Security Architect

Leidos•Bethesda, MD

1d•Hybrid

About The Position

Leidos is seeking a TS/SCI Security Engineer Architect to join the DOMEX Technology Platform (DTP) contract, supporting National Digital Exploitation & OSINT Center systems. This role involves providing technical security expertise in cloud and on-premise infrastructure, leading teams through the Risk Management Framework (RMF) to achieve system Authority to Operate (ATOs) across multiple domains. The ideal candidate is a demonstrated leader with experience in security technologies, industry best practices, and cross-functional collaboration in a fast-paced environment. While primarily on-site in Bethesda, MD, a flexible schedule is offered, with occasional remote work possible depending on client requirements.

Requirements

BS degree and 15+ years of prior relevant experience or Masters with 12+ years of prior relevant experience.
An active TS/SCI clearance with the ability to obtain/maintain a Polygraph.
At least one of the following DoD 8570.01-M IASAE Level II certifications: CISSP, CISSP-ISSAP, CISSP-ISSEP, CSSLP, or CASP+ CE. (Note: CISSP Associate is not acceptable).
Familiarity with NIST Special Publications (e.g., NIST SP 800-27, 30, 37, 53, 60).
Experience with CNSS publication CNSSI 1253.
Experience supporting DoD/IC systems through the entire Risk Management Framework (RMF) process to ATO.
Experience with incident response plans, plans of actions and milestones (POA&Ms), risk management plans, and vulnerability management plans.
Experience establishing and maintaining a System Security Engineering (SSE) management process to integrate security and privacy controls into complex hardware and software systems.
Experience managing a team of Cyber Security Engineers (CSEs) and Information System Security Officers (ISSOs).
Experience using Tenable Security Center and all components.
Experience with technologies such as Linux, Windows, firewalls, gateways, proxies, VPCs, and public key infrastructure.
Strong analytical, communication, problem-solving, and interpersonal skills.

Nice To Haves

An active TS/SCI clearance with Poly.
Certified Scrum Master (CSM) or SAFe Scrum Master (SSM) certification.
Experience with SAFe methodology.
Successfully achieved ATO under RMF+ across multiple domains.
Experience working in Agile and DevOpsSec environments.
Experience with big data applications.
Experience with Jira and Confluence.
Experience with OIDC or Oauth2.
Experience with any of the following technologies: Kubernetes, Rancher, or Cloudera containerization technologies.
CI/CD tools like Jenkins or Gitlab.
Elasticsearch.
Active Directory.
SQL and NoSQL databases.
Scripting languages like bash, python, or PowerShell.

Responsibilities

Provide management oversight and coordination of the DTP Security Team across multiple Task Orders, focusing on streamlining ATO management processes with engineering solutions and best practice efficiencies.
Provide technical guidance to team members while employing security solutions.
Directly interact with DIA CIO and NDOC Security POCs.
Create, improve, and maintain security policies and procedures.
Provide operating system hardening and system patching guidance based on DISA STIGs and NIST publications.
Analyze security incidents and provide recommendations for resolution.
Serve as Product Owner for the Security Engineering Team.
Manage individual project priorities, deliverables, and deadlines.
Foster an environment of collaboration with team members to provide quality service and products to the customer.