Cybersecurity Lead

Looking for an opportunity to make an impact? Join the Leidos Digital Modernization (DigiMod) team in accelerating information technology in a changing world where we make a difference by modernizing critical networks for our government and commercial customers. 

​ 

​At Leidos, we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customers’ success. We empower our teams, contribute to our communities, and operate sustainably. Everything we do is built on a commitment to do the right thing for our customers, our people, and our community. Our Mission, Vision, and Values guide the way we do business. 

​Are you ready to challenge yourself with an organization that encourages & supports career growth on an enterprise-wide scale? Your greatest work is ahead!  

​ 

We are in search of a Cybersecurity Lead to join our Enterprise Engineering Cell supporting the Department of the Air Force Air Combat Command (ACC). As a Cybersecurity Lead, you will work with subject matter experts to assess, develop, implement, and secure technical solutions. This position is responsible for providing cybersecurity expertise, guidance, and execution support for network architecture design, sustainment, modernizations, and system integrations. The Cybersecurity Lead will interface daily with multiple system owners, technical teams, and program leadership. They will be responsible for ensuring systems comply with information security policies, training and educating team mates and users on proper security practices, conducting security and risk assessments using security frameworks (e.g., NIST RMF) mitigating risk via security controls, testing and evaluation to certify and accredit solution architectures and products, ensuring privacy of data throughout the life-cycle, vulnerability management (scanning, assessment, reporting, and mitigation verification), business continuity and disaster recovery.

Qualified candidates will have a strong technical background sufficient to understand the Government's cybersecurity requirements and work closely with the Government and Leidos leadership to facilitate effective planning and accomplishment of critical Cybersecurity objectives in a timely manner. Additional responsibilities may include drafting and/or approving Cybersecurity and Authority to Operate (ATO) documents prior to submission to the Government.

The position is remote, but the candidate must be able to travel to Hampton, VA and other customer sites as needed.

TRAVEL: 25%

​Clearance Required: 

• ​Must be a US Citizen and have at a minimum an Active Secret clearance  

​

Primary Responsibilities

• Assess, develop, maintain, and execute plans to ensure system and process compliance with customer security policies and requirements such as NIST RMF.
• Provide technical guidance and recommendations for securing a broad range of network systems throughout their lifecycle to include planning, designing, implementing, evaluating, operating, and de-commissioning.
• Ensure the engineering and operations teams implement and are trained to operate and maintain security solutions (e.g. continuous monitoring strategies and programs, ongoing authorizations).
• Document and communicate security policy to enterprise organizations and gain organization commitment for security plans.
• Support the engineering and project lifecycles for infrastructure and technology projects. Participate in milestone reviews and gates, ensuring cybersecurity best practices are implemented.
• Identify security baseline assets and package artifacts related to assessment and authorization activities.
• Develop, maintain, and manage information and documentation in the required format.
• Identify non-compliant controls and vulnerabilities and provide solutions to address in a timely manner IAW DAF standards and best practices.
• Ensure network devices are configured, installed, grounded, patched, & secured IAW the latest STIGs, ACAS Plugins, IAVAs, TCNOs, TCTOs, APL, and local guidance as directed.
• Perform/review scans of security threats and implement corrective actions IAW established security guidance and change management policies and procedures.
• Monitor cyber event taskings to detect and mitigate malicious cyber events.
• Ensure compliance, readiness, and support for cyber inspections.
• Attend team lead sessions and act as a conduit with the program leadership team
• Interface with customer and leadership on a daily basis
• Collaborate using information and knowledge sharing networks and professional relationships to achieve common goals.

Basic Qualifications

• Requires BS degree in Computer Science, Information Technology, Computer Forensics, Cyber Security, Information Security System Engineering or similar and 12 – 15 years of prior relevant experience or Masters with 10 – 13 years of prior relevant experience.
• ​Additional years of experience may be accepted in lieu of degree 
• DoD 8140 DCWF compliant
• Must have extensive experience developing, maintaining, and managing all relevant accreditation artifacts and activities in the DoD Risk Management Framework (RMF) process.
• Experience interacting with USG RMF personnel and participating in Cybersecurity meetings.
• Experience overseeing the configuration, installation, patching & securing of all network devices IAW the latest STIGs, IAVAs, TCNOs, TCTOs, APL and Local Security Guidelines as directed.
• Experience with cyber network vulnerability management scans and scans of security threats, performing corrective action, and applying IAW and following DISA STIGs, TCNOs, and local security guidance, and local change management policies and procedures.
• Ensuring compliance with Cybersecurity Assessment requirements resulting in authorization by the DAF Authorizing Official (AO) using the RMF process.
• Experience developing and implementing information security controls, procedures, and documentation for the operations of systems.
• Experience with ongoing Authorizations and Assessments (A&A) and continuous monitoring.
• Senior-level knowledge of information security concepts, policy frameworks, and best practices.
• Ability to write and verbally communicate information security and risk-related concepts effectively to both technical and non-technical audiences.
• Must have strong problem-solving, analytical, communication and people skills.
• Demonstrate poise and ability to act calmly and competently in high-pressure, high-stress situations.
• Must have a fundamental understanding of accepted security practices and customer support.

​​​Clearance Required: 

• ​Must be a US Citizen and have at a minimum an Active Secret clearance

Preferred Qualifications.

• ​Demonstrated experience with an Air Force or Department of War Customer, and/or prior military experience 
• Prior technical roles within similar organizations with growing duties and responsibilities
• Understanding of Zero Trust principles and Post Quantum Encryption requirements

If you're looking for comfort, keep scrolling. At Leidos, we outthink, outbuild, and outpace the status quo — because the mission demands it. We're not hiring followers. We're recruiting the ones who disrupt, provoke, and refuse to fail. Step 10 is ancient history. We're already at step 30 — and moving faster than anyone else dares.

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.