Cyber Security Engineer

at Leidos
Published September 18, 2018
Location San Diego, CA
Category Default  
Job Type Full-time  

Description

Description

Leidos currently has an excellent opportunity for a Cyber Security Engineer, located in our San Diego offices.

The successful candidate will be responsible for tasks such as:

• Design, develop, and integrate Cyber Security elements while analyzing security implementations to address system deficiencies, design changes, design improvements, and end of support/end of life issues
• Perform vulnerability assessments, security testing, and work with operations and development teams on remediation and mitigation of findings and to produce and deliver a cyber security analysis report
• Assume responsibilities in the development, sustainment, operations, and production environment to ensure the protection of information processed, stored, or transmitted within the CANES environment
• Implement/provide security system deployments, configuration, monitoring and reporting
• Provide Cyber Security related engineering and technical support for existing and future baselines in areas such as:
 o Public Key Infrastructure (PKI), Enterprise-class firewall capabilities (such as Cisco Adaptive Security Appliance (ASA)),
 o Intrusion Detection Systems (such as Cisco IDS)
 o Intrusion Protection Systems (IPS) (such as Cisco IPS)
 o Access Control (such as Cisco Identity Service Engine (ISE))
 o Secure Web Gateways
 o Host Based Security System (HBSS), Assured Compliance Assessment Solution (ACAS), and Super Agent Distributed Repositories(SADR)
• Recommend design updates to address system deficiencies, design changes, design improvements, and end of support/end of life issues
• Produce repeatable test procedures execute testing, and produce test reports in support of ECR/EPR verification and validation
• Identify alternative approaches and associated replacements for CANES hardware and software components

Qualifications

Bachelor’s degree in a related field and 8 plus years of overall experience of the following (more year so experience will be considered in lieu of a degree)

• 5 years of experience designing and implementing DoD enterprise-class Information Systems to be in compliance with Defense Information Systems Agency (DISA) STIGs and DoD Information Assurance (IA) Security Controls

• 4 years of experience with the design and development in two or more technologies from the following list:
a) Enterprise-class firewall capabilities (Cisco Adaptive Security Appliance (ASA) preferred)
b) Intrusion Detection Systems (Cisco Intrusion Detection System (IDS) preferred)
c) Intrusion Protection Systems (Cisco Intrusion Prevention System (IPS) preferred)
d) Network Access Control (Cisco Identity Service Engine preferred

• 2 years of experience in development of two or more technologies from the following list:
a) Host Based Security System (HBSS)
b) Assured Compliance Assessment Solution (ACAS)
c) Super Agent Distributed Repository (SADR)

• Cyber Security Engineering experience in one or more technologies from the following list:
a) 5 years of experience with design and development on a complex, largescale DoD Computer Information System
b) 4 years of experience with design and development on a complex, largescale Navy Command, Control, Communications, Computer, and Intelligence (C4I) Information System
c) 2 years of experience with design and development on a Navy afloat Computer Information Systems to include one or more of the following:
o CANES, Integrated Shipboard Network System (ISNS)
o Sensitive Compartmented Information (SCI) Networks
o Submarine Local Area Network (SubLAN), or Combined Enterprise Regional Information Exchange System (CENTRIXS) 

Candidate must possess an active Secret clearance, or be eligible to obtain a Secret clearance within a reasonable period of time.

Candidates must have a current Information Assurance Technical (IAT) level II certification containing Security +, Configuring Windows 7 (70-680 or equivalent), Installing and Configuring Windows Server 2012 (70-410 or equivalent) and Administering Windows Server 2012 (70-411 or equivalent)