Job was saved successfully.
Job was removed from Saved Jobs.

Job Details


Leidos

Security Engineer- TS/SCI ( R-00067176-OTHLOC-PL-2D0467 )

Law Enforcement and Security

Diplomatic Security

Yearly

No

Chandler, Arizona, United States

Description

Job Description:

Leidos is seeking a talented Security Engineer to join our team to support a federal customer within the Department of Homeland Security (DHS) Enterprise Security Operations Center (ESOC). The Senior Security Engineer provides support across a progressing agile team environment focused on supporting the ESOC Operations mission. The Security engineer will support the full system engineering life-cycle, including requirements analysis, design, development, integration, scripting, programming, test, documentation, and implementation following defined best practices and operational workflows. This role will engage in infrastructure solution design and architecture, information assurance, advisory, compliance, and risk management support.

Primary Responsibilities

  • Conceptualize, Design, Build, and Maintain current and future NOSC supported tools and platforms.
  • Manage multiple assignments, changing priorities, and work independently with little oversight.
  • Experience with Vulnerability Management tools such as Tenable.
  • Support all support, guidance and develop processes to evaluate and improve all operating systems, hardware support, software, firmware solutions and provide advisement concerning future purchase of the same.
  • Work closely with senior engineers, other team members and application owners to solve technical problems at the network, system and application levels.
  • Conduct periodic architectural reviews of installed sensors to assess effectiveness and propose optimal installation alternatives as required.
  • Conduct periodic reviews of sensor metric reports to evaluate and prioritize sensors for review and assessment.
  • Documentation and Reporting along with presentation, teamwork and DHS wide collaboration are among the expected duties and mission of the task order.
  • Define system security & design requirements to meet FISMA and FedRAMP compliance standards
  • Perform analysis of security posture by reviewing vulnerability and compliance scans and making recommendations for remediations and managing POAMs
  • Strong expertise in Security Audit and Assessment, ATO controls and security frameworks including NIST SP 800-53, FedRAMP, Risk Management Framework
  • Serve as vulnerability management analyst as primary responsibility
  • Perform information system security vulnerability scanning to discover and analyze vulnerabilities and characterize risks to networks, operating systems, applications, databases, and other information system components
  • Perform compliance scanning to analyze configurations and facilitate implementation of configurations and hardening settings for networks, operating systems, applications, databases, and other information system components
  • Perform information system security vulnerability scanning to discover and analyze vulnerabilities and characterize risks to networks, operating systems, applications, databases, and other information system components
  • Perform compliance scanning to analyze configurations and facilitate implementation of configurations and hardening settings for networks, operating systems, applications, databases, and other information system components

Basic Qualifications

  • The candidate shall have bachelor’s degree in Computer Science, Engineering, or related field and a minimum of 5 years of experience in system administration, database administration, network engineering, software engineering, or software development, with a concentration in Cybersecurity.

At least one of the following certifications: CASP, GCIH, GCWN, GISF, GISP, GSSP, GICSP, GSSP, SEI, CISSP, CCSP, CSSLP, SSCP, CCNP, CCNP Security, CCIE Security, CEH, ECSP, MCSE, RHCA, RHCE, VCP, VCAP, VCIX, VCDX

  • Experience administering Linux OS, particularly RedHat Enterprise
  • Experience with Suricata and Gigamon
  • Cloud and VMWare skills – Understanding of cloud terminology, architecture, and tools to include: installing, provisioning and monitoring
  • Strong capabilities to assist with automating manual installation and maintenance/patching tasks and utilization of such tools as provisioning environments with Ansible, Docker, etc.
  • Department of Homeland Security NOSC employees are required to obtain an Entry on Duty (EOD) clearance to support this program.

  • Expertise in vulnerability management processes and network and web vulnerability scanning.
  • At least 3-5 years’ experience conduction vulnerability assessments.
  • Hands-on experience with Tenable Nessus

Pay Range: