Linux Security Engineer

Description

Leidos has an immediate need for a Linux Security Engineer for a new customer on a highly visible and strategic Cybersecurity Task Order. The Linux Security Engineer will need to be a self-starter with excellent analytical and problem-solving skills, flexibility, good judgment, and the ability to coordinate multiple, concurrent tasks in an effective manner. This individual will work with internal team members to ensure that systems are functional, secure, and scalable. The systems and networks developed will be used to collect and process data and improve the customer's security infrastructure. The Linux Security Engineer will support the design and development of cybersecurity tools and technology along with integration of new architectural features into existing infrastructures while maintaining the integrity and security of enterprise-wide systems and networks.

Primary Responsibilities:

• Conceptualize, design, build and maintain current and future customer-supported tools and platforms

• Manage multiple assignments and work independently with minimal oversight

• Produce system design documents. Support architectural analysis of cyber security features and existing system related to future needs and trends

• Review and provide input to system requirements based on cybersecurity posture

• Compile industry best practices and lessons learned into future iterations and new designs

• Provide broad-based experience in IT Service Management. Apply the experience to specific cyber security initiatives relating to system design, development, operations and maintenance

• Employ measures to ensure the deployed infrastructure is secure and available

• Advise and assist team members to deploy and configure collection services and tools

• Develop processes to evaluate and improve all operating systems, hardware, software and firmware solutions

• Work closely with stakeholders to solve technical problems at the network, system and application levels

• Collaborate, coordinate and build relationships with customer representatives and external stakeholders

• Conduct periodic architectural reviews of installed sensors to assess effectiveness and propose optimal installation alternatives as required

• Draft technical documentation, reports and presentations as needed for customer or internal use

• Manage physical and virtual infrastructure and troubleshoot problems to successful completion

• Create and manage shell scripts for task automation and log extraction

• Develop solutions to complex technical issues

• Provide follow-up reports (technical findings, feedback, resolution steps taken) for root cause analysis, engineering technical assessments and process improvement initiatives

• Provide training and documentation for customer and internal teams

• Review and approve documentation and diagrams (e.g., system specifications)

• Identify tasks and issues that may have an impact on service levels or schedules and provide realistic schedule and cost estimates

• Maintain a current working knowledge of IT development methodology, architecture design, security best practices and technical standards

• Communicate with other technical leads, IT groups and customer reps so they understand all aspects of proposed changes/solutions

Minimum requirements

• BS degree in Science, Technology, Engineering, Math or related field and 10-12 years of prior relevant experience with a focus on cybersecurity OR Masters with 8-10 years of prior relevant experience

• Extensive expertise with Azure services and components to build, manage, and maintain Azure Cloud environments

• Experience installing, configuring, securing and troubleshooting Linux in a Cloud environment, preferably in Azure

• Extensive automation experience with PowerShell and Shell Scripting for automating repeatable tasks and installations

• Extensive knowledge of server operations and maintenance

• Extensive experience managing enterprise networks

• Understanding of cloud terminology, architecture, and tools to include installing, provisioning and monitoring

• Department of Homeland Security (DHS) Entry on Duty (EOD) is required to support this program

• Candidate must, at a minimum, have one of these certifications:

  • CompTIA: CASP

  • SANS: GCIH, GCWN, GISF, GISP, GSSP, GICSP, GSSP

  • Carnegie Mellon: SEI

  • ISC2: CCSP, CISSP, CSSLP, SSCP

  • Cisco: CCNP, CCNP Security, CCIE Security

  • EC_Council: CEH, ECSP

  • Microsoft: MCSE (Server), Azure Administrator Associate, Cybersecurity Architect Expert, Azure Solutions Architect Expert

  • Red Hat: RHCA, RHCE

  • Splunk: Certified Splunk Architect

Preferred Qualifications

• Current Top Secret clearance

• Experience administrating PKI and HSM Environments

• Experience installing, configuring, and maintaining tools such as Tanium, Nessus, Forescout and Cyberark in a hybrid-cloud environment

• Experience automating management tasks with Ansible, Puppet, or Chef

• Experience working among different Cloud Provider environments (Azure, AWS, GCP)

• Experience with RHEL

• Experience with Gemalto

• Experience developing in Bash, Python, and/or Powershell

• Experience working with SIEM tools such as Splunk to ingest, normalize, store, and maintain data from endpoint, network, and application sourcetypes

The Leidos pay range for this job level is a general guideline onlyand not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.