Leidos Holding
Cybersecurity Systems Analyst
Leidos Holding, Tampa, Florida, us, 33646
DescriptionAre you ready to make an impact'
Leidos Digital Modernization is looking for your Cyber Systems talent to work with our USCENTCOM CITS effort at MacDill, AFB in Tampa, Florida.
Your best work is ahead.
As the Cybersecurity Systems Administrator, you will provide cyber technical support for Cyber Operations Security Operations Center (CSOC). You will configure, tune, optimize, and maintain critical security infrastructure to safeguard the organization's digital assets against evolving cyber threats. You will have oversight of the operation and maintenance of essential cybersecurity systems, including Security Information and Event Management (SIEM), Endpoint Detection Response (EDR) systems, network access control (Forescout), and Security Orchestration, Automation, and Response (SOAR) platforms.
Sound interesting' We invite you to apply!
What will you do in this role'
Configuration and Optimization:Collaborate with cybersecurity stakeholders to define and implement effective configurations for SIEM, EDR, and network access control solutions.Customize and optimize alert rules, correlation searches, and detection mechanisms within SIEM to align with security requirements and organizational objectives.Deploy new SIEM instances including clustered deployments and apps.Fine-tune EDR policies, rulesets, and scanning parameters to enhance endpoint visibility and threat detection capabilities.Configure network access control policies within Forescout to enforce security posture and mitigate risks associated with unauthorized devices.Support Linux environment, editing and maintaining Splunk configuration files and apps.Work with other Cybersecurity Engineering team members and will be required to interact with end users to gather requirements, perform troubleshooting, and aid with the creation of Splunk search queries and dashboards.Integrate cyber tools with variety of legacy data sources.Maintenance and Support:
Conduct routine maintenance tasks, such as software updates, patches, and performance tuning, to ensure the reliability and efficiency of cybersecurity systems.Provide timely support and troubleshooting assistance to address issues and incidents related to SIEM, EDR, Forescout, and SOAR platforms, collaborating with vendors or higher-level support as necessary.Perform regular system audits and health checks to identify vulnerabilities, misconfigurations, or performance issues, implementing corrective actions as needed.Provide occasional presentations of tool capabilities to leadershipPolicy Development and Compliance:Develop and enforce configuration standards, security policies, and operational procedures for cybersecurity systems, ensuring compliance with regulatory requirements and industry best practices.Monitor compliance with security policies and regulations through audits, assessments, and reporting activities, taking corrective actions to address any deviations or gaps.Collaborate with compliance and audit teams to streamline regulatory compliance efforts and demonstrate adherence to security standards.Integration and Automation:
Integrate cybersecurity systems with other security controls, data sources, and IT infrastructure components to create a cohesive security ecosystem.Develop and maintain automation scripts, playbooks, and workflows within the SOAR platform (Swimlane) to automate routine tasks, orchestrate incident response processes, and enhance operational efficiency.Explore opportunities for innovation and continuous improvement by leveraging automation, orchestration, and integration with emerging technologies and industry trends.Training and Knowledge Sharing:
Provide training sessions and document processes to empower internal teams with the knowledge and skills required to effectively utilize cybersecurity systems.Share expertise, best practices, and lessons learned with colleagues through formal and informal channels, fostering a culture of collaboration and knowledge sharing within the cybersecurity team.Required Qualifications Include:
Bachelor's degree in Computer Science, Information Security, or a related field and eight years', Associate's and nine years, Master's and three years' or High School diploma or GED with 10 years' relevant experience.Possess minimum of 3+ years of experience in cybersecurity administration, with a focus on configuring and managing SIEM, EDR, network access control, and SOAR platforms.Current Security+ce or GIAC certification (equivalent may be considered)Proficiency in Linux environments, including system administration tasks and shell scripting for automation and customization.Solid understanding of cybersecurity principles, threat landscapes, and best practices for configuring and tuning security tools.Strong analytical skills and attention to detail, with the ability to troubleshoot complex technical issues and optimize system performance.Excellent communication and collaboration skills, with the ability to interact effectively with technical and non-technical stakeholders.Demonstrated ability to work independently, prioritize tasks, and meet deadlines in a dynamic and fast-paced environment.Preferred Qualifications Include:
Other relevant certifications (e.g., CISSP, Splunk Core Certified Power User)Original Posting Date:
2024-08-30While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.
Pay Range:
Pay Range $81,250.00 - $146,875.00The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.About Leidos Leidos is a Fortune 500® innovation company rapidly addressing the world's most vexing challenges in national security and health. The company's global workforce of 47,000 collaborates to create smarter technology solutions for customers in heavily regulated industries. Headquartered in Reston, Virginia, Leidos reported annual revenues of approximately $15.4 billion for the fiscal year ended December 29, 2023. For more information, visit www.Leidos.com .Pay and Benefits Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available here .Securing Your Data Beware of fake employment opportunities using Leidos' name. Leidos will never ask you to provide payment-related information during any part of the employment application process (i.e., ask you for money), nor will Leidos ever advance money as part of the hiring process (i.e., send you a check or money order before doing any work). Further, Leidos will only communicate with you through emails that are generated by the Leidos.com automated system - never from free commercial services (e.g., Gmail, Yahoo, Hotmail) or via WhatsApp, Telegram, etc. If you received an email purporting to be from Leidos that asks for payment-related information or any other person a l information (e.g., about you or your previous employer), and you are concerned about its legitimacy, please make us aware immediately by emailing us at [email protected] .If you believe you are the victim of a scam, contact your local law enforcement and report the incident to the U.S. Federal Trade Commission .Commitment to Diversity All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.
Leidos Digital Modernization is looking for your Cyber Systems talent to work with our USCENTCOM CITS effort at MacDill, AFB in Tampa, Florida.
Your best work is ahead.
As the Cybersecurity Systems Administrator, you will provide cyber technical support for Cyber Operations Security Operations Center (CSOC). You will configure, tune, optimize, and maintain critical security infrastructure to safeguard the organization's digital assets against evolving cyber threats. You will have oversight of the operation and maintenance of essential cybersecurity systems, including Security Information and Event Management (SIEM), Endpoint Detection Response (EDR) systems, network access control (Forescout), and Security Orchestration, Automation, and Response (SOAR) platforms.
Sound interesting' We invite you to apply!
What will you do in this role'
Configuration and Optimization:Collaborate with cybersecurity stakeholders to define and implement effective configurations for SIEM, EDR, and network access control solutions.Customize and optimize alert rules, correlation searches, and detection mechanisms within SIEM to align with security requirements and organizational objectives.Deploy new SIEM instances including clustered deployments and apps.Fine-tune EDR policies, rulesets, and scanning parameters to enhance endpoint visibility and threat detection capabilities.Configure network access control policies within Forescout to enforce security posture and mitigate risks associated with unauthorized devices.Support Linux environment, editing and maintaining Splunk configuration files and apps.Work with other Cybersecurity Engineering team members and will be required to interact with end users to gather requirements, perform troubleshooting, and aid with the creation of Splunk search queries and dashboards.Integrate cyber tools with variety of legacy data sources.Maintenance and Support:
Conduct routine maintenance tasks, such as software updates, patches, and performance tuning, to ensure the reliability and efficiency of cybersecurity systems.Provide timely support and troubleshooting assistance to address issues and incidents related to SIEM, EDR, Forescout, and SOAR platforms, collaborating with vendors or higher-level support as necessary.Perform regular system audits and health checks to identify vulnerabilities, misconfigurations, or performance issues, implementing corrective actions as needed.Provide occasional presentations of tool capabilities to leadershipPolicy Development and Compliance:Develop and enforce configuration standards, security policies, and operational procedures for cybersecurity systems, ensuring compliance with regulatory requirements and industry best practices.Monitor compliance with security policies and regulations through audits, assessments, and reporting activities, taking corrective actions to address any deviations or gaps.Collaborate with compliance and audit teams to streamline regulatory compliance efforts and demonstrate adherence to security standards.Integration and Automation:
Integrate cybersecurity systems with other security controls, data sources, and IT infrastructure components to create a cohesive security ecosystem.Develop and maintain automation scripts, playbooks, and workflows within the SOAR platform (Swimlane) to automate routine tasks, orchestrate incident response processes, and enhance operational efficiency.Explore opportunities for innovation and continuous improvement by leveraging automation, orchestration, and integration with emerging technologies and industry trends.Training and Knowledge Sharing:
Provide training sessions and document processes to empower internal teams with the knowledge and skills required to effectively utilize cybersecurity systems.Share expertise, best practices, and lessons learned with colleagues through formal and informal channels, fostering a culture of collaboration and knowledge sharing within the cybersecurity team.Required Qualifications Include:
Bachelor's degree in Computer Science, Information Security, or a related field and eight years', Associate's and nine years, Master's and three years' or High School diploma or GED with 10 years' relevant experience.Possess minimum of 3+ years of experience in cybersecurity administration, with a focus on configuring and managing SIEM, EDR, network access control, and SOAR platforms.Current Security+ce or GIAC certification (equivalent may be considered)Proficiency in Linux environments, including system administration tasks and shell scripting for automation and customization.Solid understanding of cybersecurity principles, threat landscapes, and best practices for configuring and tuning security tools.Strong analytical skills and attention to detail, with the ability to troubleshoot complex technical issues and optimize system performance.Excellent communication and collaboration skills, with the ability to interact effectively with technical and non-technical stakeholders.Demonstrated ability to work independently, prioritize tasks, and meet deadlines in a dynamic and fast-paced environment.Preferred Qualifications Include:
Other relevant certifications (e.g., CISSP, Splunk Core Certified Power User)Original Posting Date:
2024-08-30While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.
Pay Range:
Pay Range $81,250.00 - $146,875.00The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.About Leidos Leidos is a Fortune 500® innovation company rapidly addressing the world's most vexing challenges in national security and health. The company's global workforce of 47,000 collaborates to create smarter technology solutions for customers in heavily regulated industries. Headquartered in Reston, Virginia, Leidos reported annual revenues of approximately $15.4 billion for the fiscal year ended December 29, 2023. For more information, visit www.Leidos.com .Pay and Benefits Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available here .Securing Your Data Beware of fake employment opportunities using Leidos' name. Leidos will never ask you to provide payment-related information during any part of the employment application process (i.e., ask you for money), nor will Leidos ever advance money as part of the hiring process (i.e., send you a check or money order before doing any work). Further, Leidos will only communicate with you through emails that are generated by the Leidos.com automated system - never from free commercial services (e.g., Gmail, Yahoo, Hotmail) or via WhatsApp, Telegram, etc. If you received an email purporting to be from Leidos that asks for payment-related information or any other person a l information (e.g., about you or your previous employer), and you are concerned about its legitimacy, please make us aware immediately by emailing us at [email protected] .If you believe you are the victim of a scam, contact your local law enforcement and report the incident to the U.S. Federal Trade Commission .Commitment to Diversity All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.