Senior Zero Trust Network Engineer

Company: Leidos
Location: Bowie
Posted on: March 16, 2023

Job Description:

Description Job Description:The Leidos Civil IT Cyber Services Group is seeking a Zero Trust Network Engineer to support our U.S. Mint Cybersecurity Support Services contract. The Zero Trust Network Engineer will be abreast of the CISA Zero Trust (ZT) requirements to guide the government agency on the best practice deployment as well as support configuration of zero trust tools in their environment. This role seeks a cybersecurity engineer that strives to keep abreast of the latest regulatory guidance and best practices within federal cybersecurity services. The candidate will have superior attention to detail and excellent organizational skills, as well as the ability to meet deadlines and work in a highly collaborative work environment. The candidate will possess the ability to complete complex tasks and projects, conduct research as needed, react with appropriate urgency to situations that require a quick turnaround, and take effective action without having to know the total picture.Primary Responsibilities:Analyze the client's current network architecture in conjunction with ZT assessment findings to recommend future-state network architecture design for the government agencyPerform research and lead proof of concept efforts to determine where additional technologies may be necessary to achieve the desired level of zero trustAnalyze and develop requirements, use cases, and technical documentation to support the zero trust transformation for the agency deploymentInterface with the client and work with a team of 3-5 practitioners in conducting assessments and executing follow on actionsIdentify system security requirements for external and internal facing web applications, networks, operating systems, and cloud environmentsEnsure the secure design, architecture, installation, configuration, hardening, and remediation for software applications to protect the bureau's sensitive informationReview, analyze and design zero trust products and security configurationsPerform deployment and configuration of zero trust broker tools with other security tools, including identity management, Security Information and Event Management (SIEM), and EDR tools and or access to the internet and private applicationsDevelop ongoing operations and maintenance plan for the zero trust tools, including providing patching and end-user support with engineering team to provide ongoing maintenanceCollaborate with SIEM engineers to ensure logs are onboarding and maintained in the SIEM toolProvide support for ongoing SIEM tuning and use case developmentProvide ongoing advisory support to bureau leadership on responses to new network requirements and regulatory mandates (such as executive orders, emergency directives, binding operational directives, and data calls from governance and oversight bodies)Design, integrate and configure cyber security and network monitoring toolsDevelop strategies to respond to and recover from a security breachAdvocate for technology insertion, that improves current inefficienciesBoost clients with data protection and overarching cloud capabilitiesImplement core and cloud infrastructure security to manage risks and exposurePerform cyber reconnaissance to illuminate a potential attack surface areaProvide threat and vulnerability management to federal clients and teamsAnalyze tactical network architectures and topologies to assess security risksBasic Qualifications:Bachelor's degree and 10+ years of cybersecurity engineering experienceMust be able to obtain and maintain a Public Trust ClearanceUS Citizenship Preferred and US Person RequiredHands on practice with common enterprise-wide network security and (SIEM) technologies or tools such as ZScaler, CrowdStrike, Forescout, Palo Alto Networks, Cisco, Juniper, Microsoft and SplunkExperience with enterprise cloud systems and solutions across aero trust pillarsKnowledge of ZT based Identity, Credential, and Access Management (ICAM) solutionsUnderstanding of modern network infrastructure capabilities (i.e., Secure Access Service Edge (SASE), Software-Defined Wide Area Networks (SD-WAN), Software-Defined Perimeter (SDP), Software-Defined Networks (SDN), etc.)Experience working with/in SOCs and/or NOSCsBackground with cyber threat indicators and prioritizing cyber threatsFamiliarity with federal government environments, standards, and architecturesExperience in U.S. security requirements related to regulations or standards, including NIST SP 800-171, 800-53, RMF, ISO 27001, Trusted Internet Connection (TIC) 3.0, and SOXWorking knowledge of zero trust principles, frameworks, and implementation strategiesPreferred Qualifications:Forrester Zero Trust Strategy certificationLocation:Hybrid Primarily Remote/Occasional Onsite DC Client SitePay Range:Pay Range $97,500.00 - $150,000.00 - $202,500.00The Leidos pay range for this job level is a general guideline onlyand not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.

Keywords: Leidos, Bowie , Senior Zero Trust Network Engineer, Other , Bowie, Maryland