640318 - IT Security Engineer
Description:
Leidos is seeking an IT Security Engineer for the ESA IV program supporting DOJ/ATF.
The candidate will be involved in a broad range of security tasks and issues supporting current day to day production operation as well as evaluation and assessment of new capabilities. These tasks may include incident response, vulnerability management, Information Assurance analysis (Certification and Accreditation, audits, annual security plans), security assessment of current and new system and product capabilities.
For vulnerability management tasks, the candidate will utilize enterprise tools (e.g. SPLUNK, BigFix, Nessus, DOJ SPDR) and their hands on system administration skills to identify, analyze and remediate issues.
The candidate will need to use these hands on skills and additional broad system security engineering skills to respond to real time production system issues/events or analyze new or enhancement capabilities.
For Information Assurance analysis tasks, the candidate will respond to Certification and Accreditation tasks, audit tasks and other system security tests. The candidate may act as the interface between auditors and system subject matter experts. This will require the candidate to understand the target systems to appropriately decompose inquiries to actionable items for SMEs, then validate the SME responses. The candidate should understand how to document system compliance with government security controls (e.g. 800-53, FISMA).
Clear verbal and written communication skills are essential. This position also requires good project planning skills to identify how to meet schedules, identify dependencies, and identify risks and work-arounds.
This position requires a security investigation completed by the ATF to permit access to customer-sensitive information.
Qualifications:
Required Skills:
General knowledge of enterprise scale IT systems, architectures and components (networking, security appliances, servers, and virtualization) particularly the system integration challenges balancing secure operations with operational need.
Experience with Windows administration including Active Directory. This should include ability to apply remote administration to evaluate and potentially correct system configurations.
Experience with one or more security tools (e.g. Nessus, Web Inspect, SPLUNK, DOJ SPDR) including running the tools and customizing queries and outputs.
Experience with one or more enterprise configuration management tools (e.g. Big Fix, SCCM) including running the tools and customizing queries and outputs.
Experience with supporting assessment of IT systems compliance with Federal IT Security standards (NIST 800-53, FISMA, CSAM))
Ability to respond to security audits and compliance assessments including decomposing auditor requests to actionable items, compiling and presenting security audit artifacts
Ability to evaluate IT system compliance with government and commercial security practices (e.g. DISA STIGS, SANS Top 25)
Working knowledge of Federal Certification and Accreditation practices
Solid communication and documentation skills
Desired Skills:
Windows administration skills: basic scripting, Group Policy management
Experience with enterprise security services (e.g. IDS, log aggregation, credential management, PKI, web/mail proxies and filters, end point integrity tools)
Experience with enterprise mobile device security management (e.g. Airwatch)
Familiarity with cloud computing and applicable security practices (e.g. FedRAMP)
Experience with ATF or DOJ
Ability to recognize security risks, document risk, and clearly communicate findings and recommendations.
Experience supporting Incident Response events
Experience supporting review and certification of Physical Security elements of a facility
Experience with Linux and/or Unix administration
EDUCATION &
Experience: Typically requires BS degree and 12 15 years of prior relevant experience or Masters with 10 13 years of prior relevant experience. May possess a Doctorate in technical domain.
Leidos Overview:
Leidos is a global science and technology solutions leader working to solve the world's toughest challenges in the defense, intelligence, homeland security, civil, and health markets. The company's 33,000 employees support vital missions for government and commercial customers. Headquartered in Reston, Virginia, Leidos reported pro forma annual revenues of approximately $10 billion for the fiscal year ended January 1, 2016 after giving effect to the recently completed combination of Leidos with Lockheed Martin's Information Systems & Global Solutions business (IS&GS). For more information, visit www.Leidos.com. The company's diverse employees support vital missions for government and commercial customers. Qualified women, minorities, individuals with disabilities and protected veterans are encouraged to apply. Leidos will consider qualified applicants with criminal histories for employment in accordance with relevant Laws. Leidos is an Equal Opportunity Employer.
. Apply now!Estimated Salary: $20 to $28 per hour based on qualifications.
Leidos is seeking an IT Security Engineer for the ESA IV program supporting DOJ/ATF.
The candidate will be involved in a broad range of security tasks and issues supporting current day to day production operation as well as evaluation and assessment of new capabilities. These tasks may include incident response, vulnerability management, Information Assurance analysis (Certification and Accreditation, audits, annual security plans), security assessment of current and new system and product capabilities.
For vulnerability management tasks, the candidate will utilize enterprise tools (e.g. SPLUNK, BigFix, Nessus, DOJ SPDR) and their hands on system administration skills to identify, analyze and remediate issues.
The candidate will need to use these hands on skills and additional broad system security engineering skills to respond to real time production system issues/events or analyze new or enhancement capabilities.
For Information Assurance analysis tasks, the candidate will respond to Certification and Accreditation tasks, audit tasks and other system security tests. The candidate may act as the interface between auditors and system subject matter experts. This will require the candidate to understand the target systems to appropriately decompose inquiries to actionable items for SMEs, then validate the SME responses. The candidate should understand how to document system compliance with government security controls (e.g. 800-53, FISMA).
Clear verbal and written communication skills are essential. This position also requires good project planning skills to identify how to meet schedules, identify dependencies, and identify risks and work-arounds.
This position requires a security investigation completed by the ATF to permit access to customer-sensitive information.
Qualifications:
Required Skills:
General knowledge of enterprise scale IT systems, architectures and components (networking, security appliances, servers, and virtualization) particularly the system integration challenges balancing secure operations with operational need.
Experience with Windows administration including Active Directory. This should include ability to apply remote administration to evaluate and potentially correct system configurations.
Experience with one or more security tools (e.g. Nessus, Web Inspect, SPLUNK, DOJ SPDR) including running the tools and customizing queries and outputs.
Experience with one or more enterprise configuration management tools (e.g. Big Fix, SCCM) including running the tools and customizing queries and outputs.
Experience with supporting assessment of IT systems compliance with Federal IT Security standards (NIST 800-53, FISMA, CSAM))
Ability to respond to security audits and compliance assessments including decomposing auditor requests to actionable items, compiling and presenting security audit artifacts
Ability to evaluate IT system compliance with government and commercial security practices (e.g. DISA STIGS, SANS Top 25)
Working knowledge of Federal Certification and Accreditation practices
Solid communication and documentation skills
Desired Skills:
Windows administration skills: basic scripting, Group Policy management
Experience with enterprise security services (e.g. IDS, log aggregation, credential management, PKI, web/mail proxies and filters, end point integrity tools)
Experience with enterprise mobile device security management (e.g. Airwatch)
Familiarity with cloud computing and applicable security practices (e.g. FedRAMP)
Experience with ATF or DOJ
Ability to recognize security risks, document risk, and clearly communicate findings and recommendations.
Experience supporting Incident Response events
Experience supporting review and certification of Physical Security elements of a facility
Experience with Linux and/or Unix administration
EDUCATION &
Experience: Typically requires BS degree and 12 15 years of prior relevant experience or Masters with 10 13 years of prior relevant experience. May possess a Doctorate in technical domain.
Leidos Overview:
Leidos is a global science and technology solutions leader working to solve the world's toughest challenges in the defense, intelligence, homeland security, civil, and health markets. The company's 33,000 employees support vital missions for government and commercial customers. Headquartered in Reston, Virginia, Leidos reported pro forma annual revenues of approximately $10 billion for the fiscal year ended January 1, 2016 after giving effect to the recently completed combination of Leidos with Lockheed Martin's Information Systems & Global Solutions business (IS&GS). For more information, visit www.Leidos.com. The company's diverse employees support vital missions for government and commercial customers. Qualified women, minorities, individuals with disabilities and protected veterans are encouraged to apply. Leidos will consider qualified applicants with criminal histories for employment in accordance with relevant Laws. Leidos is an Equal Opportunity Employer.
. Apply now!Estimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
