Description

The Defense Group at Leidos has an exciting opportunity as the Cyber Security Architect on our GSMO II IDIQ Contract supporting the Defense Information Systems Agency. This position is performed out of Ft. Meade, MD and supports the Office of the Chief Architect for our GSMO-II customers in the Washington, DC area [DISA (Fort Meade, MD), JSP (Pentagon), etc.]

The selected candidate will be a member of DISA GSM-O II program in support of the Cyber related program and will serve as the technical liaison between DoD Mission Partners and DISA as related to Cyber Security Architecture, sensing and monitoring technologies and data. Main role duties include performing network architecture reviews, providing recommendations on improved network security strategy, evaluating network instrumentation and designing best of breed cloud-based and on-premise network security architectures. The selected candidate will also provide expertise on security data identification, acquisition, transport, data transformations, and assistance in development of cyber solutions for DISA. Travel may be required up to 25%. Primary work location is Fort Meade, MD.

• Identify security relevant data and tools in both traditional and cloud mission areas and develop solutions for evolving capabilities, making formal recommendations to agency stakeholders
• Research and Develop Defensive Cyber Operations (DCO) security strategies across multiple Areas of Responsibility (AOR)
• Conduct network security architecture reviews, and develop security solutions for Mission Partners aligning to DISA CSSP offerings
• Perform periodic Mission Partner reviews to assess and verify the effective instantiation of traditional security appliances, and Cloud Native Technologies
• Conduct and deliver weekly and monthly status updates to government representatives

• Develop Infrastructure as Code for automation of Mission Partner Integration with DISA CSSP Defensive Cyber Operations (DCO) platforms
• Implement, and sustain multi-cloud Test & Integration environments for the purpose of evaluating security capabilities, and assisting defenders in performing cyber threat emulations and development of detections

• 8570 IASAE II certification (CASP+ CE, CISSP (or Associate), CSSLP)
• Bachelor's Degree with 15+ years of experience
• AWS Solutions Architect - Professional
• AWS Certified Security - Specialty
• Microsoft Certified Cybersecurity Architect Expert
• Experience with FedRAMP and NIST 800-53 control mapping
• Experience with MITRE ATT&CK
• Senior Cybersecurity Architect with strong written and verbal communication skills

• Active TS/SCI clearance
• Experience w/ DoD and DISA Networks
• Familiarity with DISA JRSS
• Strong project management skills
• Experience with Endpoint Detection and Response
• Experience with developing cloud security strategies
• Knowledge of DoDI 8530 Cybersecurity Activities Support to DoDIN Operations
• Knowledge of DoD Cloud Computing Security Requirements Guide (CC SRG)
• CISSP Certification
• CCSP or CCSK Certification
• CCNA/CCNP in Security
• Experience with developing data push and pull solutions in multiple scripting languages
• Understanding of common data log formats (JSON, XML, CSV), and experience with transforming subsets of the data for ingest by automated monitoring systems
• Proficiency in Python, CloudFormation, Terr
• Experience with DevSecOps, Infrastructure as Code (IAC) Continuous Integration/Continuous Delivery (CI/CD)
• Experience with data normalization and data normalization tooling
• Proficient discussing Cybersecurity Policy at the architecture level as driven by modern infrastructure not limited to but including containers, serverless infrastructure, SaaS, DaaS, PaaS
• GIAC Cloud Security Automation (GCSA) certification
• Azure Developer Associate certification
• Azure Security Engineer Associate certification
• AWS Certified Developer Associate certification
• AWS Certified Security Specialty certification