Description Are you ready to make a significant impact in the field of cloud security? Join Leidos, where we pride ourselves on delivering innovative solutions through our talented and diverse team aimed at ensuring customer success. Our commitment to sustainability and community involvement drives everything we do. The Leidos National Security Sector (NSS) integrates technology services and mission-specific software capabilities in cyber, logistics, security operations, and decision analytics, supporting our defense and intelligence customers as they tackle ever-evolving global threats.
Your next career move awaits. The Multi-domain Solutions Division (MDS) within Leidos NSS is actively seeking an experienced Lead Cloud Security Engineer to contribute to a pioneering cybersecurity program. This role will be integral in managing development, integration, delivery, and operations of IT managed security services that provide insights into cybersecurity threats and enhance security posture across critical governmental systems. This position is in anticipation of a future contract award.
Key Responsibilities: - Design, implement, and manage secure cloud environments to safeguard sensitive data and crucial business applications.
- Collaborate with security teams, cloud architects, and DevOps engineers to align cloud services with industry best practices, compliance standards, and security frameworks.
- Take charge of securing applications and services in multi-cloud environments.
- Evaluate cloud security risks, automate security measures, and respond to incidents to enhance the organization's overall cloud security.
- Lead technical planning and system design, ensuring integration, validation, and successful fielding of solutions.
- Analyze alternatives considering cost, risk, and overall system supportability and efficiency.
- Conduct systems requirements analysis and functionality assessments while managing project timelines and deliverables.
- Guide projects or processes that span multiple technical domains.
- Develop secure cloud architectures across AWS, Azure, and Google Cloud (GCP) for IaaS, PaaS, and SaaS models.
- Create and enforce comprehensive cloud security policies in line with NIST, CIS, and ISO 27001 frameworks.
- Apply secure design principles across cloud infrastructures, ensuring strategies like Zero Trust and Defense-in-Depth are implemented robustly.
- Configure cloud-native security tools and manage threat detection to ensure real-time responses to security incidents.
- Integrate security into CI/CD pipelines, embedding it throughout the software development lifecycle.
- Utilize Infrastructure as Code (IaC) with Terraform, CloudFormation, or ARM templates to uphold security best practices.
- Automate compliance and vulnerability assessment processes within cloud environments.
- Work alongside DevOps teams to enhance security for containerized, cloud-based applications.
- Investigate security events through SIEM platforms like Splunk or Microsoft Sentinel, performing root cause analysis when necessary.
- Develop incident response plans for cloud environments to ensure rapid remediation of security breaches.
- Manage Identity and Access Management (IAM) solutions to enforce least privilege access and compliance.
- Conduct regular audits and vulnerability assessments to fortify cloud security measures.
- Ensure compliance with essential regulatory frameworks such as GDPR, HIPAA, and FedRAMP, implementing appropriate controls and documentation.
- Carry out periodic risk assessments, providing recommendations for addressing security vulnerabilities.
Qualifications: - Active Top Secret/SCI (TS/SCI) with Polygraph security clearance required. Must be a U.S. Citizen.
- Bachelor's degree plus 8 to 12 years of relevant experience, or a Master's degree with 6 to 10 years of relevant experience. Experience may substitute for degree requirements.
Preferred Experience: - AWS Certified Security - Specialty.
- Microsoft Certified: Azure Security Engineer Associate.
- Google Professional Cloud Security Engineer.
- Certified Information Systems Security Professional (CISSP).
- Certified Cloud Security Professional (CCSP).
- Experience with Kubernetes security practices.
- Familiarity with encryption technologies and key management systems in cloud environments.
- Knowledge of implementing Zero Trust principles.
Original Posting Date: April 7, 2025
Note: This job requisition will remain open for at least 3 days from the posting date.
Pay Range: $104,650.00 - $189,175.00
Leidos provides a general salary range which varies depending on factors like job responsibilities, education, experience, and internal equity.