Sr. ISSE with TS/SCI Polygraph

Sr. Information System Security Engineer – Intel Sector's Cyber & Analytics Business Area (CABA) at Leidos.We are looking for a senior‑level security engineer with a TS/SCI Polygraph authorization (mandatory). The role supports a fast‑paced, complex program, using SAFe and DEVOPS practices to enhance system security architecture and cyber security capabilities.Responsibilities Validate and verify system security requirements and establish system security designs for large‑scale systems, major system elements, and interfacing systems within a geographically distributed network environment.Identify and implement appropriate information security architectures and functionality to ensure uniform application of security policy and enterprise solutions.Recommend and develop technical solutions, products, and standards based on current and desired system security architecture.Assess and mitigate system security threats and risks throughout the program life cycle.Lead and/or contribute to the security planning, assessment, risk analysis, risk management, certification, and awareness activities for various systems and networking operations.Collaborate effectively with internal technical experts on a day‑to‑day basis.Communicate with Program Managers and points of contact (POCs) from customer organizations regarding significant security issues.Participate in Program Increment Planning and related agile team activities.Work closely with System, Test, and Integration teams to ensure that hardware and software architecture meets security requirements.Analyze and assess system implementation against multiple security compliance policies and recommend and implement enhancements.Evaluate security solutions to ensure they meet customer specified requirements for processing information.Assess the impact of new development on the operational security posture of the system.Review and test critical software.Propose, assess, coordinate, implement, and enforce information systems security policies, standards, and methodologies.Audit and assess system security configuration settings using common methodologies and tools.Manage and enforce security strategies and policies that affect various components of geographically distributed systems.Provide configuration management for security‑relevant information system software.Serve as a subject matter expert in security architecture, advising Program Managers, customer technical experts, and internal program teams.Formulate security compliance requirements for new system features.Identify and remediate security issues throughout the system.Support risk assessment, risk management, security control assessment, continuous monitoring, service design, and other IA program support functions.Work with development teams to enrich their understanding of vulnerabilities, attack vectors, and remediation approaches.Plan and conduct security verification testing of relevant Type 1 devices.Basic Qualifications Bachelor's degree in Computer Science, Information Assurance, Information Security System Engineering, or related discipline and at least 12 years of relevant experience (degree may be substituted with equivalent experience).Solid understanding of security practices and policies with hands‑on vulnerability testing experience using industry tools.Experience applying the Risk Management Framework (RMF).Experience formulating and assessing IT security policy.Proficiency with common security tools such as Nessus, NMAP, and Wireshark, and knowledge of hardware/software security implementation, communication protocols, encryption techniques/tools, and web services.Experience with secure configurations of commonly used desktop and server operating systems.Comfortable working on multiple systems and components simultaneously in various configurations.Strong verbal and written communication skills.Committed to adopting and adhering to best practices.Able to effectively plan and prioritize tasks and communicate clearly regarding technical options and trade‑offs.Capable of performing high‑quality work both independently and with a team in a fast‑moving environment.Preferred Qualifications Five (5) years of experience with Defense in Depth principles/technology and applying risk assessment methodology to system development.DoD 8570 compliance with IASAE Level 2 or 3.Information Systems Security Engineering Professional (ISSEP) Certification.Computer Information Systems Security Professional (CISSP) Certification.Experience developing/implementing integrated security services management processes, such as assessing and auditing network penetration testing, anti‑virus planning assistance, risk analysis, and incident response.Experience providing information assurance support for application development, including system security certifications and project evaluations for firewalls covering development, design, and implementation.Experience with penetration testing tools.Experience with scripting languages.Pay Range $131,300.00 – $237,350.00EEO / Non‑Discrimination Statement All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.#J-18808-Ljbffr

Sr. Information System Security Engineer – Intel Sector's Cyber & Analytics Business Area (CABA) at Leidos.We are looking for a senior‑level security engineer with a TS/SCI Polygraph authorization (mandatory). The role supports a fast‑paced, complex program, using SAFe and DEVOPS practices to enhance system security architecture and cyber security capabilities.Responsibilities Validate and verify system security requirements and establish system security designs for large‑scale systems, major system elements, and interfacing systems within a geographically distributed network environment.Identify and implement appropriate information security architectures and functionality to ensure uniform application of security policy and enterprise solutions.Recommend and develop technical solutions, products, and standards based on current and desired system security architecture.Assess and mitigate system security threats and risks throughout the program life cycle.Lead and/or contribute to the security planning, assessment, risk analysis, risk management, certification, and awareness activities for various systems and networking operations.Collaborate effectively with internal technical experts on a day‑to‑day basis.Communicate with Program Managers and points of contact (POCs) from customer organizations regarding significant security issues.Participate in Program Increment Planning and related agile team activities.Work closely with System, Test, and Integration teams to ensure that hardware and software architecture meets security requirements.Analyze and assess system implementation against multiple security compliance policies and recommend and implement enhancements.Evaluate security solutions to ensure they meet customer specified requirements for processing information.Assess the impact of new development on the operational security posture of the system.Review and test critical software.Propose, assess, coordinate, implement, and enforce information systems security policies, standards, and methodologies.Audit and assess system security configuration settings using common methodologies and tools.Manage and enforce security strategies and policies that affect various components of geographically distributed systems.Provide configuration management for security‑relevant information system software.Serve as a subject matter expert in security architecture, advising Program Managers, customer technical experts, and internal program teams.Formulate security compliance requirements for new system features.Identify and remediate security issues throughout the system.Support risk assessment, risk management, security control assessment, continuous monitoring, service design, and other IA program support functions.Work with development teams to enrich their understanding of vulnerabilities, attack vectors, and remediation approaches.Plan and conduct security verification testing of relevant Type 1 devices.Basic Qualifications Bachelor's degree in Computer Science, Information Assurance, Information Security System Engineering, or related discipline and at least 12 years of relevant experience (degree may be substituted with equivalent experience).Solid understanding of security practices and policies with hands‑on vulnerability testing experience using industry tools.Experience applying the Risk Management Framework (RMF).Experience formulating and assessing IT security policy.Proficiency with common security tools such as Nessus, NMAP, and Wireshark, and knowledge of hardware/software security implementation, communication protocols, encryption techniques/tools, and web services.Experience with secure configurations of commonly used desktop and server operating systems.Comfortable working on multiple systems and components simultaneously in various configurations.Strong verbal and written communication skills.Committed to adopting and adhering to best practices.Able to effectively plan and prioritize tasks and communicate clearly regarding technical options and trade‑offs.Capable of performing high‑quality work both independently and with a team in a fast‑moving environment.Preferred Qualifications Five (5) years of experience with Defense in Depth principles/technology and applying risk assessment methodology to system development.DoD 8570 compliance with IASAE Level 2 or 3.Information Systems Security Engineering Professional (ISSEP) Certification.Computer Information Systems Security Professional (CISSP) Certification.Experience developing/implementing integrated security services management processes, such as assessing and auditing network penetration testing, anti‑virus planning assistance, risk analysis, and incident response.Experience providing information assurance support for application development, including system security certifications and project evaluations for firewalls covering development, design, and implementation.Experience with penetration testing tools.Experience with scripting languages.Pay Range $131,300.00 – $237,350.00EEO / Non‑Discrimination Statement All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.#J-18808-Ljbffr

• 

• Government Careers