• Cybersecurity Engineer

    Leidos (Tampa, FL)


    Description

    The Leidos Digital Modernization Sector is currently pursuing a new opportunity and is seeking a **_Cybersecurity Engineer_** to work in Tampa, FL to play a crucial role in a landmark Zero Trust (ZT) surge initiative for our client (USSOCOM). In this vital role, you will be responsible for the analysis, development, integration, testing, and sustainment of systems and software security solutions throughout the product lifecycle. You will play a key part in the initial Iplan creation and the subsequent multi-year ZT engineering efforts, ensuring robust security measures are implemented across USSOCOM's diverse IT environments. The program emphasizes rapid development and deployment of technologies to enhance the mobility and readiness of Special Operations Forces (SOF) in both combat and non-combat scenarios. Key tasks include program management, application development, training support, and technology integration to maintain USSOCOM's operational edge. The EDAT program underscores agility and adaptability, ensuring SOF professionals have access to the information and tools they need to meet evolving mission requirements.

     

    The Leidos Digital Modernization Sector provides a diverse portfolio of systems, solutions, and services covering land, sea, air, space, and cyberspace for customers worldwide. Solutions for Defense include enterprise and mission IT, large-scale intelligence systems, command and control, geospatial and data analytics, cybersecurity, logistics, training, and intelligence analysis and operations support. Our team is solving the world’s toughest security challenges for customers with **“can’t fail”** missions.

     

    This position is a hybrid position, you will work remote / at home and need to be onsite at MacDill AFB when needed.

    Primary Responsibilities:

    + Analyze system and software security requirements, identify vulnerabilities, and develop robust security solutions and countermeasures in line with Zero Trust principles.

    + Design, implement, integrate, test, and maintain security controls for systems, networks, and applications within USSOCOM’s Greenfield (SOCRATES) and Brownfield (SOFNET-U/S) environments.

    + Apply security policies to meet the security objectives of systems and ensure compliance with DoD ZT mandates (91 target activities by FY27, 61 advanced activities by FY33).

    + Implement and manage security measures such as firewalls, IDS/IPS, encryption, access controls (IAM/PKI), and endpoint security solutions.

    + Conduct security testing and evaluation of systems and applications, including vulnerability scanning, penetration testing (coordination), and code analysis to identify and remediate security flaws.

    + Ensure the timely application of security patches and updates for commercial and custom products, integrating automated capabilities where practical.

    + Develop and maintain security documentation, including system security plans, configuration guides, operational procedures, and incident response playbooks.

    + Monitor systems and networks for security breaches, intrusions, and compliance deviations; respond to and work with stakeholders to resolve security incidents.

    + Provide input to the Risk Management Framework (RMF) process activities and support the development of related documentation.

    + Implement and assess security controls based on principles of least privilege and need-to-know.

    + Ensure cybersecurity-enabled products and compensating controls reduce identified risks to an acceptable level.

    + Analyze and report on organizational and system security posture trends.

    + Provide cybersecurity recommendations to leadership based on identified threats and vulnerabilities.

    + Support the development and implementation of Disaster Recovery, Contingency, and Continuity of Operations Plans.

    Basic Qualifications:

    + Bachelor of Science (BS) degree in Information Technology, Cybersecurity, Computer Science, Engineering, or a related field and 8+ years of applicable experience, additional years of experience will be accepted in lieu of a degree.

    + Security Clearance: Active Top Secret clearance with the ability to obtain an SCI (Sensitive Compartmented Information).

    + A minimum of 8+ years of progressive experience in cybersecurity engineering, systems security, or a closely related technical role. Experience supporting DoD or USSOCOM environments is highly preferred.

    Certifications Required:

    + (ISC)² CISSP (Certified Information Systems Security Professional).

    + Conditional Alternative (one or more of these, demonstrating breadth and depth, may be considered with strong security engineering experience):

    + (ISC)² CCSP (Certified Cloud Security Professional)

    + CompTIA CASP+ (CompTIA Advanced Security Practitioner) / SecurityX

    + (ISC)² CGRC (Certified in Governance, Risk and Compliance)

    + Relevant vendor certifications in cloud security (e.g., AWS Certified Security - Specialty, Azure Security Engineer Associate) or Zero Trust technologies (e.g., Palo Alto Networks, Zscaler, Microsoft Identity).

    **Key Skills and Knowledge** (Aligned with DoD 8140 KSATs for Systems Security Analyst - Advanced):

    + Expertise in systems security engineering, including the design, implementation, integration, and testing of security solutions.

    + Deep understanding of Zero Trust principles and practical experience implementing ZT concepts and technologies.

    + Comprehensive knowledge of computer networking concepts (TCP/IP, DNS, etc.), protocols, and network security methodologies (firewalls, VPNs, IDS/IPS, NAC).

    + Strong knowledge of operating systems (Windows, Linux) security, hardening techniques, and configuration management.

    + Proficiency in encryption algorithms, cryptology, and public key infrastructure (PKI).

    + Skill in recognizing and analyzing vulnerabilities in information systems, software, and networks using various tools (e.g., network analysis tools, vulnerability scanners).

    + Knowledge of risk management processes (e.g., RMF, methods for assessing and mitigating risk) and security control assessment.

    + Experience with security system design tools, methods, and techniques, including developing and applying security system access controls.

    + Familiarity with security management practices, including patch management, incident response, and security documentation.

    + Knowledge of database systems security and application security principles, including secure coding practices.

    + Understanding of cloud computing service models (SaaS, IaaS, PaaS), deployment models (private, public, hybrid), and associated security engineering challenges.

    + Knowledge of identity and access management (IAM) solutions and principles.

    + Ability to assess the effectiveness of security controls and provide recommendations for improvement.

    + Knowledge of national and international laws, regulations, policies, and ethics as they relate to cybersecurity.

    + Understanding of cyber threats, vulnerabilities, and the specific operational impacts of cybersecurity lapses.

    + Excellent problem-solving skills and the ability to work effectively in a fast-paced, mission-critical environment.

    + Strong communication skills, with the ability to document technical solutions and articulate security concepts clearly.

    + Experience with USSOCOM, SOF environments, or other DoD agencies is a significant advantage.

    Preferred Skills / Certifications:

    + GIAC Defensible Security Architect (GDSA) or other Zero Trust focused certification - Preferred.

    Original Posting:

    May 19, 2025

    For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

    Pay Range:

    Pay Range $104,650.00 - $189,175.00

     

    The Leidos pay range for this job level is a general guideline onlyand not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.

    REQNUMBER: R-00159304

    All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status. Leidos will consider qualified applicants with criminal histories for employment in accordance with relevant Laws. Leidos is an equal opportunity employer/disability/vet.