Sr. Cyber Security Engineer
About The Position
Leidos has an exciting opportunity for a Cyber Security Analyst (Senior) in our Intel Sector's Analysis Solutions Business Area (ASBA) . Our talented team is at the forefront in Security Engineering, Computer Network Operations (CNO), Mission Software, Analytical Methods and Modeling, Signals Intelligence (SIGINT), and Cryptographic Key Management. At Leidos , we offer competitive benefits , including Paid Time Off, 11 paid Holidays, 401K with a 6% company match and immediate vesting, Flexible Schedules, Discounted Stock Purchase Plans, Technical Upskilling, Education and Training Support, Parental Paid Leave, and much more. Join us and make a difference in National Security! Job Summary We have an IMMEDIATE NEED for a Cyber Security Engineer responsible for supporting the cyber security program and strategy at a tactical and operational level (network, infrastructure, applications, and databases) to ensure that security controls are functioning efficiently and effectively, more specifically in the realm of security logging, monitoring, alert management, incident handling vulnerability and configuration management. Candidates will work directly with Team leads and other cyber security engineers throughout a DevSecOps life cycle both on policy and technical implementation of technologies.
Requirements
- Experience utilizing and tuning Splunk Enterprise Security (or similar tool) to review audit logs to highlight notable events for further investigation or excluding as non-issue in the future
- Experience reviewing, understanding, and determining if we have evidence of impact from published vulnerabilities and reviewing system logs to determine if a published vulnerability is being actively exploited
- Experience documenting results after conducting security data calls
- Experience with incident detection, incident response and forensics activities
- Strong attention to detail with analytical mind and outstanding problem-solving skills
- Candidate must have a BS degree and 8 – 12 years of prior relevant experience to operate within the scope contemplated by the level.
- Will consider work experience in lieu of a degree.
- Candidate must have an active TS/SCI with a polygraph.
Nice To Haves
- Familiar with SEIM
- Familiar with Cloud Computing Technologies (AWS)
- Experienced with HBSS, IDS/IPS, VPNs, DISA STIGs
- Experience with RHEL
- Experience with Risk Management Framework
- Experience with Agile Software Development
- Knowledge of potential attack vectors such as XSS, injection, hijacking, social engineering
Responsibilities
- System & network security monitoring with security information event management tools.
- Conducts vulnerability routine scanning, provides formal and informal reports to IT team and tracks remediation efforts
- Investigate and respond to cyber security incidents (system and/or network breaches, malware attacks) and implement forensic investigations.
- Research and evaluate emerging cyber security threats and ways to manage them; proactively identify security flaws and vulnerabilities; and audit systems for secure configuration.
- Participate in data and root cause analysis for each service impacting incident with all possible corrective actions for improvement.
- Continuously review security bulletins and related news to stay apprised of current threats and trends.
Benefits
- Paid Time Off
- 11 paid Holidays
- 401K with a 6% company match and immediate vesting
- Flexible Schedules
- Discounted Stock Purchase Plans
- Technical Upskilling
- Education and Training Support
- Parental Paid Leave
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Number of Employees
11-50 employees
