Job was saved successfully.
Job was removed from Saved Jobs.

Job Details


Security Engineer ( R-00067988 )

Law Enforcement and Security

Diplomatic Security



Baltimore, Maryland, United States


Job Description:

Leidos Government Health & Safety Solution Group in Windsor Mill, MD in support of the End-User Centric IT Support (ECIS) Contract for Centers for Medicare and Medicaid Services (CMS) is looking to improve and advance the organization. Our program is focused on the delivery of end-user centric IT technology solution to our customer CMS where we are challenged to provide ongoing innovative and seamless experience while using CMS systems, applications and solutions, provide proactive secure development of IT integrations, concepts, and designs across the CMS enterprise and integrate end-user computing devices, conference room technology, infrastructure hardware and software, and user applications into a streamlined and seamless experience across the CMS user base. We foster a positive end-user experience while ensuring protection of our customer’s data.

The successful candidate will work within an ITIL environment with a large focus on DevOps. The candidate will be a member of the ECIS Security Engineering Team providing security engineering. The primary job responsibilities include providing security configuration recommendations, validating and documenting security settings on end user systems, testing applications for security issues, and developing necessary documentation to support an SSP and any FISMA audits.

Primary Responsibilities

Under the direction of the Security Engineering Lead, Product Manager, Program Manager and Deputy Program Manager, you will be responsible, to include, but not limited to:

  • Collaborate with Engineering and customer organizations on developing a secure baseline for end user systems.
  • Identify opportunities for improved user experience based on knowledge of existing solutions, current user technology, M365 Roadmap and industry trends. Understand requirements gathering, evaluation, testing and lifecycle management for hardware & software.
  • Support pilot and velocity migration of a Microsoft Office 365 implementation.
  • Developing all of the documentation to support an SSP and ATO decision.
  • Develop and produce compliance reports.
  • Work with engineering to mitigate vulnerabilities
  • Develop and implement policy in tools such as CrowdStrike and FireEye.
  • Provide changes on Group Policy (GPO) management as it relates to End Points and Applications.
  • Provide input on strategic planning for the ongoing design, development and improvement of end user systems, including requirements and implications as they relate to business continuity and disaster recovery and recommend solutions to Management for consideration.
  • Participate as required with DevOps oriented Agile Scum sprints for related projects and enhancements.
  • Stay abreast of current and emerging technologies, regularly analyzing and evaluating their impact and benefit to the customer and provide recommendations to management and leadership.

Basic Qualifications

  • Bachelor’s Degree in Systems Engineering, or Computer Science with 8-12 years of progressive experience. Experience may be substituted in lieu of degree.
  • Demonstrated understanding of security of Windows and Apple systems
  • Demonstrated understanding of Microsoft Intune / Microsoft Endpoint Manager
  • Demonstrated understanding of Mac Security
  • Experience deploying CrowdStrike policies
  • Demonstrated understanding of Risk Management Framework
  • Demonstrated experience with ATO process and getting systems an ATO
  • Demonstrated understanding of FedRamp certification
  • Demonstrated experience of documenting security requirements
  • Demonstrated experience of developing ATO documentation
  • Strong Active Directory Group/User object manipulation.
  • Solid understanding of Group Policies.
  • Experience in AWS Cloud Security
  • Strong technical writing and presentation skills with ability to effectively communicate with all levels of customer organization (technical resources, management)
  • Ability to obtain a Public Trust clearance
  • Experience implementing DISA STIGs

All candidates supporting the CMS programs must have lived in the United States at least three (3) out of the last five (5) years prior in order to be considered.

Preferred Qualifications

  • Previous experience working in an agile scrum environment.
  • Previous experience employing DevOps methodologies.

Pay Range: