Cybersecurity Operations Engineer Jobs

Description

The primary mission of the United States Mint (Bureau under United States Department of Treasury) is to serve the American people by manufacturing and distributing circulating, precious metal and collectible coins and national medals, and providing security over assets entrusted to us.

The Leidos USMINT SOC Program has a current need for a Cybersecurity Operations Engineer. The engineer will be responsible for discovering cybersecurity risks, vulnerabilities, prioritizing assets, and utilizing remediation/mitigation techniques. This role will serve as one of the focal points to support the bureau’s efforts to reduce vulnerabilities, drive and track remediation and mitigation, and foster an environment of risk management to prioritize and tackle threats to business problems.

Primary Responsibilities

• Develop, test and modify custom scripts and applications for vulnerability testing.
• Experience with Information Assurance (IA) hardening and compliance (STIG, CIS, documentation, etc.)
• Develop reports using data that is hosted in multiple sources/tools (e.g. spreadsheets, databases) and communicate clearly to leadership and other cyber teams
• Use manual testing techniques and methods to gain a better understanding of the environment and reduce false negatives.
• Support troubleshooting Local Area Network (LAN)/Wide Area Network (WAN) and other network related problems.
• Experience deploying security solutions in AWS and MS Azure.
• Participate in Proof-of-Concept efforts ranging from initial client exploratory meetings, gathering requirements, and structuring solutions.
• Familiarity with operating and managing email security solutions stack.
• Validate remedial actions and ensure compliance with information security policy and regulatory requirements.
• Perform ad-hoc data manipulations, clean-ups, and reporting using large complex data sets for rapid security responses.
• Incident response support including security monitoring, network and endpoint visibility, and threat management.
• Use automated tools (e.g. Nessus) to pinpoint vulnerabilities and reduce time-consuming tasks
• Security engineering operations experience with security tool implementations, routine upgrades, and monthly maintenance.
• Develop risk-based mitigation strategies for our client's networks, operating systems, and applications.
• Review and define requirements for information security solutions and document security breaches and the extent of the damage caused by the breaches through extensive reports.
• Provide direct engineering support to a Security Operation Center.
• Experience with implementing security tool projects following solution engineering lifecycle.

Basic Qualifications

• At least 3 years of experience querying, analyzing and working with vulnerability data
• Linux experience and/or system administration
• Ability to obtain Public Trust clearance
• Splunk and SIEM experience
• Familiarity of Threat Classification and CVE
• Familiarity Network Devices and Routing
• Proven analytical and problem-solving skills
• Knowledge of the CISA Zero Trust model for security
• Experience working with vulnerability scanning, reporting, and Network tools (Tenable, Nessus, Qualys, NMAP)
• Trusted Internet Connection (TIC) experience
• Firm understanding of network security controls and network and infrastructure.
• Self-motivated to improve knowledge and skills
• Knowledge in networking, phishing, and endpoint security
• Familiarity with task automation for security tools and workflows.
• Network Terminal Access Point (TAP) experience (Gigamon, IXIA)
• Ability to continuously research emerging threats to the environment to disseminate the information to all stakeholders, immediately assess the known environment for presence of the vulnerability, and work with the enterprise networking teams to proactively block exploitation within the environment.
• Team player with ability to work collaboratively with other system administrators, system engineers, and network engineers in a team environment.
• System/Network Monitoring experience (Gigamon, Forescout)

Education & Experience

• Requires CISSP, CASP or higher industry acknowledge security certification.
• Network Certifications, Cisco (CCNP or higher) preferred
• Requires Technical BS degree with 6+ years of prior relevant work experience within Cybersecurity or 8+ years in lieu of degree

Pay Range

Pay Range $78,000.00 - $120,000.00 - $162,000.00

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.

#Remote