Software Assurance Security Engineer - Mid Level - CBP.
Job Description:. Department of Homeland Security (DHS), Customs and Border Protection (CBP) Security Operations Center (SOC) is a US Government program responsible to prevent, identify, contain and eradicate cyber threats to CBP networks through monitoring, intrusion detection and protective security services to CBP information systems including local area networks/wide area networks (LAN/WAN), commercial Internet connection, public facing websites, wireless, mobile/cellular, cloud, security devices, servers and workstations. The CBP SOC is responsible for the overall security of CBP Enterprise-wide information systems, and collects, investigates and reports any suspected and confirmed security violations. Leidos has an immediate need for a Mid Level Software Assurance (SA) Security Engineer to join our CBP Team. The Software Assurance Security Engineer duties will include:. Apply coding and testing standards, security testing tools, threat modeling and conduct code reviews. Conduct trial runs of programs and software applications to ensure the desired information is produced and instructions are correct. Identify common coding flaws. Perform integrated quality assurance testing for security functionality and resiliency attacks. Perform penetration testing as required for new or updated applications.Apply defense functions (ie: encryption, access control, identity management) to reduce exploitation opportunities of supply chain vulnerabilities. Required Skills and Education :. BS degree in Science, Technology, Engineering, Math or related field and 8 to 10 years of prior relevant experience with a focus on cyber security or Masters with 6 to 10 years of prior relevant experience. Must have an active Secret Clearance . In addition to the specific clearance requirement, all personnel supporting CBP must have a current background investigation (BI) or obtain a favorable BI before joining the program. Must have comprehensive knowledge of Information Security issues to include: Cloud technology, Internet servers, Web-enabled database application, Data integrity, Intrusion detection, Firewalls management, Forensic and legal information security, Virtual private networks, Public key/infrastructure/digital signature, Encryption, Network security architecture. Desired Skills :. Network Security background and Cloud/AWS experience.