Information System Security Engineer

Leidos•Lorton, VA

1d•$69,550 - $125,725

About The Position

The Defense Sector at Leidos is looking for an Information System Security Engineer (ISSE) to support a fast-paced program with Air Force Life Cycle Management Center. The ISSE will provide comprehensive Cyber Infrastructure Support to a weapons system program with the Air Force. This role is critical in ensuring the security and integrity of program IT infrastructure, protecting sensitive data, and mitigating cyber threats. The ideal candidate will have a strong technical background in cybersecurity principles, tools, and best practices. As the ISSE, you will lead the design, implementation, and governance of security solutions across our enterprise environments. This role is pivotal in ensuring the confidentiality, integrity, and availability of cloud-hosted assets while enabling secure innovation at scale by working closely with cloud engineers, cybersecurity analysts, and program leadership to drive continuous improvement and deliver value to the mission.

Requirements

US Citizen with the ability to obtain a TS/SCI clearance prior to your start date with Leidos.
Bachelor’s degree with 2+ years of experience or Master’s degree. Additional experience may be considered in lieu of a degree.
Proven experience in cybersecurity engineering or related roles.
Hands-on experience with configuring cybersecurity tools and software for enterprise use, with a specific focus on Splunk, HBSS/ESS (Trellix), and ACAS (Nessus)
Familiarity with DoD cybersecurity frameworks such as Risk Management Framework (RMF)
Strong knowledge of network security, firewalls, intrusion detection/prevention systems, and encryption technologies.
Excellent problem-solving skills and attention to detail.
Strong communication skills for collaborating with technical and non-technical stakeholders.

Nice To Haves

DoD 8570 IAT Level II, IAM Level I, or DoD 8140 Intermediate certification or higher.
Working knowledge of cloud security and securing cloud-based infrastructure.
Experience securing classified DoD networks, such as networks connected to SIPR or JWICS
Knowledge of cloud-native security information and event management (SIEM) tools
Knowledge of cloud-native endpoint security tools
Familiarity with incident response processes and tools.
Experience with scripting or automation tools for security tasks.
Ability to work in a dynamic environment and adapt to changing priorities.
Experience using and interpreting vulnerability assessment or scanning tools
Experience with Agile framework and DevSecOps

Responsibilities

Help design an implement secure cloud infrastructure across platforms.
Define and enforce cloud security policies, standards, and automation frameworks.
Take part in threat modeling, risk assessments, and incident response for cloud-native applications and services.
Integrate security into CI/CD pipelines and DevOps workflows.
Support cloud identity and access management (ICAM), encryption, and key management systems.
Monitor cloud environments using SIEM, CSPM, CWPP, and other security tools.
Configure, tune, and monitor enterprise security tools
Monitor network and system security to identify and respond to vulnerabilities and incidents.
Conduct risk assessments and develop strategies to mitigate identified risks.
Collaborate with IT teams to ensure the integration of security measures into all infrastructure projects.
Develop and implement security policies, standards, and procedures to protect sensitive information.
Provide technical support and guidance on cybersecurity tools and technologies.
Stay updated on emerging cybersecurity threats and industry trends to enhance the organization's security posture.
Develop and refine documentation to gain and maintain DoD accreditation for the systems on the program