Lead Security Engineer Job at Leidos in Glen Echo

Description Join the Leidos Digital Modernization Health IT division as a Lead Security Engineer. This role is vital to supporting the essential mission of the National Institutes of Health (NIH) Center for Information Technology (CIT), which focuses on delivering enterprise services and infrastructure with an aim to enhance performance efficiencies, innovate improvements, and reduce risks. We are seeking candidates with extensive network expertise and a deep understanding of technological roadmaps to further strengthen the trusted partnership between NIH and Leidos. The ideal candidate will excel at maintaining stable operations while promoting innovation, automation, leadership, network security, performance metrics, and continuous improvements that support the NIH’s scientific mission. This program encompasses network operations, architecture and engineering support, and security engineering, including change management and special application deliveries. The Lead Security Engineer will be responsible for ensuring a robust security posture for a variety of network security tools and applications that support critical network security and infrastructure activities. Key responsibilities include maintaining the System Security Plan (SSP), managing cybersecurity governance and risk, overseeing security assessment and authorization (A&A) compliance, vulnerability management, and security configuration management. Additionally, the Lead Security Engineer will deliver client deliverables and create briefs for regular status updates and meetings. This role will require close collaboration across the program with both Network Operations and the architecture engineering group. Primary Responsibilities: Provide on-site support to the health agency. Lead a team of security engineers in delivering cybersecurity project management, continuous diagnostics and mitigation, threat mitigation, incident response, security architecture support, critical infrastructure protection, patch management, vulnerability management, risk management, information assurance, penetration testing, and Security Assessment and Authorization (SA&A) documentation. Manage security tools including Firewall, Web Filtering, Intrusion Prevention Systems (IPS), Intrusion Detection Systems (IDS), Network Access Control (NAC), Domain Name Systems (DNS), Remote Access VPN (RA-VPN), and Application Delivery solutions. Guide the implementation of new security projects, overseeing estimation, design, development, testing, deployment, and status tracking. Support operations teams with cybersecurity guidance for daily tasks. Prioritize and delegate tasks to the security engineering staff. Advise on best practices and secure methodologies to enhance the security posture of the information systems within designated areas. Assist service areas in implementing new security policies, procedures, mandates, and guidance (e.g., OMB, NIST 800-37 rev2). Required Qualifications: Bachelor's Degree in Computer Science, Information Systems, Engineering, or related discipline, or equivalent experience. A minimum of seven (7) years of Network Security experience. Active CCNP or CCIE Certification. At least three (3) years of experience leading a cybersecurity team. A minimum of three (3) years supporting SA&A activities for a Federal customer. In-depth understanding of current cybersecurity technologies as well as emerging capabilities. Proficient in security best practices, solutions, and risk management methodologies. Knowledge of cybersecurity threats, attacks, attack vectors, and methods of exploitation, including intrusion set tactics, techniques, and procedures (TTPs). Experience with enterprise firewall, IPS/IDS, DNS, PKI, and remote access VPN solutions. Must be able to obtain a public trust security clearance. Preferred Qualifications: Active CISSP certification is strongly desired. ITIL 4, CCIE, CCNP certifications. Operational experience in cloud or software-defined networking environments. Experience using ScienceLogic SL1. Proven track record of implementing continuous process improvement within IT infrastructures. Familiarity with ServiceNow Project Portfolio Management. Original Posting Date: 2024-11-13 This position is expected to remain open for at least 3 days following the original posting date. Pay Range: $87,100.00 - $157,450.00 Please note that this pay range represents a general guideline and is not a guarantee of compensation or salary; actual offers are based on various factors including responsibilities, experience, and internal equity among others.