Cyber Engineer

Looking for an opportunity to make an impact?

At Leidos, we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customers’ success. We empower our teams, contribute to our communities, and operate sustainably. Everything we do is built on a commitment to do the right thing for our customers, our people, and our community. The Leidos National Security Sector (NSS) combines technology-enabled services and mission software capabilities in the areas of cyber, logistics, security operations, and decision analytics to support our defense and intel customers’ mission to defend against evolving threats around the world.

Your greatest work is ahead!

The Multi-domain Solutions Division (MDS) within the Leidos National Security Sector is seeking a skilled Cyber Engineer to join a new cyber security program and play a key role in supporting government-critical systems. You will be part of a program that oversees development, integration, delivery, and operations and maintenance of IT managed security services, which encompasses support to monitor the cybersecurity threat and security posture situational awareness for the enterprise. This opportunity is in anticipation of a future contract award!

What you’ll be doing:

• Cyber Engineer to contribute to the design, implementation, and management of our cybersecurity infrastructure. 
• Support security operations, implement security controls, and respond to incidents to ensure the protection of critical systems and sensitive data.
• Work closely with senior engineers, security analysts, and IT teams to assess security vulnerabilities, optimize existing solutions, and enhance overall security posture. 
• Development of software and hardware for solutions in support of offensive and defensive security, researching cyber technology domains for trends, vulnerabilities or known flaws to ensure that critical missions are resilient to cyber exploits and attacks. 
• Implement coding foundation in various languages to create tools and techniques, perform code analysis, conduct code manipulation and develop coding solutions tailored to the area of need. 
• Offensive development responsibilities include vulnerability research and analysis, reversing engineering threats to determine methods of exploitation, malware research, researching innovative tools and techniques, developing malicious payloads, and manipulating code execution. 
• Defensive development responsibilities include protection of data, networks and net-centric capabilities, as well as detection of, identification of and response to attacks. 
• Secure development environments and software through application security architecture software evaluations web application vulnerability assessment penetration testing and fuzzing, malware research and vulnerability mitigation.
• Work independently to achieve day-to-day objectives with significant impact on operational results or project deliverables. 
• Responsible for entire projects or processes within a technical area. 
• Deploy, configure, and maintain cybersecurity tools such as firewalls, endpoint detection and response (EDR), intrusion detection/prevention systems (IDS/IPS), and web application firewalls (WAFs).
• Assist in the implementation and enforcement of security policies, procedures, and best practices based on industry standards (NIST, CIS, ISO 27001).
• Regularly apply system and application patches to mitigate vulnerabilities and maintain compliance.
• Monitor and analyze security alerts and events using Security Information and Event Management (SIEM) tools.
• Investigate and respond to security incidents, including malware infections, phishing attempts, and unauthorized access attempts.
• Assist in conducting root cause analysis (RCA) and implementing corrective actions to prevent future incidents.
• Collaborate with the security operations center (SOC) to escalate and resolve complex security events.
• Conduct regular vulnerability scans and assess findings to identify security weaknesses.
• Assist with the remediation of vulnerabilities by collaborating with system administrators and developers.
• Participate in security risk assessments to evaluate and mitigate potential threats.
• Support identity and access management processes, including provisioning, deprovisioning, and enforcing least privilege access.
• Assist in managing multi-factor authentication (MFA) and privileged access management (PAM) systems.
• Perform periodic audits to ensure access control policies are being enforced.
• Assist with securing cloud environments (AWS, Azure, or Google Cloud) by implementing appropriate security controls.
• Support the configuration and management of VPNs, network segmentation, and other secure connectivity solutions.
• Monitor cloud-based security tools and analyze logs to detect suspicious activity.
• Develop and maintain security automation scripts using Python, PowerShell, or Bash to improve security processes.
• Assist in integrating security tools with CI/CD pipelines to enhance DevSecOps initiatives.
• Continuously improve and optimize security processes through automation and documentation.
• Support compliance efforts by ensuring systems adhere to regulatory requirements such as HIPAA, PCI-DSS, GDPR, and SOC 2.
• Document security processes, policies, and incident response procedures to ensure alignment with compliance frameworks.
• Participate in internal and external audits, ensuring that security controls are properly documented and enforced.

What does Leidos need from me?

• Active Top Secret/SCI (TS/SCI) with Polygraph security clearance required. Must be U.S. Citizen.
• Bachelor's degree and 4 to 8 years of prior relevant experience. Experience may be considered in lieu of a degree.
• Understanding of DoD IT security protocols and requirements
• Hands-on experience with security tools such as SIEM, EDR, firewalls, IDS/IPS, and vulnerability scanners.
• Basic understanding of cloud security concepts and secure cloud environments (AWS, Azure, or Google Cloud).
• Familiarity with incident response processes and techniques for investigating security incidents.
• Working knowledge of compliance frameworks such as NIST, CIS, HIPAA, PCI-DSS, or ISO 27001.
• Basic scripting and automation skills (PowerShell, Bash, or Python).

Favorable if you have:

• Certified Information Systems Security Professional (CISSP).
• GIAC Security Expert (GSE) or other GIAC certifications.
• Certified Ethical Hacker (CEH) or Offensive Security Certified Professional (OSCP).
• AWS Certified Security – Specialty, Azure Security Engineer Associate, or Google Professional Cloud Security Engineer.
• Certified Cloud Security Professional (CCSP).
• Experience conducting penetration testing, red team/blue team exercises, and vulnerability assessments.
• Knowledge of Zero Trust security models and micro-segmentation principles.

Original Posting:

For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

Pay Range:

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.