The IT Security Engineer is responsible for testing, evaluating, and supporting cybersecurity platforms, tools, and system integrations across the enterprise environment. This role ensures reliable operation, maintenance, and troubleshooting of hardware and software within distributed network infrastructures.

The engineer will analyze and remediate network vulnerabilities based on security assessments, scan results, and findings provided by internal teams. This position requires close collaboration with cross-functional stakeholders to strengthen the organization’s overall security posture and ensure the effectiveness of implemented security controls.

Essential Job Functions:

• Validate that system security controls are correctly implemented and remain effective throughout the system lifecycle. Design or advise on technical solutions to complex problems which require extensive technical expertise and ingenuity.

• Provide input to the Risk Management Framework process activities and related documentation (e.g., system life-cycle support plans, concept of operations, operational procedures, and maintenance training materials).

• Lead all information system stakeholders by ensuring their assessment readiness, effective continuous monitoring, and ongoing adherence to risk management activities, while providing technical oversight and cybersecurity consultation.

• Interpret patterns of noncompliance to determine their impact on levels of risk and/or overall effectiveness of the enterprise's cybersecurity program.

• Performs security analysis of classified environments, threats, vulnerabilities and internal interfaces to define and assess compliance with accepted government standards and regulations.

• Advise senior management, such as Authorizing Officials, Chief Information Officer (CIO), and Chief Information Security Officer (CISO) on cybersecurity risk levels and security posture.

• Develop methods to monitor and measure risk, compliance, and assurance efforts. Ensure selected security controls operate as intended in every phase of the information system lifecycle.

• Coordinate with program security, cybersecurity management, stakeholders, and other relevant parties to clarify requirements and resolve issues while balancing mission needs against compliance mandates.

Qualifications

Specialized experience is experience that has equipped you with the particular ability, skill, and knowledge to successfully perform the duties of this position and is typically in or related to this line of work.

• Bachelor's degree in information systems security, computer science, or related field preferred or equivalent combination of education and experience

• Six or more years of experience in information systems security and/or network operations/support

• Must possess a solid understanding of IT Security including network and host security products such as intrusion detection systems, firewalls, VPNs, anti-virus and anti-spyware systems and security tools such as vulnerability scanners, wireless network scanners, and packet analyzers

• Experience with Nessus, BigFix, FireEye HX, and/or Splunk a plus

• Possess a solid understanding of FISMA, NIST and other guidance applicable to Federal information systems

• Experience with evaluating system, network, or infrastructure security controls against FISMA and NIST guidelines

• Working knowledge of typical LAN/WAN technologies and protocols

• Possess active security clearance or have the ability to acquire same at the secret level

• Experience working with Microsoft Office suite

• Experience working with computer programming

• Just possess strong written and oral communication skills, strong customer service qualities, and the ability to work in a team environment

Other Qualifications

• Must be task and detail oriented and be able to work with limited supervision

• Analytical and problem-solving skills

• Interpersonal skills to interact with customers and team members

• Organizational skills to balance and prioritize work

The Leidos pay range for this job level is a general guideline onlyand not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.