ISSO / Security Engineer
Description: The Leidos Advanced Solutions Group has an exciting opening for an ISSO / Security Engineer at our customer sites in Bethesda. As our Information Systems Security Engineer you will work as part of a team responsible for developing DOMEX Data Discovery Platform (D3P), a next generation machine learning pipeline platform that will provide cutting edge data enrichment, triage, and analytics capabilities to Defense and Intelligence Community members. The D3P program will advance the state of the art in mission-focused big data analytics tools and micro-service development spanning the breadth of Agile sprints to multiyear research and development cycles. The successful candidate will be responsible for leading certification and accreditation process for the DOMEX Data Discovery Platform (D3P) program as well as integrating security controls into hardware and software systems. The candidate will guide system installation and administrative actions in support of configuration maintenance and patch management requirements in accordance with the Risk Management Framework (RMF). The candidate will work closely with the D3P chief architect, software, data, and devops engineers, and data scientists on the following key tasks: Lead certification and accreditation (C&A) process to include review of applicable documentation, providing feedback on completeness and compliance of its content. Establish and implement a System Security Engineering (SSE) management process to integrate security and privacy controls into complex hardware and software systems in accordance with applicable laws, directives, issuances, and standards (eg, FISMA, RMF, NIST). Highly proficient with ICD 503 and NIST SP 800-53 Employ security measures to monitor and protect sensitive data and systems from infiltration and cyber-attacks. Perform system installation, configuration maintenance, account maintenance, signature maintenance, patch management, and troubleshooting of operational IA and CND systems. Qualifications: The candidate will be able to demonstrate the following job requirements: BS in Computer Science, Systems Engineering, or related technical field or equivalent experience with 6+ years in systems engineering security and administration with a focus on system certification and accreditation or 4 additional years of experience in lieu of degree An Active TS/SCI DoD security clearance Must possess IAM Level III / CISSP certification Experience leading the certification and accreditation of a multi-level security DoD/IC information system with cross-domain transfer capabilities Experience with cross-domain solution implementation and certification Proficiency in Python, Bash, or other comparable scripting language Experience in networking (TCP/UDP, ICMP, and DNS, etc.), OSI Layers, infrastructure services, and security Proficiency in Linux (CentOS or RHEL a plus) as well as Windows administration Ability to work well with people from many different disciplines with varying degrees of technical experience Ability to express complex technical concepts effectively, both verbally and in writing Desired Technical Experiences and Skills: Experience in designing and implementing cloud-based security and management packages (eg SAML ping) as well as experience with security management in virtualization technologies and Docker Experience with IDS/IPS, penetration and vulnerability testing; firewall and intrusion detection/prevention protocols; secure coding practices, ethical hacking and threat modeling. Experience assessing the susceptibility of complex hardware and software systems, to threats in the projected or actual environment of operation Experience identifying, specifying, designing, and deploying protective measures to address complex hardware and software systems vulnerabilities and degree to which they can be expected to reduce the risks to system and data availability, integrity, and confidentiality Experience identifying, quantifying, and evaluating the costs and benefits of protective measures to inform engineering trades and risk treatment decisions Experience in developing and implementing static and dynamic malware identification methods to identify malicious files and using Content Disarm and Reconstruction (CDR) techniques to alter a file's internal structure while preserving the usability of a file, and convert a file to another format while preserving the usability of the file. The ideal candidate has a demonstrated aptitude for problem solving complex technical issues, identifying, transforming, thinking outside the box, and a strong sense of accountability is desired. We are seeking individuals with a mix of technical excellence, intellectual curiosity, communications skills, customer-focus, and operational experience to improve the performance and user adoption of high-end data analytics platforms in partnership with a highly qualified, highly motivated team. Individual must be motivated, self-driven team player who can multi-task and interact well with others and advise/consult with other team members on systems security engineering and software development related issues. ASG/SPOExternal Referral Eligible ArlingtonASG Leidos Overview: Leidos is a global science and technology solutions leader working to solve the world s toughest challenges in the defense, intelligence, homeland security, civil, and health markets. The company s 33,000 employees support vital missions for government and commercial customers. Headquartered in Reston, Virginia, Leidos reported pro forma annual revenues of approximately $10 billion for the fiscal year ended January 1, 2016 after giving effect to the recently completed combination of Leidos with Lockheed Martin's Information Systems & Global Solutions business (IS&GS). For more information, visit www.Leidos.com. The company s diverse employees support vital missions for government and commercial customers. Qualified women, minorities, individuals with disabilities and protected veterans are encouraged to apply. Leidos will consider qualified applicants with criminal histories for employment in accordance with relevant Laws. Leidos is an Equal Opportunity Employer.