Cybersecurity Engineer SME
Company: Leidos
Location: Bethesda
Posted on: April 5, 2026
|
|
|
Job Description:
Leidos has an exciting opportunity for Cybersecurity Engineer
SME in our Intel Security Sector's Analysis Solutions Business Area
. Our talented team is at the forefront in Security Engineering,
Computer Network Operations (CNO), Mission Software, Analytical
Methods and Modeling, Signals Intelligence (SIGINT), and
Cryptographic Key Management. At Leidos , we offer competitive
benefits , including Paid Time Off, 11 paid Holidays, 401K with a
6% company match and immediate vesting, Flexible Schedules,
Discounted Stock Purchase Plans, Technical Upskilling, Education
and Training Support, Parental Paid Leave, and much more. Join us
and make a difference in National Security! Job Summary The
Cybersecurity Engineer SME is responsible for protecting the
customer’s information systems, networks, and infrastructure from
cyber threats and vulnerabilities. This role supports the design,
implementation, and maintenance of security controls that safeguard
mission systems and ensure compliance with applicable cybersecurity
policies, standards, and regulatory frameworks. The Cybersecurity
Engineer SME will work closely with Information Systems Security
Engineers (ISSEs), Information Systems Security Managers (ISSMs),
software developers, systems engineers, and government stakeholders
throughout the DevSecOps lifecycle. The candidate will perform a
full spectrum of cybersecurity engineering activities, including
implementing security technologies, supporting incident response
efforts, and ensuring systems meet required security and compliance
standards. Primary Responsibilities: Plan, implement, manage,
monitor, and upgrade security controls and tools used to protect
enterprise systems and networks, while identifying opportunities to
automate repeatable operations tasks. Design, configure, implement,
troubleshoot, and maintain security technologies such as firewalls
(security groups), endpoint protection tools (HBSS/Trellix), SIEM
platforms (Splunk). Monitor system and network security using
Security Information and Event Management (SIEM) tools such as
Splunk Enterprise Security to detect, analyze, and respond to
potential threats or anomalous activity. Support the investigation
and remediation of cybersecurity incidents, including system or
network breaches and malware infections. Participate in change
management processes to ensure system changes maintain security
compliance and do not introduce new vulnerabilities. Audit systems
and configurations to ensure compliance with established
cybersecurity policies, standards, and secure configuration
baselines. Collaborate with engineering, development, and
operations teams to integrate security controls into DevSecOps
pipelines and system architectures. Continuously monitor security
advisories, bulletins, and industry threat intelligence to stay
informed of current vulnerabilities, threats, and trends. Assist
with the implementation and enforcement of secure system
configurations and cybersecurity compliance requirements. Support
vulnerability management activities by reviewing scan results,
assessing risk, and coordinating remediation efforts with system
owners and technical teams. Basic Qualifications: Experience
implementing and managing Security Information and Event Management
(SIEM) tools such as Splunk or similar platforms. Experience
working with endpoint and network security technologies, including
IDS/IPS, HBSS/Trellix, and related defensive security tools.
Experience reviewing and analyzing cybersecurity event logs to
identify indicators of compromise or suspicious activity.
Experience supporting incident response plans, vulnerability
management programs, risk management plans, and Plans of Action and
Milestones (POA&Ms). Experience conducting or supporting
technical cybersecurity assessments and security audits. Experience
identifying system vulnerabilities and instances of non-compliance
with cybersecurity standards and regulatory requirements.
Experience collaborating with DevSecOps teams to review
vulnerability scan results and support remediation of findings.
Experience supporting the Risk Management Framework (RMF)
authorization process by reviewing security documentation and
providing risk-based recommendations to stakeholders regarding
system risk posture as part of Authority to Operate (ATO)
activities. Manage and track Plans of Action and Milestones
(POA&Ms) for customer-sponsored systems, coordinating with key
stakeholders including ISSOs, ISSEs, ISSMs, and Security Control
Assessors (SCAs) Experience applying system security engineering
principles in areas such as system security design, lifecycle
engineering, authentication and authorization mechanisms,
cryptography, intrusion detection, contingency planning, incident
handling, auditing, configuration management, and change control.
Professional cybersecurity certifications such as Security, CISSP,
CySA, CEH, or GCIH. Education/Experience : Requires MS degree and
15 or more years of prior relevant experience. Additional years of
experience may be substituted in lieu of a degree. To be considered
must have an active TS/SCI with polygraph security clearance
Preferred Qualifications: Experience with cybersecurity tools such
as Rapid7, Tenable/Nessus, HBSS/Trellix, SonarQube, or endpoint
detection and response (EDR) platforms, as well as using STIG
viewers and compliance tools to assess systems against established
security configuration baselines. Experience implementing and
managing network and application firewalls, incident detection
platforms, and digital forensic tools. Experience with automation
tools such as Ansible or CloudFormation to support infrastructure
and security automation. Experience with Agile software development
environments and scripting/programming languages such as Python or
PowerShell. (e.g., React). Familiarity with cloud computing
environments, including AWS, Oracle Cloud, or Google Cloud Platform
(GCP). Experience with system monitoring and health tools such as
SolarWinds. Experience working with DevSecOps pipelines and CI/CD
security tools. Experience administering or securing systems in
Linux environments (Red Hat). At Leidos , the opportunities are
boundless. We challenge our staff with interesting assignments that
allow them to thrive professionally and personally. For us, helping
you grow your career is good business. We look forward to learning
more about you – apply today. CABARESTON If you're looking for
comfort, keep scrolling. At Leidos, we outthink, outbuild, and
outpace the status quo — because the mission demands it. We're not
hiring followers. We're recruiting the ones who disrupt, provoke,
and refuse to fail. Step 10 is ancient history. We're already at
step 30 — and moving faster than anyone else dares. Original
Posting: April 3, 2026 For U.S. Positions: While subject to change
based on business needs, Leidos reasonably anticipates that this
job requisition will remain open for at least 3 days with an
anticipated close date of no earlier than 3 days after the original
posting date as listed above. Pay Range: Pay Range $154,050.00 -
$278,475.00 The Leidos pay range for this job level is a general
guideline only and not a guarantee of compensation or salary.
Additional factors considered in extending an offer include (but
are not limited to) responsibilities of the job, education,
experience, knowledge, skills, and abilities, as well as internal
equity, alignment with market data, applicable bargaining agreement
(if any), or other law.
Keywords: Leidos, Bel Air South , Cybersecurity Engineer SME, IT / Software / Systems , Bethesda, Maryland
