Security Architect

Leidos•Bethesda, MD

3d•$154,050 - $278,475•Hybrid

About The Position

Leidos has an exciting opening for a TS/SCI Security Engineer Architect working across several Task Orders under the DOMEX Technology Platform (DTP) contract supporting National Digital Exploitation & OSINT Center systems. This role offers the opportunity to have impact as part of a mission-focused, solutions-oriented, and adaptive team that values innovation, collaboration, and professional development. As the Security Engineering Architect Lead, your job is to provide technical security expertise in our cloud and on-premise infrastructure with a focus on leading teams through the Risk Management Framework to system ATOs across multiple domains. You will leverage your experience with security technologies and industry best practices while employing effective security solutions. You are a demonstrated leader, skilled at achieving cross-functional collaboration in a dynamic and fast-paced environment. While most work is conducted on-site at our client location in Bethesda, MD, we offer a flexible schedule and, occasionally, some tasks may be performed remotely. The percentage of remote work will vary based on client requirements/deliverables.

Requirements

BS degree and 15+ years of prior relevant experience or Masters with 12+ years of prior relevant experience
An active TS/SCI clearance with the ability to obtain/maintain a Polygraph
Have at least one of the following DoD 8570.01-M IASAE Level II certifications: CISSP, CISSP-ISSAP, CISSP-ISSEP, CSSLP, or CASP+ CE. NOTE: the CISSP Associate is not acceptable
Familiarity with NIST Special Publications e.g. NIST SP 800-27, 30, 37, 53, 60
Experience with CNSS publication CNSSI 1253
Experience supporting DoD/IC systems through the entire Risk Management Framework (RMF) process to ATO
Experience with incident response plans, plans of actions and milestones (POA&Ms), risk management plans, and vulnerability management plans
Experience establishing and maintaining a System Security Engineering (SSE) management process to integrate security and privacy controls into complex hardware and software systems
Experience managing a team of Cyber Security Engineers (CSEs) and Information System Security Officers (ISSOs)
Experience using Tenable Security Center and all components
Experience with technologies such as Linux, Windows, firewalls, gateways, proxies, VPCs, and public key infrastructure.
Strong analytical, communication, problem-solving, and interpersonal skills

Nice To Haves

An active TS/SCI clearance with Poly
Certified Scrum Master (CSM) or SAFe Scrum Master (SSM) certification
Experience with SAFe methodology
Successfully achieved ATO under RMF+ across multiple domains
Experience working in Agile and DevOpsSec environments
Experience with big data applications
Experience with Jira and Confluence
Experience with OIDC or Oauth2
Experience with any of the following technologies: Kubernetes, Rancher, or Cloudera containerization technologies
CI/CD tools like Jenkins or Gitlab
Elasticsearch
Active Directory
SQL and NoSQL databases
Scripting languages like bash, python, or PowerShell

Responsibilities

Provide management oversight and coordination of DTP Security Team across multiple Task Orders with a focus on streamlining ATO management processes with engineering solutions and best practice efficiencies
Provide technical guidance to team members while employing security solutions
Directly interact with DIA CIO and NDOC Security POCs
Create, improve, and maintain security policies and procedures
Provide operating system hardening and system patching guidance based on DISA STIGs and NIST publications
Analyze security incidents and provide recommendations for resolution
Serve as Product Owner for the Security Engineering Team
Manage individual project priorities, deliverables, and deadlines.
Foster an environment of collaboration with the different team members in the goal of providing quality service and product to our customer.