Sr. Information Systems Security Engineer with Security Clearance

Sr. Information Systems Security Engineer with Security Clearance

This role provides information security solutions compliant with the Risk Management Framework (RMF) and ICD 503 Security Accreditation control as part of an Agile team. Responsibilities include collaborating with the customer security organization to ensure RMF processes are followed, policy is translated to operational procedures, proper tools are leveraged in the DevSecOps CI/CD Pipeline, verification that security policy and procedures are enforced, and some work generating body of evidence (BOE) information for security approval processes. This role installs and maintains security scanning tools, performs security scans, reviews scan results, and supports information system security officers (ISSOs). Flexible cross–training to also provide systems engineering, software development, training, security, and testing is also desired.

Primary Responsibilities:

1. Protect the organization's information and information systems from unauthorized access, use, disclosure, disruption, modification, perusal, inspection, recording and destruction.
2. Manage and enforce security strategies and policies within established guidelines and assist in the generation of BOE information.
3. Identify and define system security requirements.
4. Design computer security architecture and develop detailed cybersecurity designs.
5. Prepare and document standard operating procedures and protocols.
6. Configure and troubleshoot security infrastructure devices.
7. Develop technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks in a consultative role.

Basic Qualifications:

1. Requires BS degree and 8 or more years of prior relevant experience.
2. 5 years of system engineering or system administration experience coordinating with RMF stakeholders (ISSMs, SCAs, etc.) in testing, documenting, and achieving accreditation of systems throughout the development process, and achieving operational acceptance.
3. Conduct vulnerability routine scanning, provide formal and informal reports to IT team and track remediation efforts.
4. Proactively identify security flaws and vulnerabilities.
5. Continuously review security bulletins and related news; stay apprised of current threats and trends.
6. Track common vulnerabilities and exposures (CVE) based security threats and map to internal controls and remediation plans.
7. Audit systems for secure configuration.
8. Investigate and respond to cybersecurity incidents (system and/or network breaches, malware attacks) and implement forensic investigations.
9. System & network security monitoring with security information event management tools.
10. Participate in data and root cause analysis for each service impacting incident with all possible corrective actions for improvement.
11. Perform other duties as assigned.

At least 2 Certifications: CISSP, Splunk, Network+, Security+, OSCP, Windows, Cisco, CEH, Juniper, RHEL. Candidate must have an active TS/SCI with polygraph to be considered.

Preferred Qualifications:

1. Experience with at least one vulnerability scanning tool (AWS Inspector, Rapid 7 Nexpose, AppDetective, WebInspect, OWASP, etc.).
2. Dynamic Application Security Testing (DAST) and Static Application Security Testing (SAST).
3. Familiar with SIEM and Cloud Computing Technologies (AWS).
4. Experience with Agile Software Development.
5. Experienced with HBSS, IDS/IPS, VPNs, DISA STIGs.
6. Experience with RHEL.
7. Experience with system health tools (AppDynamics, SolarWinds).
8. Knowledge of potential attack vectors such as XSS, injection, hijacking, social engineering.
9. Splunk end user experience with knowledge of how to create Splunk Dashboards is a plus.
10. OS patching experience, Linux command line experience, Microsoft Windows experience, Automation experience.

Pay Range: Pay Range $101,400.00 – $183,300.00. The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.