Security Engineer

Overview

Leidos is seeking a Security Engineer to support the National Media Exploitation Center (NMEC). This role will be responsible for analyzing and assessing computer / network architecture security requirements and determining optimum, cost-effective solutions. The individual will work effectively with cross-functional teams to define technical requirements and identify and resolve technical design issues. This role will collaborate with client, server and other internal / external teams to identify support and technology advancements to meet current and future security requirements. The work location is in Bethesda at the Intelligence Community Campus.

This is a 100% on-site position. All work must be performed at the customer site in Bethesda at the Intelligence Community Campus.

Primary Responsibilities

Review C&A documentation providing feedback on completeness and compliance of its content

Perform system installation, configuration maintenance, account maintenance, signature maintenance, patch management, and troubleshooting of operational IA and CND systems

Apply system security engineering expertise in one or more of the following : system security design process; engineering life cycle; information domain; cross domain solutions; commercial off-the-shelf and government off-the-shelf cryptography; identification; authentication; and authorization; system integration; risk management; intrusion detection; contingency planning; incident handling; configuration control; change management; auditing; certification and accreditation process; principles of IA (confidentiality, integrity, non-repudiation, availability, and access control); and security testing

Work closely with other systems architects and project managers to develop, plan and implement system enhancements and upgrades to meet security requirements based on STIG and NIST 800.53.

Provide technical support, troubleshooting and complex problem resolution on escalated issues related to security enhancements implemented within the infrastructure.

Ensure that security requirements and objectives are identified, implemented, automatically monitored, automatically reported in compliance with NMEC2 RMF and other security directives as detailed by the NMEC2 ISSM.

Ensure all applicable security requirements are met in accordance with existing and evolving IA reference security documents.

Provide written input to the ISSMs when a security relevant change is required for existing systems or contractors.

Assist the ISSMs in performing systems security requirements analysis where needed in preparation for security compliance and relay findings through the ISSMs that may impact design, operations and / or performance to the relevant engineering or operations groups.

At Government direction, assist ISSMs to enhance and deploy security services architecture.

As directed by the Government, participate in customer Technical Exchange Meetings (TEMs) to gather requirements, and participate in Security TEMs in relation to systems security and system accreditation as required.

Maintain currency on system security documentation (body of evidence) for all accreditation documentation in accordance with all specified National Institute of Standards and Technology (NIST) 800-53 controls for all project and service activities in support of ATO.

Collaborate on IA activities with NMEC2, the ISSMS, and the appropriate Cyber Security Program Offices to ensure incorporation of NMEC2 RMF strategic goals and objectives.

Work with ISSMs as ATO authority within the NMEC and with NMEC IT customers to :

Verify that security measures are taken, maintained, reported on and updated as required

Notify Government in writing (via assigned ISSM(s)) assisting ISSM(s) to edit JAVA and POA&M documentation when expected measures have not been implemented

Meet mission objectives in accordance with applicable security policies and directives.

Collaborate with NMEC2 ISSM and security engineering to ensure that all systems are compliant with ICD-503 and other security directives as designated by the NMEC2 ISSM to include :

Design / enhancement of firewalls and controlled interface security architectures (based on requirements provided by NMEC2 ISSM and appropriate security organization(s))

Identify, implement, automated management, automated monitoring, and automated reporting of detailed ongoing security hardening, patching, and virus-checking

Implement procedural protective measures, fully automating repeatable processes and reporting to maintain systems compliance toward ATO

Manage, supervisor, and / or mentor security and technical staff

Basic Qualifications

Bachelor’s degree in Computer Science, Information Technology, or a related field, or equivalent work experience.

Experience with application performance and latency problems related to security requirements from front, middle, and back end

Working experience with Windows Server 2016 / 2019, Active Directory, IIS, DNS, DHCP, Exchange, DFS

Experience implementing security controls on common network services such as file, email, and active directory across multiple geographically dispersed sites.

Experience with networking technologies and security assessment to include, but not limited to, STIGs.

Experience implementing and supporting enterprise system security and malware monitoring and prevention tools such as Splunk, McAfee HBSS, and ACAS

Solid network and systems troubleshooting experience with TCP / IP, Internet security, and encryption (data at rest, data in transit)

Ability to produce clear and concise documents and diagrams capturing networking and operational procedures and LAN / WAN topology using MS Visio, MS Project, MS Excel and MS Word.

Candidate must, at a minimum, meet DoD 8570.11- IAT Level II certification requirements (currently Security+ CE, CCNA-Security, GSEC, or SSCP along with an appropriate computing environment (CE) certification)

Education / Experience Requirements

Candidate must have a Bachelor's, with at least 8 years of relevant experience. Additional years of experience may be considered in lieu of degree.

Clearance

Active TS / SCI clearance with Polygraph required OR active TS / SCI and willingness to get a Poly.

US Citizenship is required due to the nature of the government contracts we support.

Preferred Qualifications

Experience managing and / or supervising a team of technical professionals

CISSP or CASP Certification

At Leidos, we don’t want someone who "fits the mold"—we want someone who melts it down and builds something better. This is a role for the restless, the over-caffeinated, the ones who ask, “what’s next?” before the dust settles on “what’s now.”

If you’re already scheming step 20 while everyone else is still debating step 2… good. You’ll fit right in.

Original Posting : September 9, 2025

Pay Range :

Pay Range $104,650.00 - $189,175.00

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.

J-18808-Ljbffr