Security Team Lead at Leidos

Description

Leidos Dig Mod Health IT division is seeking a Security Team Lead on a large network services opportunity supporting the Health Agency in Montgomery County, MD. This opportunity will support the very important mission of National Institutes of Health (NIH) Center for Information Technology (CIT), which provide enterprise services and infrastructure that seek to achieve service-level performance efficiencies, innovative improvements, optimal performance and risk reductions.

We need key personnel hires with a deep knowledge networks expertise and complexity and tech roadmap experience to contribute to the trusted NIH and Leidos partnership. Looking for experience candidates that have the ability to maintain stable operations while delivering innovation, automation, leadership, network security and performance support/metrics, operations and continual improvement to advance the NIH scientific mission.

This program consists of network operations, architecture and engineering support, security engineering, change management, special application deliveries

The Security Team lead will have the responsibility to ensure the adequate security posture for numerous network security tools and applications supporting network security and infrastructure activities. The responsibilities also include the maintenance of the System Security Plan (SSP) is required, the management of cybersecurity governance and risk, security assessment and authorization (A&A) compliance, vulnerability management, security configuration management, delivery of Customer deliverables, creation of Customer briefs for status and regular meetings. The security team lead will interface across the program ensuring support of the technical roadmap interfacing with Network Operations as well as the architecture engineering group.

Primary Responsibilities:

• Provide on-site support to the health agency in MD

• Lead a team of security engineers for delivery of Cybersecurity project management, continuous diagnostics and mitigation, threat mitigation and incident response, security architecture support, critical infrastructure protection, patch management, vulnerability management, risk management, information assurance, penetration testing, cybersecurity services, and Security Assessment and Authorization (SA&A) documentation.

• Manage Firewall, Web Filtering, Intrusion Prevention Systems (IPS), Intrusion Detection Systems (IDS), Network Access Control (NAC), Domain Name Systems (DNS), Remote Access VPN (RA-VPN), Application Delivery/Load Balancing, Secure Sockets Layer (SSL) Certificate Management solutions

• Lead implementation of new security projects including estimation, design, development, testing and deployment and track status throughout

• Support operations team with cybersecurity guidance for day-to-day operations

• Prioritize and assign tasks to the security engineering staff

• Recommend best business practices and secure methodologies to maintain and/or improve security posture of the information systems within the designated service area to the SAM and system owners

• Provide support to service areas with implementing new security policy / procedures / mandates, processes, memos, and guidance (e.g., OMB, NIST 800-37 rev2)

Required Qualifications:

• Bachelor’s Degree in Computer Science, Information Systems, Engineering or other related discipline or equivalent related experience

• Minimum of seven (7) years of Network Security experience

• Active CCNP or CCIE Certification

• Minimum of three (3) years of experience leading a cybersecurity team

• Minimum three (3) years of experience supporting SA&A activities for a Federal customer

• Deep technical understanding of core current cybersecurity technologies as well as emerging capabilities

• Demonstrated understanding of security best practices, security solutions, and methodologies for risk management

• Demonstrated understanding of the life cycle of cybersecurity threats, attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques and procedures (TTPs)

• Demonstrated experience working with enterprise firewall, IPS/IDS, DNS, PKI, and remote access VPN solutions 

• Must be able to obtain a public trust security clearance

Preferred Qualifications:

• Active CISSP certification strongly desired

• ITIL 4, CCIE, CCNP 

• Operational experience with environments employing cloud or software-defined networking 

• Operational experience using ScienceLogic SL1 

• Demonstrated experience implementing successful continuous process improvement within an IT infrastructure environment 

• Experience using ServiceNow Project Portfolio Management

Original Posting Date:

While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

Pay Range:

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.