Principal Information Systems Security Engineer with Security Clearance
R-00120556 Description Are you ready to work on projects that can potentially change the world? Join us at Leidos, where your most important work is ahead! You will enjoy great benefits such as 5 weeks of Paid Time Off, Flexible Schedules, Discounted Stock Purchase Plans, Unlimited Education and Training Support, Parental Paid Leave and more! If this sounds like a place you can thrive, keep reading! The Leidos Intelligence Group has a career opportunity for a Principal Information Systems Security Engineer (ISSE) to perform on our newly awarded Leidos-led Prime large, multi-year contract, at our customer site in Annapolis Junction, MD.
The program supports the security, development, integration/testing, deployment, and sustainment of large collection mission systems.
The work has high visibility and offers YOU the opportunity to provide system security engineering, as a member of a high-performing System Security team; and collaborate with cross-functional teams to support the Secured System Development Life Cycle of existing capabilities, explore, and implement emerging technologies, and solve complex problems with true mission relevance.
Primary Responsibilities Manages the security posture of upcoming deployments and performs and/or reviews technical security assessments of computing environments to identify points of vulnerability, non-compliance with established Information Assurance (IA) standards and regulations and recommend mitigation strategies.
Validates and verifies system security requirements definitions and analysis and establishes system security designs.
Designs, develops, implements and/or integrates IA and security systems and system components including those for networking, computing, and enclave environments to include those with multiple enclaves and with differing data protection/classification requirements.
Supports QRCs and builds IA into systems deployed to operational environments.
Assists architects and systems developers in the identification and implementation of appropriate information security functionality to ensure uniform application of Agency security policy and automation to enterprise solutions.
Supports the building of security architectures.
Enforce the design and implementation of trusted relations among external systems and architectures.
Assesses and mitigates system security threats/risks throughout the program life cycle.
Contributes to the security planning, assessment, risk analysis, risk management, certification and awareness activities for system and networking operations.
Reviews Assessment and Authorization (A&A) documentation, providing feedback on completeness and compliance of its content.
Applies system security engineering expertise in one or more of the following:
system security design process; engineering life cycle; information domain; cross domain solutions; commercial off-the-shelf and government off- the-shelf cryptography; identification; authentication; and authorization; system integration; risk management; intrusion detection; contingency planning; incident handling; configuration control; change management; auditing; certification and accreditation process; principles of IA (confidentiality, integrity, non-repudiation, availability, and access control); and security testing.
Supports security authorization activities in compliance with NSA/CSS and DoD Risk Management Framework (RMF).
Basic Qualifications Active TS/SCI with polygraph security clearance, and the ability and willingness to maintain or upgrade as necessary while holding this position.
Bachelor's degree in a technical or related discipline (i.
e.
, computer science, information assurance, information security) from a regionally accredited college or university.
14
years of experience (12
years with an advanced degree, or 18
years with a high school diploma) as an ISSE or related role supporting IC or DoD classified programs and contracts of similar type (i.
e.
, high-performing, large scope, technical complexity).
Compliant with DoD 8570.
01-M and Cyberspace Workforce Improvement Program (CWIP) at Information Assurance System Architecture and Engineering (IASAE) Level III (CISSP-ISSEP, CISSP-ISSAP).
Certification must be active and in good standing at the start of and during performance.
Travel to CONUS/OCONUS is required.
Required Individual Capabilities/Experience Mission-focused Cybersecurity solutions (i.
e.
, support architecture and implementation) Demonstrated operational proficiency with internetworking and server technologies (i.
e.
, Routing, Switching, TCP/IP, DNS, RHEL, Windows) Practitioner of information security (IS) and project management principles.
Knowledgeable with and implement applicable IS laws, regulations, policy, standards and procedures.
Security control selection, implementation, and testing (system and application) Breadth of knowledge on IA tools and technologies (i.
e.
, Splunk, Nessus, VPN, IDS/IPS, Firewall) Proficient with NSA/CSS IA Analysis and Reporting tools and corporate repositories Proficient with STE/STN Playbooks, implementation, and compliance Effective interpersonal and communications skills Outstanding technical writing and presentation skills Team player, working with dynamic teams, and with minimal guidance.
Ability to train and oversee the technical work of less experience personnel.
Pay Range:
Pay Range $142,350.
00 - $257,325.
00 The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary.
Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
Recommended Skills Access Controls Architecture Assessments Auditing Automation Certified Information Systems Security Professional Estimated Salary: $20 to $28 per hour based on qualifications.
The program supports the security, development, integration/testing, deployment, and sustainment of large collection mission systems.
The work has high visibility and offers YOU the opportunity to provide system security engineering, as a member of a high-performing System Security team; and collaborate with cross-functional teams to support the Secured System Development Life Cycle of existing capabilities, explore, and implement emerging technologies, and solve complex problems with true mission relevance.
Primary Responsibilities Manages the security posture of upcoming deployments and performs and/or reviews technical security assessments of computing environments to identify points of vulnerability, non-compliance with established Information Assurance (IA) standards and regulations and recommend mitigation strategies.
Validates and verifies system security requirements definitions and analysis and establishes system security designs.
Designs, develops, implements and/or integrates IA and security systems and system components including those for networking, computing, and enclave environments to include those with multiple enclaves and with differing data protection/classification requirements.
Supports QRCs and builds IA into systems deployed to operational environments.
Assists architects and systems developers in the identification and implementation of appropriate information security functionality to ensure uniform application of Agency security policy and automation to enterprise solutions.
Supports the building of security architectures.
Enforce the design and implementation of trusted relations among external systems and architectures.
Assesses and mitigates system security threats/risks throughout the program life cycle.
Contributes to the security planning, assessment, risk analysis, risk management, certification and awareness activities for system and networking operations.
Reviews Assessment and Authorization (A&A) documentation, providing feedback on completeness and compliance of its content.
Applies system security engineering expertise in one or more of the following:
system security design process; engineering life cycle; information domain; cross domain solutions; commercial off-the-shelf and government off- the-shelf cryptography; identification; authentication; and authorization; system integration; risk management; intrusion detection; contingency planning; incident handling; configuration control; change management; auditing; certification and accreditation process; principles of IA (confidentiality, integrity, non-repudiation, availability, and access control); and security testing.
Supports security authorization activities in compliance with NSA/CSS and DoD Risk Management Framework (RMF).
Basic Qualifications Active TS/SCI with polygraph security clearance, and the ability and willingness to maintain or upgrade as necessary while holding this position.
Bachelor's degree in a technical or related discipline (i.
e.
, computer science, information assurance, information security) from a regionally accredited college or university.
14
years of experience (12
years with an advanced degree, or 18
years with a high school diploma) as an ISSE or related role supporting IC or DoD classified programs and contracts of similar type (i.
e.
, high-performing, large scope, technical complexity).
Compliant with DoD 8570.
01-M and Cyberspace Workforce Improvement Program (CWIP) at Information Assurance System Architecture and Engineering (IASAE) Level III (CISSP-ISSEP, CISSP-ISSAP).
Certification must be active and in good standing at the start of and during performance.
Travel to CONUS/OCONUS is required.
Required Individual Capabilities/Experience Mission-focused Cybersecurity solutions (i.
e.
, support architecture and implementation) Demonstrated operational proficiency with internetworking and server technologies (i.
e.
, Routing, Switching, TCP/IP, DNS, RHEL, Windows) Practitioner of information security (IS) and project management principles.
Knowledgeable with and implement applicable IS laws, regulations, policy, standards and procedures.
Security control selection, implementation, and testing (system and application) Breadth of knowledge on IA tools and technologies (i.
e.
, Splunk, Nessus, VPN, IDS/IPS, Firewall) Proficient with NSA/CSS IA Analysis and Reporting tools and corporate repositories Proficient with STE/STN Playbooks, implementation, and compliance Effective interpersonal and communications skills Outstanding technical writing and presentation skills Team player, working with dynamic teams, and with minimal guidance.
Ability to train and oversee the technical work of less experience personnel.
Pay Range:
Pay Range $142,350.
00 - $257,325.
00 The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary.
Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
Recommended Skills Access Controls Architecture Assessments Auditing Automation Certified Information Systems Security Professional Estimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
