Cyber Security Architect ( R-00064517 )
The Defense Group of Leidos has an open position for a Cyber Security Architect. The selected candidate will be a member of the Cyber Security Service Provider (CSSP) Team supporting DISA GSM-O II program in support of DISA Task Number 09 (TN09). Main Job function is to perform network architecture reviews, provide recommendations on network security strategy and network instrumentation, and provide expertise on security data identification, acquisition, and assistance in development of cyber solutions. Travel is limited to 10%, and directly dependent on COVID-19 restrictions.
Perform as technical Subject Matter Expert (SME) to the DISA Cyber Security Service Provider (CSSP) Program Management Office (PMO) as Cyber Security Architect.
Identify security relevant data in both traditional and cloud mission areas, and provide formal recommendations to stakeholders concerning Minimum Viable defense Products (MVdP).
Perform as lead CSSP liaison with Cloud Service Providers and internal DISA Data Acquisition teams, concerning the ingest of mission-relevant security data.
Research and Develop Defensive Cyber Operations (DCO) security strategies across multiple Areas of Responsibility (AOR).
Conduct network security architecture reviews, and develop security solutions for Mission Partners aligning to DISA CSSP offerings.
Perform periodic Mission Partner reviews to assess and verify the effective instantiation of traditional security appliances, and Cloud Native Technologies.
Conduct and deliver weekly and monthly status updates to government representatives.
8570 IAT Level 2 certification (Security+ CE, CCNA Security, or equivalent) with a IASAE II Specialty (CASP+ CE, CISSP, or equivalent).
Bachelor’s Degree with 8+ years of experience (experience may be used in lieu of a degree).
Current DoD Secret clearance.
Experience with Azure Sentinel, and AWS Security Hub, Detective, Inspector, GuardDuty.
Experience with AWS CloudFormation, and Azure Resource Manager (ARM) development.
Experience with FedRAMP and NIST 800-53 control mapping.
Experience with MITRE ATT&CK.
Motivated self-starter with strong written and verbal communication skills.
Active TS/SCI clearance.
Experience w/ DoD and DISA Networks.
Familiarity with DISA JRSS.
Experience with Endpoint Detection and Response.
Experience with developing cloud security strategies.
Knowledge of DoDI 8530 Cybersecurity Activities Support to DoDIN Operations.
Knowledge of DoD Cloud Computing Security Requirements Guide (CC SRG).
CCNA/CCNP in Security.
AWS Solutions Architect – Associate.
AWS Certified Security – Specialty.
Microsoft Certified: Azure Security Engineer Associate.
Microsoft Security Operations Analyst Associate.
Experience with developing data push and pull solutions in multiple scripting languages.
Understanding of common data log formats (JSON, XML, CSV), and experience with transforming subsets of the data for ingest by automated monitoring systems.
Proficiency in Python, Go, or Node.JS.
Experience in implementing/developing Splunk Technology Add Ons.
Experience with DevSecOps, Infrastructure as Code (IAC) Continuous Integration/Continuous Delivery (CI/CD).