At Leidos, we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customers’ success. We empower our teams, contribute to our communities, and operate sustainably. Everything we do is built on a commitment to do the right thing for our customers, our people, and our community. Our Mission, Vision, and Values guide the way we do business. We require a senior Cyber Security Engineer for support to our customer projects within Civil & Devolved Government and Energy (DG&E) divisions in the UK. You need to be in the UK with ability to hold SC Clearance or above and you may need to apply for additional personnel security clearances. We are looking for individuals who join a high-performing team and work confidently to make excellent security happen quietly for our customers with high assurance and no fuss. Simple, effective security that our customers value. The role will support work that delivers robust and efficiently managed technical solutions for our customers’ sensitive programmes. The roles require a degree of third-party and customer liaison, and will establish, then support ongoing growth. This will bring diversity in what is needed day-to-day and with flexible operating parameters to support service in an agile environment, will require good scheduling and scheduling prioritisation skills. The successful candidate will be expected to manage day to day activities on several programme environments most of which are in the cloud (AWS & Azure) and react to break fix and scheduled cyber engineering activities. The ideal candidate will support the wider Leidos security capability, beyond cyber-Engineering, joining a talented and multi-faceted cyber team with a reach across our UK business delivering on our customer commitments and seeking out great opportunities to deliver great security by design. Responsibilities Plan, implement, manage, and monitor cybersecurity measures for the protection of the programmes data, systems and networks. Troubleshoot security and network problems. Respond to all system and/or network security breaches. Ensure that the data and infrastructure are protected by enabling the appropriate security controls. Participate in the change management process. Test and identify network and system vulnerabilities. Daily administrative tasks including reporting and communication with relevant Stakeholders. Candidate Essentials • British - non-dual national – Most of our projects have nationality restrictions. • SC cleared (Eligible to undergo SC Vetting) – many of our projects have nationality restrictions. Education/Experience • 2- 4 years’ experience in 3rd line technical support role. • 1 – 2 years in a security related technical support role. • Relevant Security engineering certifications e.g. Microsoft Certified: Azure Security Engineer Associate, AWS Cloud Practitioner, Security Vendor or other similar certifications are an advantage such as CEH, CompTIA security, CISMP, SANS. Essential Process Skills/Experience • Excellent verbal and written communication skills and works well in a team environment. • Experience of the IT systems engineering lifecycle. • Understanding of the controlling processes for the systems engineering lifecycle (e.g. requirements management, configuration management, testing and assurance) and where cyber engineering fits into these • Understanding of different lifecycles/methodologies (waterfall, incremental, agile, DevOps) • Solid understanding of Confidentiality, Integrity and Availability (CIA) and practical experience in applying that understanding in cyber engineering delivery • Experience working on secure solutions in secure environments. • Understanding of service operations and security operational management planning • Awareness of Security Frameworks such as ISO 27001, ISO 27002, NIST, and NCSC Cloud Security Principles. • Experience of Mentoring and acting with a team lead or senior role supporting Junior members of the team. Experience working on accredited security solutions in sensitive government or CNI scenarios. Desirable Experience • Experience working in both customer delivery environments. • Experience in SecDevOps, deploying via infra as code or security as code. • Experience working in CNI, or Public Sector project environments. • Working within an AGILE environment Technology skills/Experience • Understanding of principles of network and boundary protection technologies (firewalls, mail gateways, load balancers, anti-virus, IPS, IDS) • Evidence of experience delivering Cloud Security Controls on both Azure and AWS. • Practical experience of Protective Monitoring systems (SIEM/SOC) and the principles of their deployment. • Understanding of authentication and authorisation technologies (SAML, LDAP, PKI, etc.) • Understanding of encryption and protocols and structures in support of deployment. • Understanding of purpose and effectiveness of penetration tests or IT Health Checks, experience of supporting these would be helpful. • Demonstrate experience in defining and implementing security requirements for a system: • Microsoft OS • Linux OS • Virtualisation technologies • Networking • Endpoint Security Products Communication and Soft Skills • Capable of developing and communicating a vision to meet the System Requirements • Ability to communicate complex technical ideas across a wide range of different audiences. • A good level of commercial awareness and project disciplines.