings and solutions
• Document and deliver any documentation that may be required to obtain Authorization to Operate (ATO) e.g., System Security Plan (SSP), Security Assessment Report (SAR), Contingency Plan, Network Ports, Protocols, and Services Management (PPSM)
• Resolve, track, and bring to closure Plan of Actions & Milestones (POA&M), All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws. Related Jobs SME Cybersecurity Systems Engineer Leidos Gaithersburg, MD*On-Site Auditing Equities Analytics Scalability Market Data Data Storage Promulgation Data Analysis Cyber Defense Cyber Security Team Leadership Ancient History Computer Science Machine Learning Product Planning Security Controls Technical Standard Security Strategies Systems Engineering Information Systems User Interface (UI) GIAC Certifications User Experience (UX) Systems Architecture Information Assurance Continuous Monitoring Cyber Security Systems Artificial Intelligence Security Implementation IT Security Architecture Site Reliability Engineering Continuous Improvement Process Milestones (Project Management) Model Based Systems Engineering GIAC Certified Intrusion Analyst GIAC Certified Forensics Analyst Artificial Intelligence Infrastructure Application Programming Interface (API) Counter Intelligence Polygraph (CI Clearance) CompTIA Advanced Security Practitioner (CASP+) Security Information And Event Management (SIEM) Certified Information Systems Security Professional Top Secret-Sensitive Compartmented Information (TS/SCI Clearance) +0

Google Cybersecurity Senior Information Security Engineer Leidos Chantilly, VA*On-Site JIRA Linux DevOps Ansible Firewall NIST 800 Equities Scripting Terraform Automation Subnetwork Market Data NIST 800-37 NIST 800-53 AI Security Open Mindset Communication Routing Table Cloud Security System Software Network Routing Ancient History Network Security Agile Methodology Security Analysis Workflow Management Amazon Web Services Cloud Infrastructure Technological Change Programming Languages Continuous Monitoring Vulnerability Scanning Command-Line Interface Database Administration Security Implementation Bash (Scripting Language) Assessment And Authorization Information Systems Security Scrum (Software Development) Infrastructure as Code (IaC) Security Requirements Analysis Virtual Private Networks (VPN) Systems Development Life Cycle Software Development Life Cycle AWS Certified Cloud Practitioner Troubleshooting (Problem Solving) Certified Information Systems Security Professional Top Secret-Sensitive Compartmented Information (TS/SCI Clearance) +0

Google IT Support Splunk Engineer Leidos Ashburn, VA*On-Site JIRA Linux Splunk Editing Ansible Equities Dashboard Scripting Leadership Management Automation ServiceNow Market Data RESTful API Self-Starter Microsoft 365 Cyber Security Prioritization Cloud Services Cloud Security Problem Solving Ancient History CompTIA Security+ Cyber Engineering Windows PowerShell Wide Area Networks Workflow Management Systems Engineering Amazon Web Services Integration Testing Information Systems Local Area Networks Regular Expressions Enterprise Security Atlassian Confluence Business Intelligence Requirements Analysis Information Technology Configuration Management

Splunk Nessus Auditing Equities Leadership Consulting Management Mentorship Governance Innovation Market Data Communication Presentations Security Tools Self-Motivation Problem Solving Self-Discipline Cloud Computing Task Management Threat Modeling Ancient History Customer Service Computer Science Active Directory Server Hardening Operating Systems Agile Methodology Security Policies CompTIA Security+ Endpoint Security Cyber Engineering Account Management Network Monitoring Network Appliances Amazon Web Services Endpoint Management Contingency Planning IT Service Management Vulnerability Scanning Red Hat Enterprise Linux Vulnerability Assessments Risk Management Framework Authorization (Computing) Verbal Communication Skills Virtual Private Networks (VPN) Identity And Access Management Paessler Router Traffic Grapher Plan Of Action And Milestones (POA&M) Common Vulnerability Scoring System (CVSS) Transportation Security Administration (TSA), * Must be a US Citizen

• Must be able to attain a suitability determination from TSA
• Demonstrated ability to work independently with minimal supervision
• Excellent problem-solving skills.
• Proficiency with common Agile practices, service-oriented environments, and better development practices
• Experience with networking ports and protocols, architecture of networked systems, functionality of various operating systems, cloud computing environments and common security tools.
• Experience in working collaboratively within a remote environment.
• Strong consulting, leading, and mentoring skills along with the ability to effectively communicate and collaborate with stakeholders at all levels.
• Broad knowledge of and experience with a wide variety of application technologies, platforms, and tools including security and infrastructure configuration and monitoring.
• Excellent written, verbal, and presentation communication skills.
• Demonstrated experience applying efficient task management and ability to adjust to changing requirements
• Excellent analytical and technical skills.
• Bachelor's Degree in Computer Science, Engineering, or a similar field or 10+ years relevant experience and associated certifications
• CISSP or Security + certification
• Experience working with government agency to obtain ATO for new IT services
• Experience enforcing DISA STIG security policies in Windows and Linux environments
• Familiarity with NIST Risk Management Framework (RMF)
• Familiarity with DISA STIGs and vulnerability scanning tools (e.g., Nessus, Nipper), * Experience implementing Endpoint Management Solutions (e.g., Trellix Endpoint Security, ePolicy Orchestrator)
• Experience with network monitoring solutions (e.g., PRTG)
• Experience with centralized Security Information and Event Management (SIEM) solutions (e.g., Splunk)
• Experience accrediting systems and obtaining ATO from TSA
• Familiarity with threat modeling tools (e.g., OWASP Threat Dragon, Microsoft Threat Modeling Tool)
• AWS Certification
• Familiarity with Red Hat Open Shift, Cyber Threat Intelligence IAT Level II Certification Splunk Enterprise Security Network Planning And Design Git (Version Control System) Python (Programming Language) Troubleshooting (Problem Solving) JavaScript (Programming Language) Intrusion Detection And Prevention Federal Information Security Management Act Certified Information Systems Security Professional +0

Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available at www.leidos.com/careers/pay-benefits .

If you're looking for comfort, keep scrolling. At Leidos, we outthink, outbuild, and outpace the status quo - because the mission demands it. We're not hiring followers. We're recruiting the ones who disrupt, provoke, and refuse to fail. Step 10 is ancient history. We're already at step 30 - and moving faster than anyone else dares., Leidos is an industry and technology leader serving government and commercial customers with smarter, more efficient digital and mission innovations. Headquartered in Reston, Virginia, with 47,000 global employees, Leidos reported annual revenues of approximately $16.7 billion for the fiscal year ended January 3, 2025. For more information, visit www.Leidos.com .