Cloud Security SME

Description Are you ready to join Leidos all-star team? Through training, teamwork, and exposure to challenging technical work, let Leidos show how to accelerate your career path.Leidos has an exciting opening for you, our next Cloud Security SME/Cyber Security Engineer, to play a critical role in the accreditation of a state-of-the-art technology stack under the DOMEX Technology Platform (DTP) where we support our client’s mission to centralize and standardize Tasking, Collection, Processing, Exploitation and Dissemination (TCPED) of Open Source Intelligence (OSINT) across the Defense and Intelligence Community enterprises. We leverage cloud-based computing, artificial intelligence (Al), machine learning (ML), and cross-domain transfer systems to provide cutting edge data exploitation, enrichment, triage, and analytics capabilities to the Defense Intelligence Enterprise.As a Cloud Security SME & Cyber Security Engineer, you will be responsible for providing technical security expertise in securing, hardening, and maintaining compliance of cloud-based platforms across multiple secure networks. You will lean on your experience with security technologies, industry best practices, vulnerability management, and risk management frameworks (RMF) to employ effective security solutions. In this role, you will collaborate closely with compliance personnel (ISSO, ISSM), software engineers and developers, system engineers and architects, and Government counterparts to perform the full spectrum of systems and cyber security engineering tasks to ensure our systems securely meet mandated regulatory compliance frameworks. Key Responsibilities include:Develop and maintain security policies, procedures, and best practices for cloud and cloud-native environmentsPerform security assessments, vulnerability management, and risk analysis for cloud-based systems across secure enclavesImplement and manage security controls for Kubernetes clusters and containerized applicationsEnsure integration of security measures into CI/CD pipelines and DevSecOps processesConduct security reviews of cloud architectures, service configurations, and system design changesDevelop and maintain ATO packages and ensure compliance with relevant standards (NIST SP 800-37, SP 800-53, CNSSI 1253, ICD 503)Implement and manage continuous monitoring solutions for cloud environmentsCollaborate with development teams to ensure secure coding practices and perform code reviewsStay current with emerging cloud security threats, technologies, and best practicesTo be successful in this role you need these skills (required):Active or current Top Secret with SCI eligibility and ability to obtain PolygraphBachelor’s degree in a related field and 8+ years of industry experience with 5+ years in cybersecurity or additional years of experience in lieu of degree (ISSO experience must be supplemented with demonstrated technical expertise)At least one DoD 8570.01-M IAT Level II or higher certification e.g., CCNA Security, CySA+, Security+ CE, CISSP (or Associate)5+ years working in the cloud, securely configuring and deploying AWS servicesDemonstrated experience securing Kubernetes platforms (secrets management, RBAC, etc.) and integrating security into CI/CD pipelines and containers; must understand microservices architecture and service mesh.5+ years of experience hardening Linux hosts and applying appropriate DISA STIGDemonstrated experience developing A&A packages to obtain and maintain ATO in secure environments. Grounded knowledge in compliance frameworks such as NIST SP 800-37, SP 800-53, and CNSSI 1253Experience with tools such as Xacta or eMass, performing vulnerability compliance with ACAS, & STIG automationExperience with scripting languages such as Bash and Python for automationUnderstanding of secure software development practices and code reviewsExperience with encryption and transport, especially in the cloudYou will WOW us even more if you have some of these skills:Multiple IAT/IAM II or III advanced certifications (e.g. CISSP-ISSAP/ISSEP, CISM, CCSP, Security X/CASP+)Cloud certifications such as AWS Solutions Architect (Associate or Professional), AWS Security SpecialtyKubernetes certifications such as KCNA, CKA, CKSPrior Linux administration experience and certifications such as Linux+, Red Hat certifications (e.g. RHCSA, RHCE)Experience with ICD 503 and related compliance directives, policies, proceduresExperience with security tool such as Splunk, Nessus, SonarQube, as well as DAST & SAST tools such as Prisma Cloud and SonarQubeExperience applying Zero Trust framework to secure systemsPrior network engineering experienceExperience applying security controls to Generative AI implementations#NMECDTP-ALLIf you're looking for comfort, keep scrolling. At Leidos, we outthink, outbuild, and outpace the status quo — because the mission demands it. We're not hiring followers. We're recruiting the ones who disrupt, provoke, and refuse to fail. Step 10 is ancient history. We're already at step 30 — and moving faster than anyone else dares.Original Posting:March 17, 2026For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.Pay Range:Pay Range $107,900.00 - $195,050.00The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.About LeidosLeidos is an industry and technology leader serving government and commercial customers with smarter, more efficient digital and mission innovations. Headquartered in Reston, Virginia, with 47,000 global employees, Leidos reported annual revenues of approximately $16.7 billion for the fiscal year ended January 3, 2025. For more information, visit www.Leidos.com.Pay and BenefitsPay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available at www.leidos.com/careers/pay-benefits.Securing Your DataBeware of fake employment opportunities using Leidos’ name. Leidos will never ask you to provide payment-related information during any part of the employment application process (i.e., ask you for money), nor will Leidos ever advance money as part of the hiring process (i.e., send you a check or money order before doing any work). Further, Leidos will only communicate with you through emails that are generated by the Leidos.com automated system – never from free commercial services (e.g., Gmail, Yahoo, Hotmail) or via WhatsApp, Telegram, etc. If you received an email purporting to be from Leidos that asks for payment-related information or any other personal information (e.g., about you or your previous employer), and you are concerned about its legitimacy, please make us aware immediately by emailing us at LeidosCareersFraud@leidos.com.If you believe you are the victim of a scam, contact your local law enforcement and report the incident to the U.S. Federal Trade Commission.Commitment to Non-DiscriminationAll qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.#Featuredjob