Security Engineer

Job Number:
Job Category:
Information Technology - Systems
Day Job
Potential for Teleworking:
Clearance Level Must Currently Possess:
Clearance Level Must Be Able to Obtain:
Public Trust

The Civil Health Operation currently has an opening for a Security Engineer to support a large healthcare contract in Rockville, MD.


Primary Responsibilities:

Support the engineering of the Security Services component within Infrastructure Engineering.
The Security Services component applies to hardware, software and services provided to maintain network security.
This includes, but is not limited to: protection from unauthorized devices, software or users; protection from unauthorized access to, or use of, the network and networked assets; firewall services; intrusion detection and reporting; security monitoring; security architecture services; data protection; and prevention of malicious code entry into the network.
Provide security engineering support in accordance with Federal and customer security mandates, policies, standards, and procedures.
Provide security engineering support to develop and maintain a flexible security architecture; provide protection from unauthorized use of, or access to, the customer-managed network and networked assets; and protect all data residing on the network from intrusion, destruction, or compromise.
Assess the current security architecture and deliver improvement recommendations.
Develop and deliver plans that improve security to physical and logical devices connected to the network.
Develop and deliver recommendations for security assets refresh or upgrade on an annual basis.
Develop and deliver recommendations for improved network security.
Develop and deliver recommendations for policies to improve security vulnerability and penetration testing.
Develop and deliver plans for Security Services asset updates or patches.
Design, test, and support implementation of the approved Security architecture improvements.
Design, test, and support implementation of approved firewall policies – Experience with Palo Alto and CheckPoint firewalls strongly preferred
Design, test, and support implementation of plans to secure network attached devices.
Design, test, and support implementation of approved firewall policies.
Design, test, and support implementation and reporting on government-furnished Security Services assets refreshes or upgrades; deliver a monthly status report.
Design and support implementation of approved recommendations for improving network security.
Design and support implementation of approved policies for security vulnerability and penetration testing.
Design, test, and support implementation of updates or patches approved for Security Services assets



Typically requires BS and 4 – 8 years of prior relevant experience or Masters with 2 – 6 years of prior relevant experience.  Experience can be substituted in lieu of degree.


Certifications: GCIA, GSEC, GCED, GCWN, GPPA, GMON, GCUX, GWEB, ECSA, CISSP, CISSP-ISSEP, CISSP-ISSAP, CSSLP, CheckPoint CCSE, CCMSE, CCSM, Palo Alto PCNSE, Cisco CCNA Security, Splunk Admin Certifcation,
Tools Experience: Checkpoint CPES, Tenable (SC5), Cisco ISE, FireEye, Splunk, MalwareBytes, Sophos, Symantec, Imperva
Education: BS Engineering/Computer Science
Operating Systems Experience: Windows 2008/2012, Linux, Windows Desktop

• Proven experience in security architecture practices, processes, and strategic security planning
• Excellent knowledge of security and risk management trends as well as emerging threats and vulnerabilities
• Expert knowledge of security controls and countermeasures (defense in depth) including practical experience with identity management, cyber-security and IT processes / solutions
• Excellent knowledge of application development methodologies (Agile, Waterfall, Dev Ops) and the processes and practices used to secure them
• Experience with methodologies to conduct threat / risk modeling on new applications and services
• Expert knowledge of security / risk control frameworks (COBiT, ISO 27001, ITIL), and business continuity / disaster recovery frameworks (ISO 22301, ISO 27031)
• Strong leadership and facilitation skills with an ability to build relationships with stakeholders
• Excellent oral, written and interpersonal communication skills
• Highly self-motivated, self-directed and attentive to detail



Leidos Overview:
Leidos is a global science and technology solutions leader working to solve the world’s toughest challenges in the defense, intelligence, homeland security, civil, and health markets. The company’s 33,000 employees support vital missions for government and commercial customers. Headquartered in Reston, Virginia, Leidos reported pro forma annual revenues of approximately $10 billion for the fiscal year ended January 1, 2016 after giving effect to the recently completed combination of Leidos with Lockheed Martin's Information Systems & Global Solutions business (IS&GS). For more information, visit www.Leidos.com. The company’s diverse employees support vital missions for government and commercial customers. Qualified women, minorities, individuals with disabilities and protected veterans are encouraged to apply. Leidos will consider qualified applicants with criminal histories for employment in accordance with relevant Laws. Leidos is an Equal Opportunity Employer.
Other Locations:  
Link for schema