Lead Cybersecurity Engineer

Description

The Leidos Digital Modernization Sector is seeking an experienced Lead Cybersecurity Engineer to support the Department of the Navy at the Naval Information Warfare Center (NIWC) Atlantic through its Cybersecurity Service Provider (CSSP) program. The Lead Cybersecurity Engineer will play a key role in providing comprehensive cybersecurity support across multiple domains, including Incident Response, Incident Coordination, Cyber Hunt, Digital Forensics, Insider Threat, Continuous Monitoring, Vulnerability Assessment, Cybersecurity Tool Development, and more.

The NIWC Atlantic supports the Department of Defense (DoD), Joint, Coalition, Non-DoD, and other Federal agencies by delivering critical C4ISR capabilities, focusing specifically on Defensive Cyberspace Operations (DCO). Under this task order, the Lead Cybersecurity Engineer will be part of a team that provides both classified and unclassified network monitoring services. The CSSP collaborates with industry, academia, DoD, non-DoD, and other Federal entities to innovate and develop cutting-edge applications, platforms, and processes for DCO.

• Lead and Mentor Team: Provide leadership and guidance to a team of cybersecurity professionals, ensuring best practices are followed and fostering continuous growth in cyber initiatives, policies, and professional development.
• Policy Development and Compliance: Develop, implement, and enforce robust cybersecurity policies, ensuring adherence to DoD 8570.1M and DoD 8140 standards.
• Assessment and Authorization (A&A) Leadership: Oversee the A&A processes, leading the team through the necessary stages and managing deliverables to ensure compliance and security.
• System Security and Reporting: Manage systems to meet security requirements, regularly reporting the security posture to Government officials, and ensuring transparency and compliance.
• Cybersecurity Planning and Implementation: Lead the planning, execution, and enhancement of cybersecurity measures to bolster defense capabilities and maintain a resilient, secure network infrastructure.
• Risk Assessment and Mitigation: Conduct thorough risk assessments, identify vulnerabilities, and develop and implement mitigation strategies to minimize cybersecurity risks.
• Security Control Oversight: Continuously monitor and evaluate security controls, ensuring that effective safeguards are in place to protect digital assets and critical infrastructure.
• Incident Response and Reporting: Investigate, analyze, and respond to cybersecurity incidents, executing corrective actions and generating comprehensive reports in accordance with DoD guidelines.

• Active Security Clearance: Must hold a current Secret security clearance.
• Educational Background: Bachelor's degree in Cybersecurity, Computer Science, or a related field, coupled with at least 12 years of relevant experience. Additional years of applicable experience may be considered in lieu of a bachelor's degree.
• Certification(s): At a minimum, the candidate must meet DoD 8570 IAT Level III (or equivalent/higher) certification requirements, such as CISA, GSE, SCNA, CISSP (or Associate), GCIH, GLSC, or CISM.
• Experience: A minimum of 12 years of extensive experience in developing, implementing, and overseeing cybersecurity policies, with a strong focus on compliance with industry standards, including Assessment and Authorization (A&A) requirements.
• Expertise in assessing cybersecurity vulnerabilities, identifying risks, and proposing and executing remediation strategies or risk mitigation actions.
• Demonstrated proficiency in implementing and maintaining security controls to protect digital assets and electronic infrastructure.
• Proven track record of responding to cybersecurity incidents, restoring security measures, and preparing detailed reports in accordance with DoD protocols and regulations.
• Must have the ability to travel internationally.

• Master's degree in Cybersecurity or Computer Science.