Cyber Security Engineer (Expert)

Description

Job Description:

Leidos is looking for an Information Assurance Analyst to support a large multiple hosting environments across multiple centers.

This role will be responsible for ensuring the security of critical computer systems and networks. The ideal candidate would have a solid understanding of cyber security methods and engineering best practices. Must be able to manage incident handling, incident analysis, processes/methodologies, and the development of best practices. Must have a strong understanding of adversary processes/methodologies/TTP to include emerging threats, and the ability to develop signatures and countermeasures.

In the role of Cyber Security Engineer, the candidate will be responsible for the following:

• Review and ensure compliance with customer security policies and requirements

• Conduct reviews of vulnerability and generic security scan results of both systems and networks to identify and mitigate security vulnerabilities

• Analyze and recommend measures to mitigate network-related risks

• Develop security policies to address unauthorized access and malicious code insertion

• Review new and existing system and network designs for compliance with security standards and best practices

• Participate in vulnerability assessments on new and existing systems/networks

• Provide support for security related issues

• Participate in forensic analysis in response to system/network vulnerabilities

• Provide architectural and technical guidance and recommendations for maintaining the security of systems and networks

• Verify and validate securing and hardening measures

Ensure all systems/networks conform to security policies, standards, and best practices

Basic Qualifications

• Active TS/SCI with Polygraph
• BS 12-15 years of prior relevant, additional experience in lieu of degree
• Experience implementing advanced cyber security methods to systems and networks in a complex environment
• Experience with Juniper and Cisco based networks.
• Experience working in Linux-based environments
• Understanding of networking environments to include IPv6 networking technologies (routing, switching, VLANs, subnets, firewalls); TCP/IP stacks; common networking protocols; and common enterprise technologies
• Proven knowledge of ICD-503 security model
• Experience documenting the body of evidence to support security review and accreditation to include system security plans, configuration management plans, standard operating procedures, and TEM documentation
• Understanding of IT security principals, technologies, and best practices to include access control; PKI and other encryption methods; network-based and host-based IDS/IPS; security configuration baselines (STIG, CIS, FISMA); auditing; vulnerability discovery and management, and computer logs
• Ability to work independently to identify errors, pinpoint root causes, document cause and effect, and devise solutions with minimal oversight
• Demonstrated experience in testing and implementing network vulnerability and protection methods
• Knowledge of information security concepts, policy frameworks, and best commercial practices
• Information Assurance Certifications (i.e. CISSP, CISA, GIAC, Security +, Certified Ethnical Hacker, etc.)
• Experience with security scanning and evaluation tools (Nessus, Retina, Wireshark, NMAP, EnCASE, etc.)
• Information Assurance Certifications (i.e. CISSP, CISA, GIAC, Security +, Certified Ethnical Hacker, etc.)

Travel: May require occasional travel throughout the continental U.S.

* As a condition of employment, this position requires the candidate pass both a customer required medical and psychological screening

Preferred Qualifications

• Advanced Degree in Computer Science, Engineering or related field
• JNCIA or JNCIP certification (Juniper)
• PCNSE certification (Palo Alto)
• RHCE certification (Red Hat)
• In-depth knowledge of Linux operating system variants

Pay Range:

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.