Cyber Security Engineer

ings to identify products that meet security requirements. The Cyber Security Engineer will work with stakeholders to create and perform quality control on the Sponsor's partner's RMF body of evidence documentation, reviewing assessment reports and assisting IT projects in identifying security risks (technical and non-technical) and developing effective mitigation strategies such as Plans of Action and Milestones (PoAMs), ensuring IT projects complete mitigation strategies as scheduled to ensure timely delivery to the customer. They will provide cyber security support and recommendations to the development and accreditation of systems, provide and support cyber security mitigation recommendations to enable Sponsor's mission, implement and support the component information systems requirements, and use the Project Management Framework and Risk Management Framework. The Cyber Security SME will act as an Information Assurance, Certification & Accreditation (C&A) and Assessment & Authorization (A&A) lead for the Sponsor's offices. They will work closely with other business offices and peers daily, be directly involved in processing all organizational efforts through the risk management cycle, and closely coordinate and track risks, accreditation status, and reporting status across project teams.

Requirements for role:

• Must have a TS/SCI with poly to be considered

• Must have a Bachelor's degree and at least 12 years of experience OR Masters and at least 10 years of experience

Basic Qualifications:

• Demonstrated experience performing as an Information System Security Manager (ISSM), Information Systems Security Officer (ISSO), and Information System Security Engineer (ISSE).

• Demonstrated experience supporting systems security practices, policies, regulations, and guidelines.

• Demonstrated on-the-job experience with Non-Title 50 (NT-50) information systems, Enterprise and IC networks and systems.

• Demonstrate experience with the Risk Management Framework (RMF) life cycle.

• Demonstrated on-the-job experience with the Sponsor's policies, procedures, and guidance for cyber security.

• Demonstrated on-the-job experience or understanding of Sponsor's Project Management Framework and Risk Management Framework.

• Demonstrated experience navigating RMF processes in order to achieve Authorization to Proceed.

• Demonstrated experience with creating or developing systems documentation to support authorization and accreditation requirements.

• Demonstrated experience and knowledge of Information Security (INFOSEC) policies.

• Demonstrated experience understanding and evaluating security risks of systems and networks.

• Demonstrated experience with Authority and Accreditation (A&A) and C&A packages needed to obtain security approvals for software applications deployments into production state

• Demonstrated experience assuring software applications adhere to continuous monitoring and compliance with Security accesses and controls

• Demonstrated experience reviewing and authoring System Security Plans (SSP)

• Demonstrated experience writing and reviewing risk assessment and mitigation reports

Original Posting:
June 26, 2025
For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

Pay Range:
Pay Range $126,100.00 - $227,950.00

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.