Security Team Lead ( R-00057681 )
Leidos Government Health & Safety Solutions is seeking a Security Team Lead on a large network services opportunity supporting the National Institute of Health (NIH) in the Bethesda, MD area.
- Lead a team of security engineers for delivery of Cybersecurity project management, continuous diagnostics and mitigation, threat mitigation and incident response, security architecture support, critical infrastructure protection, patch management, vulnerability management, risk management, information assurance, penetration testing, cybersecurity services, and Security Assessment and Authorization (SA&A) documentation.
- Provide a direct interface (Point of Contact) to the Chief Information Security Officer (CISO) and Deputy CISO when issues arise preventing the remediation of vulnerabilities and incidents.
- Manage Firewall, Web Filtering, Intrusion Prevention Systems (IPS), Intrusion Detection Systems (IDS), Network Access Control (NAC), Domain Name Systems (DNS), Remote Access VPN (RA-VPN), Application Delivery/Load Balancing, Secure Sockets Layer (SSL) Certificate Management. Traffic Monitoring, Infrastructure Monitoring and System Accreditation and Authorization
- Inform and escalate issues to the System Owner (SO) and Service Area Managers (SAMs) regarding security risk to include high/critical vulnerabilities, risk acceptance methods (e.g., waivers, Plans of Action and Milestones [POA&Ms])
- Recommend best business practices and secure methodologies to maintain and/or improve security posture of the information systems within the designated service area to the SAM and system owners;
- Provide support to service areas with implementing new security policy / procedures / mandates, processes, memos, and guidance (e.g., OMB, NIST 800-37 rev2)
- Manage Security Assessment & Authorization (SA&A) compliance
- CCNP, CCIE Certification and 7 years of Network Security experience
- Thorough knowledge of network security concepts with application knowledge of various enterprise security point technologies, managed security services, Security Information and Event Management solutions, packet analysis tools, cryptography and Active Directory / Kerberos authentication protocol
- Deep technical understanding of core current cybersecurity technologies as well as emerging capabilities
- Demonstrated experience working in large Federal agency preferably in HHS.
- Possess the knowledge of security best practices, security solutions, and methodologies for risk management
- Demonstrated understanding of the life cycle of cybersecurity threats, attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques and procedures (TTPs).
- Demonstrated advanced knowledge of industry accepted standards
- Experience with various SOC automation tools such as Splunk, Archer etc.
- 5+ years of intrusion detection and/or incident handling experience
- BS degree and 4 – 8 years of prior relevant experience
- Certifications: CISSP/CEH