Talent.com
Lead Security Engineer
Lead Security EngineerLeidos Inc • Reston, VA, United States
Lead Security Engineer

Lead Security Engineer

Leidos Inc • Reston, VA, United States
[job_card.variable_hours_ago]
[job_preview.job_type]
  • [job_card.full_time]
[job_card.job_description]

Description

Cloud computing continues to allow us to modernize and consolidate IT infrastructure, automate workloads, and pursue next-generation innovation. We are seeking a Security Engineer to serve as a technical leader for our critical cloud modernization initiatives. This high-impact role is focused on securing Azure cloud environments and embedding security into every phase of the System Development Life Cycle (SDLC).

As the Senior Security Engineer , you will define the security posture, lead implementation, and oversee the governance of cloud security solution for our IHS customer. This role is pivotal in ensuring the confidentiality, integrity, and availability of cloud-hosted assets while enabling secure innovation at scale. You will partner closely with Cloud Engineers and program leadership to drive continuous improvement and deliver maximum value to the mission.

KEY RESPONSIBILITIES :

Architecture and Engineering

  • Cloud Security Architecture : Design, architect, and implement secure, scalable cloud infrastructure across an Azure platform, ensuring alignment with Zero Trust principles and defense-in-depth strategies.
  • Identity, Credential, and Access Management (ICAM) : Architect, implement, and maintain secure ICAM solutions, including federated identity, Role-Based Access Control (RBAC), and robust encryption / key management systems (KMS) as required.
  • DevSecOps Integration : Lead the integration of security tools and practices into CI / CD pipelines (DevSecOps workflows) to enable automated security testing, vulnerability scanning, and compliance validation.
  • Automation : Define, enforce, and automate cloud security policies, standards, and control frameworks using Infrastructure as Code (IaC) and native cloud services.

Governance and Compliance Leadership

  • Compliance Strategy : Develop and lead strategic approaches for achieving and maintaining compliance with critical federal frameworks, including FedRAMP and NIST SP 800-53.
  • Authorization Liaison : Serve as the primary security liaison, implementing necessary controls and coordinating closely with authorizing officials (AOs) at Health and Human Services (HHS) and other federal agencies throughout the Authority to Operate (ATO) process.
  • System Documentation : Lead efforts to develop, maintain, and oversee all system security documentation, including System Security Plans (SSPs), standard operating procedures, security control baselines, implementation details, and other compliance workbooks / whitepapers.
  • Cybersecurity Governance : Represent Cybersecurity on contractor and government Change Control Boards (CCBs) to ensure all system changes are assessed for security impact and compliance prior to deployment.
  • Audit Support : Lead security control assessments, support audits of the system, and drive the development and closure of Plan of Action & Milestones (POA&M) findings.

    • Operations, Risk, and Strategy

  • Threat & Risk Management : Lead comprehensive threat modeling and vulnerability management efforts. Conduct thorough Security Impact Analyses (SIAs) and risk assessments for new services, functionality, and proposed architectural changes, ensuring all risks are documented and mitigated.
  • Continuous Monitoring : Design and implement continuous monitoring solutions using Cloud Security Posture Management, Cloud Workload Protection Platform, and other advanced security tools.
  • Stakeholder Alignment : Collaborate across engineering, compliance, and operations teams. Serve as a technical authority to internal and external customers, defending security posture changes related to Configuration Management (CM) and the overall security baseline.
  • Proactive Strategy : Stay ahead of emerging cloud threats, evolving attack vectors, and industry best practices, proactively recommending mitigation and strategic security improvements.

    • REQUIRED EDUCATION AND EXPERIENCE :

  • Education : Bachelor's Degree in Computer Science, Engineering, Information Technology, or a related field. Additional years of experience may be considered in lieu of a degree.
  • Experience : 8-12 years of professional experience in IT, with a minimum of 6+ years focused on Information Security Engineering, with at least 2 years focused on cloud security architecture.
  • Clearance : Ability to obtain and maintain a Public Trust or higher security clearance (if required for the mission / client).
  • Certifications : Active, advanced security certification required, such as CCSP (Certified Cloud Security Professional) and Azure Security Engineer Associate (AZ-500).

    • REQUIRED CORE TECHNICAL SKILLS : AZURE FOCUS

  • Azure Security Expertise : Deep, verifiable expertise in securing Azure services, cloud architectures, and the shared responsibility model. Expert-level understanding of how to implement NIST SP 800-53 (Rev 5) security controls within an Azure Government environment.
  • Identity, Credential, and Access Management (ICAM) : Extensive experience with Azure Active Directory (Azure AD / Entra ID), conditional access policies, and hybrid identity solutions.
  • Automation : Hands-on experience implementing security controls using Infrastructure as Code (IaC) tools such as Terraform or Bicep.
  • Containers : Strong hands-on experience securing containerization and orchestration platforms (Docker, Kubernetes, AKS, EKS).
  • Scripting and Automation : Strong proficiency in PowerShell / Bash and / or Python

    • REQUIRED PROFESSIONAL SKILLS

  • Communication : Excellent written and verbal communication skills. Ability to communicate effectively within cross-functional teams and with external stakeholders.
  • Analysis & Troubleshooting : Strong analytical and troubleshooting skills to rapidly diagnose and resolve complex security issues.

    • DESIRED QUALIFICATIONS :

  • Certifications : Active CISSP certification is highly desirable.
  • Zero Trust : Expertise in Zero Trust principles and architecting security solutions in the Azure cloud environment.
  • Federal Compliance : Direct experience implementing federal compliance frameworks such as FedRAMP, NIST 800-53 (Rev 5), and Cybersecurity Maturity Model Certification (CMMC).
  • Verifiable experience maintaining FedRAMP authorization boundaries, including authoring System Security Plans (SSPs) and providing guidance on the shared responsibility model for security and compliance to customers and partners.
  • Federal Experience : Prior experience with federal agency cloud modernization efforts.

    • Come break things (in a good way). Then build them smarter.

    We're the tech company everyone calls when things get weird. We don't wear capes (they're a safety hazard), but we do solve high-stakes problems with code, caffeine, and a healthy disregard for "how it's always been done."

    Original Posting : December 19, 2025

    For U.S. Positions : While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

    Pay Range :

    Pay Range $107,900.00 - $195,050.00

    The Leidos pay range for this job level is a general guideline onlyand not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.

    About Leidos

    Leidos is an industry and technology leader serving government and commercial customers with smarter, more efficient digital and mission innovations. Headquartered in Reston, Virginia, with 47,000 global employees, Leidos reported annual revenues of approximately $16.7 billion for the fiscal year ended January 3, 2025. For more information, visit www.Leidos.com .

    Pay and Benefits

    Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available at www.leidos.com / careers / pay-benefits .

    Securing Your Data

    Beware of fake employment opportunities using Leidos' name. Leidos will never ask you to provide payment-related information during any part of the employment application process (i.e., ask you for money), nor will Leidos ever advance money as part of the hiring process (i.e., send you a check or money order before doing any work). Further, Leidos will only communicate with you through emails that are generated by the Leidos.com automated system - never from free commercial services (e.g., Gmail, Yahoo, Hotmail) or via WhatsApp, Telegram, etc. If you received an email purporting to be from Leidos that asks for payment-related information or any other personal information (e.g., about you or your previous employer), and you are concerned about its legitimacy, please make us aware immediately by emailing us at LeidosCareersFraud@leidos.com .

    If you believe you are the victim of a scam, contact your local law enforcement and report the incident to the U.S. Federal Trade Commission .

    Commitment to Non-Discrimination

    All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.

    #Featuredjob

    [job_alerts.create_a_job]

    Lead Security Engineer • Reston, VA, United States

    [internal_linking.similar_jobs]
    Cyber Security Project Engineer - TS / SCI FSP

    Cyber Security Project Engineer - TS / SCI FSP

    Tenica and Associates LLC • Herndon, VA, US
    [job_card.full_time]
    Cyber Security Project Engineer TS / SCI FSP.Cyber Security Project Engineer.ACTIVE TS / SCI CLEARANCE with FS poly REQUIRED TO BE CONSIDERED FOR THIS POSITION. The Cyber Security InfoSec Engineer provi...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Cyber Security Architect

    Cyber Security Architect

    Agile Defense • Quantico, VA, VA, United States
    [job_card.full_time]
    At Agile Defense we know that action defines the outcome and new challenges require new solutions.That’s why we always look to the future and embrace change with an unmovable spirit and the courage...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Security Engineer

    Security Engineer

    Leidos Inc • Lorton, VA, United States
    [job_card.full_time]
    The Digital Modernization Sector at Leidos currently has an opening for a Security Engineer to work in our Lorton, VA office. This is an exciting opportunity to use your experience helping the Homel...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Information Security Engineer (On-Site)

    Information Security Engineer (On-Site)

    Neumo • Centreville, VA, US
    [job_card.full_time]
    The Security Engineer will be a critical piece to the Information Security team, driving the design, implementation, and technical controls that protect the organization and meet compliance require...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Senior Information Systems Security Engineer - TS / SCI CI Poly

    Senior Information Systems Security Engineer - TS / SCI CI Poly

    Tenica and Associates LLC • Chantilly, VA, US
    [job_card.full_time]
    Senior Information Systems Security Engineer (ISSE) TS / SCI CI Poly.Government Customer- Chantilly.The Senior Information Systems Security Engineer provides support to the customer in the area of Cy...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Cyber Security Engineer - Senior Level

    Cyber Security Engineer - Senior Level

    Mission Intel • Springfield, VA, US
    [job_card.full_time]
    Join Mission Intelligence Group as a Senior Cyber Security Engineer and take your career to new heights in an innovative and dynamic environment. You will be at the forefront of safeguarding critica...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Information Security Engineer

    Information Security Engineer

    Foxhole Technology • Fairfax, Virginia, United States
    [job_card.full_time]
    Job Title : Information Security Engineer.Clearance : None - Criminal Background Check.Location : Hybrid - Travel within Maryland. Start : Based on Contract Award.Foxhole Technology provides robust cyb...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Cyber Security Systems Engineer - TS / SCI w / POLY

    Cyber Security Systems Engineer - TS / SCI w / POLY

    Falls Technology • Chantilly, VA, US
    [job_card.full_time]
    Falls Technology is a forward-thinking company dedicated to delivering innovative, high-impact solutions to our clients across government and industry. We pride ourselves on a culture of collaborati...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Security Engineer

    Security Engineer

    Securiport • Reston, VA, US
    [job_card.full_time]
    Job Summary : The Security Engineer is responsible for identifying, analyzing, and mitigating security threats while ensuring the organization's cyber defenses remain strong.This role focuses on...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Cyber Security Project Engineer

    Cyber Security Project Engineer

    Prysm Technology • Herndon, VA, US
    [job_card.full_time]
    Cyber security project engineer skilled in supporting Information Assurance, Certification & Accreditation and Assessment & Authorization activities. You will successfully guide the team thr...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Security Engineer

    Security Engineer

    SteerBridge • Vienna, VA, US
    [job_card.full_time]
    SteerBridge Strategies is a CVE-Verified Service-Disabled, Veteran-Owned Small Business (SDVOSB) delivering a broad spectrum of professional services to the U. Backed by decades of hands-on experien...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Cyber Security Engineer - Reston, VA

    Cyber Security Engineer - Reston, VA

    Vibrint • Reston, VA, US
    [job_card.full_time]
    Vibrint is a trusted provider of mission-critical systems and analysis that transform our customers' capacity and capability in harvesting and harnessing data. Working alongside many of the most...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Security Operations Engineer (SOE) (TS / SCI with Poly)

    Security Operations Engineer (SOE) (TS / SCI with Poly)

    Solerity • McLean, VA, US
    [job_card.full_time]
    Take the next steps to your professional success as Solerity is a recognized leader in providing Information Technology, Engineering Services, Program Management and Consulting Services to the U.S ...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Cyber Security Engineer

    Cyber Security Engineer

    Apogee Integration LLC • Chantilly, VA, US
    [job_card.full_time]
    TS / SCI with Fullscope Polygraph required.Seeking a Cyber Security Engineer to support an Intelligence Client.Demonstrated experience with cyber penetration testing. Demonstrated experience designing...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Principal Cyber Security Engineer

    Principal Cyber Security Engineer

    Virginia Staffing • Chantilly, VA, US
    [job_card.full_time]
    Principal Cyber Security Engineer.Mantech seeks a motivated, career and customer-oriented Principal Cyber Security Engineer to join our team in Chantilly, VA. This role supports the Comply-to-Connec...[show_more]
    [last_updated.last_updated_variable_hours] • [promoted]
    Senior Product Security Engineer

    Senior Product Security Engineer

    Mount Indie • Reston, VA, US
    [job_card.full_time]
    Senior Product Security Engineer.Reston, Virginia, United States.Senior Product Security Engineer.This role is all about protecting hardware — not just the software that runs on it.You’...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Senior Security Architect

    Senior Security Architect

    Red Cedar Consultancy • McLean, VA, US
    [job_card.full_time]
    Job Title : Lead / Senior Security Architect.Requirements & Responsibilities : .Minimum 10 years of experience with CISSO-ISSAP preferred or a CISSP certification. At least 10 years' experience...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Cyber Security Engineer

    Cyber Security Engineer

    Altus Consulting Corp • Herndon, VA, US
    [job_card.full_time]
    Altus Consulting is seeking a skilled Cyber Security Engineer to analyze, design, and implement security solutions across various client environments. You will collaborate with analysts, stakeholder...[show_more]
    [last_updated.last_updated_30] • [promoted]