Leidos
Overview
Leidos has an exciting opening for a TS/SCI Cyber Security Engineer working across several Task Orders under the DOMEX Technology Platform (DTP) contract supporting NMEC. This role involves designing, developing, and implementing secure systems in on‑premises infrastructure, with security integrated into system design, development, testing, and deployment to ensure compliance with the DoD Risk Management Framework. The position offers on‑site work in Bethesda, MD with a flexible schedule and occasional remote tasks, depending on client requirements and deliverables.
In this role you will collaborate closely with ISSOs, ISSSMs, software engineers, software developers, system engineers and Government counterparts to perform the full spectrum of systems and cyber security engineering tasks to meet various regulatory compliance frameworks.
Key Tasks
Support the secure architecture, design, and implementation of DoD systems in accordance with DoDI 8510.01, NIST SP 800‑53, and other DoD security guidance.
Lead the integration of RMF activities into the system development lifecycle (SDLC), including selecting, implementing, and validating security controls.
Develop and maintain key security documentation such as System Security Plans (SSPs), Security Assessment Reports (SARs), Risk Assessments, and Plan of Action and Milestones (POA&Ms).
Collaborate with ISSOs, ISSMs, developers, and system owners to ensure systems are developed and maintained with approved security configurations.
Apply Security Technical Implementation Guides (STIGs) to systems and validate compliance using tools such as SCAP, STIG Viewer, and ACAS.
Maintain application, network, and database scanning infrastructure (updates, maintenance, builds, rule packs/content updates, scanner/agent deployment, etc.).
Analyze vulnerability scans and ensure timely mitigation or acceptance of risks based on DoD policies.
Provide technical input to support and maintain system authorization.
Participate in system reviews, architecture assessments, and engineering design reviews to embed cybersecurity from the outset.
Develop and implement automation or security tools to improve compliance and monitoring of systems.
Support security incident response and forensics analysis in coordination with ISSMs and security points of contact.
Requirements
BS degree and 8+ years of experience in cybersecurity (additional relevant years of experience in lieu of degree is accepted).
Active TS/SCI clearance with ability to obtain a Polygraph.
At least one of the following DoD 8570.01–M IASAE Level II certifications: CISSP, CISSP–ISSAP, CISSP–ISSEP, CSSLP, or CASP+ CE. Note: CISSP Associate is not acceptable.
Developer experience in at least one scripting/programming language is preferred.
Experience reviewing cybersecurity vulnerabilities for risk and remediation planning across systems, networks, applications, and databases.
Ability to architect, design, troubleshoot, maintain, and deploy vulnerability scanning solutions (e.g., OWASP, Fortify, SonarQube, Tenable).
Experience with XACTA, EMass, or similar tools.
Strong understanding of Microsoft Windows and Linux/UNIX operating systems.
Experience with middleware/web technologies (Apache, Tomcat, IIS, etc.).
Experience with databases (Postgres, MS SQL, MySQL, Elasticsearch, etc.).
Understanding of TCP/IP networking.
Experience with CI/CD platforms (Jenkins, Bamboo, GitLab CI, TFS, etc.).
Familiar with NIST 800‑171, 800‑172, NIST SSDF, and CMMC requirements.
Experience supporting DoD/IC systems through the RMF process and integrating security/privacy controls into complex hardware and software systems.
Experience developing and reviewing security concepts, system security plans, risk assessments, contingency plans, and configuration management plans.
Experience with incident response plans, POA&Ms, risk management plans, and vulnerability management plans.
Strong communication skills to interact with management, technical personnel, and third parties.
Desired Skills (not required)
Software development/coding experience with Python, Java, and React.
Experience achieving ATO under RMF+.
Experience with big data applications.
Experience with ticketing/documentation tools (GitLab, Jira, Confluence).
Experience working in an Agile environment.
Experience with OIDC or OAuth2.
Experience with Kubernetes, Rancher, Strimzi, or Cloudera; Active Directory; scripting languages like Bash, Python, or PowerShell.
Additional Information Original Posting: July 10, 2025
Pay Range: $104,650.00 – $189,175.00. This range is a general guideline and not a guaranteed offer. Final compensation is influenced by responsibilities, education, experience, knowledge, skills, abilities, internal equity, market data, bargaining agreements, or applicable law.
#J-18808-Ljbffr
In this role you will collaborate closely with ISSOs, ISSSMs, software engineers, software developers, system engineers and Government counterparts to perform the full spectrum of systems and cyber security engineering tasks to meet various regulatory compliance frameworks.
Key Tasks
Support the secure architecture, design, and implementation of DoD systems in accordance with DoDI 8510.01, NIST SP 800‑53, and other DoD security guidance.
Lead the integration of RMF activities into the system development lifecycle (SDLC), including selecting, implementing, and validating security controls.
Develop and maintain key security documentation such as System Security Plans (SSPs), Security Assessment Reports (SARs), Risk Assessments, and Plan of Action and Milestones (POA&Ms).
Collaborate with ISSOs, ISSMs, developers, and system owners to ensure systems are developed and maintained with approved security configurations.
Apply Security Technical Implementation Guides (STIGs) to systems and validate compliance using tools such as SCAP, STIG Viewer, and ACAS.
Maintain application, network, and database scanning infrastructure (updates, maintenance, builds, rule packs/content updates, scanner/agent deployment, etc.).
Analyze vulnerability scans and ensure timely mitigation or acceptance of risks based on DoD policies.
Provide technical input to support and maintain system authorization.
Participate in system reviews, architecture assessments, and engineering design reviews to embed cybersecurity from the outset.
Develop and implement automation or security tools to improve compliance and monitoring of systems.
Support security incident response and forensics analysis in coordination with ISSMs and security points of contact.
Requirements
BS degree and 8+ years of experience in cybersecurity (additional relevant years of experience in lieu of degree is accepted).
Active TS/SCI clearance with ability to obtain a Polygraph.
At least one of the following DoD 8570.01–M IASAE Level II certifications: CISSP, CISSP–ISSAP, CISSP–ISSEP, CSSLP, or CASP+ CE. Note: CISSP Associate is not acceptable.
Developer experience in at least one scripting/programming language is preferred.
Experience reviewing cybersecurity vulnerabilities for risk and remediation planning across systems, networks, applications, and databases.
Ability to architect, design, troubleshoot, maintain, and deploy vulnerability scanning solutions (e.g., OWASP, Fortify, SonarQube, Tenable).
Experience with XACTA, EMass, or similar tools.
Strong understanding of Microsoft Windows and Linux/UNIX operating systems.
Experience with middleware/web technologies (Apache, Tomcat, IIS, etc.).
Experience with databases (Postgres, MS SQL, MySQL, Elasticsearch, etc.).
Understanding of TCP/IP networking.
Experience with CI/CD platforms (Jenkins, Bamboo, GitLab CI, TFS, etc.).
Familiar with NIST 800‑171, 800‑172, NIST SSDF, and CMMC requirements.
Experience supporting DoD/IC systems through the RMF process and integrating security/privacy controls into complex hardware and software systems.
Experience developing and reviewing security concepts, system security plans, risk assessments, contingency plans, and configuration management plans.
Experience with incident response plans, POA&Ms, risk management plans, and vulnerability management plans.
Strong communication skills to interact with management, technical personnel, and third parties.
Desired Skills (not required)
Software development/coding experience with Python, Java, and React.
Experience achieving ATO under RMF+.
Experience with big data applications.
Experience with ticketing/documentation tools (GitLab, Jira, Confluence).
Experience working in an Agile environment.
Experience with OIDC or OAuth2.
Experience with Kubernetes, Rancher, Strimzi, or Cloudera; Active Directory; scripting languages like Bash, Python, or PowerShell.
Additional Information Original Posting: July 10, 2025
Pay Range: $104,650.00 – $189,175.00. This range is a general guideline and not a guaranteed offer. Final compensation is influenced by responsibilities, education, experience, knowledge, skills, abilities, internal equity, market data, bargaining agreements, or applicable law.
#J-18808-Ljbffr