Security Engineering Lead
The Transportation and Border Security Services (T&BSS) Division has an opening in Northern Virginia for a Security Engineering Lead to support our TSA customer in their Security Operations Center. The Security Engineer will be a Lead, which means the candidate will need to be technically proficient, analytical, adept at problem-solving, able to prioritize multiple competing priorities, and skilled at delegating work among a team of security engineers. The Lead will ensure integration of tools and architectural features into existing infrastructure, guarantee enterprise security, and support cybersecurity tool design, development, deployment, and maintenance.
**This position offers remote flexibility. However, must be local to report onsite when needed.**
Lead the development and operation of log and monitoring management systems, security event monitoring systems, network-based and host-based intrusion detection systems, malware detection and enterprise-level antivirus solutions/systems, and encryptions standards
Produce system design documents. Support architectural analysis of cyber security features and existing system related to future needs and trends
Review and approve documentation and diagrams (e.g., system specifications)
Work closely with relevant stakeholders to solve technical problems at the network, system and application levels
Operate, manage, monitor and maintain network security devices and technologies, including firewalls, routers, VPN, IDS sensors, proxies, wireless access points, PKI, domain controllers, security information event managers, etc.
Establish SE processes, select and deploy tools to accomplish analysis, problem diagnosis and solution design, integration and test preparation, risk assessment and mitigation planning, and related activities
Lead team of application developers to design, build, deploy, and operate the tools that make Enterprise Security Architecture and Design a reality
Draft, review, and understand policies, controls and baselines for a wide range of operating systems (e.g. Windows, OS X, Linux, etc.), network equipment (e.g. routers, switches) and network security devices (e.g. firewalls, IDS sensors, proxy servers, VPN concentrators, etc.)
Ensure compliance with standards and policies, provide subject matter expertise on the practical application and implementation of best practices in an enterprise network security environment
Lead change, problem and incident management concepts by employing methodologies (e.g. ITIL, COBIT) and best practices
Sort, prioritize, and present big data on enterprise security events using dashboards, reports, and presentations
Minimum Requirements include:
Current Top Secret clearance
A minimum of 8 years of in Security Engineering and a Bachelors degree in Information Technology or related disciplines; years of experience may be considered in lieu of a degree
Must possess one of the following certifications; RHCE, AWS SA Professional, MCSE or CCNP
Experience installing, configuring, securing, and troubleshooting CentOS, and RHEL, and Linux Operation Systems
Extensive automation experience with PowerShell, Python, and Bash scripting for automating repeatable tasks and installations
Extensive knowledge of virtual and physical server operations and maintenance
Must be organized and possess keen attention to detail
Must possess strong written and verbal communication skills
Normal working hours of 8:00am – 5:00pm, however, actual hours may vary depending on mission requirements
Experience automating management tasks with Ansible, Puppet, or Chef
Expertise with Cloud Service Providers, cloud architectures, and cloud solutions
Experience working among different Cloud Provider environments (Azure, AWS, GCP)
Experience developing in Bash, Python, and/or Powershell
Experience working with SIEM tools such as Splunk to ingest, normalize, store, and maintain data from endpoint, network, and application source types.
Experience leading engineering team
Experience architecting, designing
The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.