Lead Security Engineer
Job Description
Location: Annapolis Junction, MD (onsite)
Salary: USD 154,050 - 278,475 per year
Leidos is seeking a Lead Security Engineer to steer security engineering for a large, complex, geographically distributed network. This role includes mentoring ISSOs and ISSEs and ensuring ATOs and STE/STN compliance across programs.
What we offer
- Paid Time Off
- 11 paid Holidays
- 401K with a 6% company match and immediate vesting
- Flexible Schedules
- Discounted Stock Purchase Plans
- Technical Upskilling
- Education and Training Support
- Parental Paid Leave
Responsibilities
- Own and guide the security architecture across the program, ensuring security requirements are defined, implemented, and validated.
- Act as a security SME, providing guidance and governance for end-to-end security design.
- Collaborate with numerous system owners across networks to interpret, negotiate, and refine security requirements.
- Lead security strategy across risk assessment, control evaluation, continuous monitoring, service design, and broader cybersecurity program support.
- Detect and analyze security issues in complex, integrated environments and deliver actionable remediation plans.
- Plan and execute static and dynamic application security testing and penetration testing.
- Work with development teams to deepen understanding of vulnerabilities, attack vectors, and remediation methods.
- Guide and mentor a team of program security engineers in daily security engineering tasks.
- Collaborate with the program security team to ensure STE/STN and continuous monitoring for Test, Integration, and Development environments.
- Communicate security requirements, risks, and compliance challenges clearly to multiple customer stakeholders.
- Coordinate with cross-functional internal teams to plan and carry out remediation and other security activities.
Requirements
- Master’s degree in Information Technology, Information Assurance, or a related field, and at least 15 years of relevant experience. Additional experience may substitute for the degree.
- At least 10 years leading large, diverse Security Engineering teams, including ISSO and ISSE leadership.
- Active CISSP certification.
- Certified Scrum Master certification.
- Minimum five years applying Agile methodologies in security engineering projects, including Scrum or SAFe frameworks.
- Hands-on experience with modern security tools, hardware and software security implementation, communication protocols, encryption technologies, and web services.
- Expert-level understanding of security vulnerabilities and remediation techniques, including risk assessment, risk management, and security strategy/design.
- Experience formulating, implementing, and assessing IT security policy.
- Solid understanding of ATOs, SSPs, and STE/STN requirements.
- Direct experience collaborating with software developers, testers, and integration, deployment, and sustainment teams.
- Strong communication and interpersonal skills, with a proven ability to convey program requirements and compliance challenges to multiple customer stakeholders.
- Demonstrated ability to coordinate across multiple internal teams for planning and remediation activities.
- Solutions-oriented team player with a high level of self-initiative.
- Security clearance required: TS/SCI with Polygraph.
Similar Jobs
J
J