Cybersecurity Engineer SME
Role details
Job location
Tech stack
Job description
Splunk Nessus Rapid7 Ansible Auditing Firewall Equities Scripting SonarQube DevSecOps Pipelines Operations Automation Purchasing Upskilling Market Data Coordinating Oracle Cloud Cryptography Investigation Cyber Security Key Management Risk Management Authentications Cloud Computing Ancient History Network Security Security Controls Incident Response CompTIA Security+ Digital Forensics System Monitoring Endpoint Security Cyber Engineering Analytical Method Windows PowerShell AWS CloudFormation Systems Engineering Amazon Web Services Time Off Management Security Engineering Software Development Contingency Planning Signals Intelligence Programming Languages Regulatory Frameworks Vulnerability Scanning Security Configuration Cyber Security Policies Configuration Management Vulnerability Management Certified Ethical Hacker Cyber Security Standards Cybersecurity Compliance Risk Management Framework Authorization (Computing) Cyber Threat Intelligence Cyber Security Assessment IT Security Documentation Agile Software Development Splunk Enterprise Security Google Cloud Platform (GCP) Computer Network Operations Change Management Processes Information Systems Security Customer Information Systems React.js (Javascript Library) Python (Programming Language) Enterprise Application Software Endpoint Detection And Response Troubleshooting (Problem Solving) Host Based Security System (HBSS) Intrusion Detection And Prevention CompTIA Cybersecurity Analyst (CySA+) Plan Of Action And Milestones (POA&M) Security Information And Event Management (SIEM) Certified Information Systems Security Professional Top Secret-Sensitive Compartmented Information (TS/SCI Clearance), Leidos has an exciting opportunity for Cybersecurity Engineer SME in our Intel Security Sector's Analysis Solutions Business Area. Our talented team is at the forefront in Security Engineering, Computer Network Operations (CNO), Mission Software, Analytical Methods and Modeling, Signals Intelligence (SIGINT), and Cryptographic Key Management. At Leidos, we offer competitive benefits, including Paid Time Off, 11 paid Holidays, 401K with a 6% company match and immediate vesting, Flexible Schedules, Discounted Stock Purchase Plans, Technical Upskilling, Education and Training Support, Parental Paid Leave, and much more. Join us and make a difference in National Security!, The Cybersecurity Engineer SME is responsible for protecting the customer's information systems, networks, and infrastructure from cyber threats and vulnerabilities. This role supports the design, implementation, and maintenance of security controls that safeguard mission systems and ensure compliance with applicable cybersecurity policies, standards, and regulatory frameworks. The Cybersecurity Engineer SME will work closely with Information Systems Security Engineers (ISSEs), Information Systems Security Managers (ISSMs), software developers, systems engineers, and government stakeholders throughout the DevSecOps lifecycle. The candidate will perform a full spectrum of cybersecurity engineering activities, including implementing security technologies, supporting incident response efforts, and ensuring systems meet required security and compliance standards., * Plan, implement, manage, monitor, and upgrade security controls and tools used to protect enterprise systems and networks, while identifying opportunities to automate repeatable operations tasks.
- Design, configure, implement, troubleshoot, and maintain security technologies such as firewalls (security groups), endpoint protection tools (HBSS/Trellix), SIEM platforms (Splunk). Monitor system and network security using Security Information and Event Management (SIEM) tools such as Splunk Enterprise Security to detect, analyze, and respond to potential threats or anomalous activity.
- Support the investigation and remediation of cybersecurity incidents, including system or network breaches and malware infections. Participate in change management processes to ensure system changes maintain security compliance and do not introduce new vulnerabilities.
- Audit systems and configurations to ensure compliance with established cybersecurity policies, standards, and secure configuration baselines.
- Collaborate with engineering, development, and operations teams to integrate security controls into DevSecOps pipelines and system architectures.
- Continuously monitor security advisories, bulletins, and industry threat intelligence to stay informed of current vulnerabilities, threats, and trends. Assist with the implementation and enforcement of secure system configurations and cybersecurity compliance requirements.
- Support vulnerability management activities by reviewing scan results, assessing risk, and coordinating remediation efforts with system owners and technical teams., All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws. Related Jobs SME Cybersecurity Systems Engineer Leidos Gaithersburg, MD*On-Site Auditing Equities Analytics Scalability Market Data Data Storage Promulgation Data Analysis Cyber Defense Cyber Security Team Leadership Ancient History Computer Science Machine Learning Product Planning Security Controls Technical Standard Security Strategies Systems Engineering Information Systems User Interface (UI) GIAC Certifications User Experience (UX) Systems Architecture Information Assurance Continuous Monitoring Cyber Security Systems Artificial Intelligence Security Implementation IT Security Architecture Site Reliability Engineering Continuous Improvement Process Milestones (Project Management) Model Based Systems Engineering GIAC Certified Intrusion Analyst GIAC Certified Forensics Analyst Artificial Intelligence Infrastructure Application Programming Interface (API) Counter Intelligence Polygraph (CI Clearance) CompTIA Advanced Security Practitioner (CASP+) Security Information And Event Management (SIEM) Certified Information Systems Security Professional Top Secret-Sensitive Compartmented Information (TS/SCI Clearance) +0
Google Cybersecurity Senior Information Security Engineer Leidos Chantilly, VA*On-Site JIRA Linux DevOps Ansible Firewall NIST 800 Equities Scripting Terraform Automation Subnetwork Market Data NIST 800-37 NIST 800-53 AI Security Open Mindset Communication Routing Table Cloud Security System Software Network Routing Ancient History Network Security Agile Methodology Security Analysis Workflow Management Amazon Web Services Cloud Infrastructure Technological Change Programming Languages Continuous Monitoring Vulnerability Scanning Command-Line Interface Database Administration Security Implementation Bash (Scripting Language) Assessment And Authorization Information Systems Security Scrum (Software Development) Infrastructure as Code (IaC) Security Requirements Analysis Virtual Private Networks (VPN) Systems Development Life Cycle Software Development Life Cycle AWS Certified Cloud Practitioner Troubleshooting (Problem Solving) Certified Information Systems Security Professional Top Secret-Sensitive Compartmented Information (TS/SCI Clearance) +0
Google IT Support Cybersecurity Engineer SME Leidos Bethesda, MD*On-Site Linux CI/CD Splunk Nessus Rapid7 Ansible Auditing Firewall Equities Scripting SonarQube DevSecOps Pipelines Operations Automation Purchasing Upskilling Market Data Coordinating Oracle Cloud Cryptography Investigation Cyber Security Key Management Risk Management Authentications Cloud Computing Ancient History Network Security Security Controls Incident Response CompTIA Security+ Digital Forensics System Monitoring Endpoint Security Cyber Engineering Analytical Method Windows PowerShell AWS CloudFormation Systems Engineering
Requirements
- Experience implementing and managing Security Information and Event Management (SIEM) tools such as Splunk or similar platforms. Experience working with endpoint and network security technologies, including IDS/IPS, HBSS/Trellix, and related defensive security tools.
- Experience reviewing and analyzing cybersecurity event logs to identify indicators of compromise or suspicious activity. Experience supporting incident response plans, vulnerability management programs, risk management plans, and Plans of Action and Milestones (POA&Ms).
- Experience conducting or supporting technical cybersecurity assessments and security audits. Experience identifying system vulnerabilities and instances of non-compliance with cybersecurity standards and regulatory requirements. Experience collaborating with DevSecOps teams to review vulnerability scan results and support remediation of findings.
- Experience supporting the Risk Management Framework (RMF) authorization process by reviewing security documentation and providing risk-based recommendations to stakeholders regarding system risk posture as part of Authority to Operate (ATO) activities. Manage and track Plans of Action and Milestones (POA&Ms) for customer-sponsored systems, coordinating with key stakeholders including ISSOs, ISSEs, ISSMs, and Security Control Assessors (SCAs)
- Experience applying system security engineering principles in areas such as system security design, lifecycle engineering, authentication and authorization mechanisms, cryptography, intrusion detection, contingency planning, incident handling, auditing, configuration management, and change control.
- Professional cybersecurity certifications such as Security+, CISSP, CySA+, CEH, or GCIH.
- Education/Experience: Requires MS degree and 15 or more years of prior relevant experience. Additional years of experience may be substituted in lieu of a degree.
**To be considered must have an active TS/SCI with polygraph security clearance, * Experience with cybersecurity tools such as Rapid7, Tenable/Nessus, HBSS/Trellix, SonarQube, or endpoint detection and response (EDR) platforms, as well as using STIG viewers and compliance tools to assess systems against established security configuration baselines.
- Experience implementing and managing network and application firewalls, incident detection platforms, and digital forensic tools.
- Experience with automation tools such as Ansible or CloudFormation to support infrastructure and security automation. Experience with Agile software development environments and scripting/programming languages such as Python or PowerShell. (e.g., React).
- Familiarity with cloud computing environments, including AWS, Oracle Cloud, or Google Cloud Platform (GCP).
- Experience with system monitoring and health tools such as SolarWinds.
- Experience working with DevSecOps pipelines and CI/CD security tools.
- Experience administering or securing systems in Linux environments (Red Hat)., Time Off Management Security Engineering Software Development Contingency Planning Signals Intelligence Programming Languages Regulatory Frameworks Vulnerability Scanning Security Configuration Cyber Security Policies Configuration Management Vulnerability Management Certified Ethical Hacker Cyber Security Standards Cybersecurity Compliance Risk Management Framework Authorization (Computing) Cyber Threat Intelligence Cyber Security Assessment IT Security Documentation Agile Software Development Splunk Enterprise Security Google Cloud Platform (GCP) Computer Network Operations Change Management Processes Information Systems Security Customer Information Systems React.js (Javascript Library) Python (Programming Language) Enterprise Application Software Endpoint Detection And Response Troubleshooting (Problem Solving) Host Based Security System (HBSS) Intrusion Detection And Prevention CompTIA Cybersecurity Analyst (CySA+) Plan Of Action And Milestones (POA&M) Security Information And Event Management (SIEM) Certified Information Systems Security Professional
Benefits & conditions
Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available at www.leidos.com/careers/pay-benefits .