Leidos has a new opportunity for a Sr. Information System Security Engineer in their Intel Sector's Cyber & Analytics Business Area. The role requires a solid understanding of security practices and policies, hands-on vulnerability testing experience, and experience applying Risk Management Framework. The engineer will provide support for adding new capabilities to a complex system and become part of a team working on providing improvements to operational, test, integration, and development systems.
Requirements
- Validating and verifying system security requirements and establishing system security designs for large-scale systems, major system elements, and interfacing systems.
- Identifying and implementing appropriate information security architectures and functionality to ensure uniform application of security policy and enterprise solutions.
- Assessing and mitigating system security threats and risks throughout the program life cycle.
- Leading and/or contributing to the security planning, assessment, risk analysis, risk management, certification and awareness activities for various system and networking operations.
- Effectively collaborating with other internal technical experts on a day-to-day basis.
- Communicating with Program Managers and POCs from customer organizations when necessary, regarding Security issues of significant importance.
- Participating in Program Increment Planning and related agile team activities.
- Working closely with System Engineering, Test Engineering, and Integration teams to ensure that the hardware and software architecture and implementation meets security requirements.
- Analyzing and assessing system implementation against multiple security compliance policies and recommending and implementing enhancements.
- Evaluating security solutions to ensure they meet customer specified requirements for processing information.
- Evaluating the impact of new development on the operational security posture of the system.
- Evaluating, reviewing, and testing critical software.
- Proposing, assessing, coordinating, implementing, and enforcing information systems security policies, standards, and methodologies.
- Auditing and assessing system security configuration settings using common methodologies and tools.
- Managing and enforcing security strategies and policies that effect various components of geographically distributed systems.
- Providing configuration management for security-relevant information system software.
- Serving as a subject matter expert in security architecture to include providing advice to Program Managers, Customer technical experts, and internal program teams.
- Formulating security compliance requirements for new system features.
- Identifying and remediating security issues throughout the system.
- Supporting risk assessment, risk management, security control assessment, continuous monitoring, service design, and other IA program support functions.
- Working with development teams to enrich team-wide understanding of different types of vulnerabilities, attack vectors and remediation approaches.
- Planning and conducting security verification testing of relevant type 1 devices.
Benefits
- Paid Time Off
- 11 paid Holidays
- 401K with a 6% company match and immediate vesting
- Flexible Schedules
- Discounted Stock Purchase Plans
- Technical Upskilling
- Education and Training Support
- Parental Paid Leave
