Security Team Lead

Description Leidos Dig Mod Health IT division is seeking a Security Team Lead on a large network services opportunity supporting the Health Agency in Montgomery County, MD. This opportunity will support the very important mission of National Institutes of Health (NIH) Center for Information Technology (CIT), which provide enterprise services and infrastructure that seek to achieve service-level performance efficiencies, innovative improvements, optimal performance and risk reductions. We need key personnel hires with a deep knowledge of networks expertise and complexity and tech roadmap experience to contribute to the trusted NIH and Leidos partnership. Looking for experienced candidates that have the ability to maintain stable operations while delivering innovation, automation, leadership, network security and performance support/metrics, operations and continual improvement to advance the NIH scientific mission. This program consists of network operations, architecture and engineering support, security engineering, change management, and special application deliveries. The Security Team Lead will have the responsibility to ensure the adequate security posture for numerous network security tools and applications supporting network security and infrastructure activities. The responsibilities also include the maintenance of the System Security Plan (SSP), management of cybersecurity governance and risk, security assessment and authorization (A&A) compliance, vulnerability management, security configuration management, delivery of customer deliverables, and creation of customer briefs for status and regular meetings. The Security Team Lead will interface across the program ensuring support of the technical roadmap interfacing with Network Operations as well as the architecture engineering group. Primary Responsibilities: Provide on-site support to the health agency in MD. Lead a team of security engineers for delivery of Cybersecurity project management, continuous diagnostics and mitigation, threat mitigation and incident response, security architecture support, critical infrastructure protection, patch management, vulnerability management, risk management, information assurance, penetration testing, cybersecurity services, and Security Assessment and Authorization (SA&A) documentation. Manage Firewall, Web Filtering, Intrusion Prevention Systems (IPS), Intrusion Detection Systems (IDS), Network Access Control (NAC), Domain Name Systems (DNS), Remote Access VPN (RA-VPN), Application Delivery/Load Balancing, and Secure Sockets Layer (SSL) Certificate Management solutions. Lead implementation of new security projects including estimation, design, development, testing and deployment, and track status throughout. Support operations team with cybersecurity guidance for day-to-day operations. Prioritize and assign tasks to the security engineering staff. Recommend best business practices and secure methodologies to maintain and/or improve security posture of the information systems within the designated service area to the SAM and system owners. Provide support to service areas with implementing new security policy/procedures/mandates, processes, memos, and guidance (e.g., OMB, NIST 800-37 rev2). Required Qualifications: Bachelor's Degree in Computer Science, Information Systems, Engineering or other related discipline or equivalent related experience. Minimum of seven (7) years of Network Security experience. Active CCNP or CCIE Certification. Minimum of three (3) years of experience leading a cybersecurity team. Minimum three (3) years of experience supporting SA&A activities for a Federal customer. Deep technical understanding of core current cybersecurity technologies as well as emerging capabilities. Demonstrated understanding of security best practices, security solutions, and methodologies for risk management. Demonstrated understanding of the life cycle of cybersecurity threats, attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques and procedures (TTPs). Demonstrated experience working with enterprise firewall, IPS/IDS, DNS, PKI, and remote access VPN solutions. Must be able to obtain a public trust security clearance. Preferred Qualifications: Active CISSP certification strongly desired. ITIL 4, CCIE, CCNP. Operational experience with environments employing cloud or software-defined networking. Operational experience using ScienceLogic SL1. Demonstrated experience implementing successful continuous process improvement within an IT infrastructure environment. Experience using ServiceNow Project Portfolio Management.

#J-18808-Ljbffr