IT Security Engineer 2

Leidos•Huntsville, AL

3d•$107,900 - $195,050

About The Position

The IT Security Engineer is responsible for testing, evaluating, and supporting cybersecurity platforms, tools, and system integrations across the enterprise environment. This role ensures reliable operation, maintenance, and troubleshooting of hardware and software within distributed network infrastructures. The engineer will analyze and remediate network vulnerabilities based on security assessments, scan results, and findings provided by internal teams. This position requires close collaboration with cross-functional stakeholders to strengthen the organization’s overall security posture and ensure the effectiveness of implemented security controls.

Requirements

Bachelor's degree in information systems security, computer science, or related field preferred or equivalent combination of education and experience
Six or more years of experience in information systems security and/or network operations/support
Must possess a solid understanding of IT Security including network and host security products such as intrusion detection systems, firewalls, VPNs, anti-virus and anti-spyware systems and security tools such as vulnerability scanners, wireless network scanners, and packet analyzers
Possess a solid understanding of FISMA, NIST and other guidance applicable to Federal information systems
Experience with evaluating system, network, or infrastructure security controls against FISMA and NIST guidelines
Working knowledge of typical LAN/WAN technologies and protocols
Possess active security clearance or have the ability to acquire same at the ‘secret’ level
Experience working with Microsoft Office suite
Experience working with computer programming
Just possess strong written and oral communication skills, strong customer service qualities, and the ability to work in a team environment
Must be task and detail oriented and be able to work with limited supervision
Analytical and problem-solving skills
Interpersonal skills to interact with customers and team members
Organizational skills to balance and prioritize work

Nice To Haves

Experience with Nessus, BigFix, FireEye HX, and/or Splunk a plus

Responsibilities

Validate that system security controls are correctly implemented and remain effective throughout the system lifecycle.
Design or advise on technical solutions to complex problems which require extensive technical expertise and ingenuity.
Provide input to the Risk Management Framework process activities and related documentation (e.g., system life-cycle support plans, concept of operations, operational procedures, and maintenance training materials).
Lead all information system stakeholders by ensuring their assessment readiness, effective continuous monitoring, and ongoing adherence to risk management activities, while providing technical oversight and cybersecurity consultation.
Interpret patterns of noncompliance to determine their impact on levels of risk and/or overall effectiveness of the enterprise's cybersecurity program.
Performs security analysis of classified environments, threats, vulnerabilities and internal interfaces to define and assess compliance with accepted government standards and regulations.
Advise senior management, such as Authorizing Officials, Chief Information Officer (CIO), and Chief Information Security Officer (CISO) on cybersecurity risk levels and security posture.
Develop methods to monitor and measure risk, compliance, and assurance efforts.
Ensure selected security controls operate as intended in every phase of the information system lifecycle.
Coordinate with program security, cybersecurity management, stakeholders, and other relevant parties to clarify requirements and resolve issues while balancing mission needs against compliance mandates.